[Secure-testing-commits] r56943 - in data: . CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Tue Oct 24 20:19:29 UTC 2017
Author: anarcat
Date: 2017-10-24 20:19:28 +0000 (Tue, 24 Oct 2017)
New Revision: 56943
Modified:
data/CVE/list
data/dla-needed.txt
Log:
LTS: unclaim tiff, update status (CVE-2017-11613 NOTABUG?)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-24 20:12:05 UTC (rev 56942)
+++ data/CVE/list 2017-10-24 20:19:28 UTC (rev 56943)
@@ -11734,6 +11734,7 @@
- tiff <unfixed> (bug #869823)
- tiff3 <removed>
NOTE: https://gist.github.com/dazhouzhou/1a3b7400547f23fe316db303ab9b604f
+ NOTE: RedHat marked this NOTABUG: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-11613
CVE-2017-11612 (In Joomla! before 3.7.4, inadequate filtering of potentially malicious ...)
NOT-FOR-US: Joomla!
CVE-2016-10401 (ZyXEL PK5001Z devices have zyad5001 as the su password, which makes it ...)
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-10-24 20:12:05 UTC (rev 56942)
+++ data/dla-needed.txt 2017-10-24 20:19:28 UTC (rev 56943)
@@ -138,9 +138,11 @@
NOTE: https://sourceforge.net/p/sox/bugs/296/
NOTE: 2017-09-01: pinged upstream (Markus)
--
-tiff (anarcat)
+tiff
+ NOTE: no upstream fix, CVE-2017-11613 "not a bug" according to RH -- anarcat 2017-10-24
--
-tiff3 (anarcat)
+tiff3
+ NOTE: no upstream fix, CVE-2017-11613 "not a bug" according to RH -- anarcat 2017-10-24
--
tomcat7 (Roberto C. Sánchez)
--
More information about the Secure-testing-commits
mailing list