[Secure-testing-commits] r55801 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Sep 15 21:24:17 UTC 2017
Author: jmm
Date: 2017-09-15 21:24:17 +0000 (Fri, 15 Sep 2017)
New Revision: 55801
Modified:
data/CVE/list
Log:
ledger no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-15 21:19:39 UTC (rev 55800)
+++ data/CVE/list 2017-09-15 21:24:17 UTC (rev 55801)
@@ -34510,10 +34510,14 @@
CVE-2017-2809 (An exploitable vulnerability exists in the yaml loading functionality ...)
NOT-FOR-US: Ansible Vault
CVE-2017-2808 (An exploitable use-after-free vulnerability exists in the account ...)
- - ledger <unfixed>
+ - ledger <unfixed> (low)
+ [stretch] - ledger <no-dsa> (Minor issue)
+ [jessie] - ledger <no-dsa> (Minor issue)
NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0304
CVE-2017-2807 (An exploitable buffer overflow vulnerability exists in the tag parsing ...)
- - ledger <unfixed>
+ - ledger <unfixed> (low)
+ [stretch] - ledger <no-dsa> (Minor issue)
+ [jessie] - ledger <no-dsa> (Minor issue)
NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0303
CVE-2017-2806 (An exploitable arbitrary read exists in the XLS parsing of the Lexmark ...)
NOT-FOR-US: Lexmark Perspective Document Filters conversion functionality
More information about the Secure-testing-commits
mailing list