[Secure-testing-commits] r55776 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Sep 15 06:38:31 UTC 2017
Author: carnil
Date: 2017-09-15 06:38:31 +0000 (Fri, 15 Sep 2017)
New Revision: 55776
Modified:
data/CVE/list
Log:
Add CVE-2017-2299/puppet-module-puppetlabs-apache
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-15 04:48:45 UTC (rev 55775)
+++ data/CVE/list 2017-09-15 06:38:31 UTC (rev 55776)
@@ -35774,8 +35774,10 @@
NOT-FOR-US: Juniper
CVE-2017-2300 (On Juniper Networks SRX Series Services Gateways chassis clusters ...)
NOT-FOR-US: Juniper
-CVE-2017-2299
+CVE-2017-2299 [Possible TLS trust misconfiguration in puppetlabs-apache]
RESERVED
+ - puppet-module-puppetlabs-apache <unfixed>
+ NOTE: https://puppet.com/security/cve/CVE-2017-2299
CVE-2017-2298 (The mcollective-sshkey-security plugin before 0.5.1 for Puppet uses a ...)
NOT-FOR-US: mcollective-sshkey-security plugin
CVE-2017-2297
More information about the Secure-testing-commits
mailing list