[Secure-testing-commits] r57052 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Oct 28 08:45:38 UTC 2017
Author: carnil
Date: 2017-10-28 08:45:37 +0000 (Sat, 28 Oct 2017)
New Revision: 57052
Modified:
data/CVE/list
Log:
Add references for busybox issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-28 08:35:44 UTC (rev 57051)
+++ data/CVE/list 2017-10-28 08:45:37 UTC (rev 57052)
@@ -141,11 +141,15 @@
[stretch] - busybox <no-dsa> (Minor issue)
[jessie] - busybox <no-dsa> (Minor issue)
[wheezy] - busybox <no-dsa> (Minor issue)
+ NOTE: https://bugs.busybox.net/show_bug.cgi?id=10436
+ NOTE: https://git.busybox.net/busybox/commit/?id=9ac42c500586fa5f10a1f6d22c3f797df11b1f6b
CVE-2017-15873 (The get_next_block function in archival/libarchive/decompress_bunzip2.c ...)
- busybox <unfixed> (bug #879732)
[stretch] - busybox <no-dsa> (Minor issue)
[jessie] - busybox <no-dsa> (Minor issue)
[wheezy] - busybox <no-dsa> (Minor issue)
+ NOTE: https://bugs.busybox.net/show_bug.cgi?id=10431
+ NOTE: https://git.busybox.net/busybox/commit/?id=0402cb32df015d9372578e3db27db47b33d5c7b0
CVE-2017-15872 (phpwcms 1.8.9 has XSS in include/inc_tmpl/admin.edituser.tmpl.php and ...)
NOT-FOR-US: phpwcms
CVE-2017-15871 (** DISPUTED ** The deserialize function in serialize-to-js through ...)
More information about the Secure-testing-commits
mailing list