[Secure-testing-commits] r55366 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Fri Sep 1 14:49:31 UTC 2017
Author: hertzog
Date: 2017-09-01 14:49:31 +0000 (Fri, 01 Sep 2017)
New Revision: 55366
Modified:
data/CVE/list
Log:
Mark CVE-2017-14102 as ignored on wheezy
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-01 14:42:18 UTC (rev 55365)
+++ data/CVE/list 2017-09-01 14:49:31 UTC (rev 55366)
@@ -7,6 +7,7 @@
NOTE: https://blogs.gentoo.org/ago/2017/07/12/graphicsmagick-use-after-free-in-closeblob-blob-c/
CVE-2017-14102 (MIMEDefang 2.80 and earlier creates a PID file after dropping ...)
- mimedefang <unfixed>
+ [wheezy] - mimedefang <ignored> (Minor issue only exploitable if daemon is compromised in some other way)
NOTE: http://lists.roaringpenguin.com/pipermail/mimedefang/2017-August/038077.html
NOTE: http://lists.roaringpenguin.com/pipermail/mimedefang/2017-August/038085.html
CVE-2017-14101
More information about the Secure-testing-commits
mailing list