[Secure-testing-commits] r55811 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Sep 16 08:50:14 UTC 2017
Author: carnil
Date: 2017-09-16 08:50:13 +0000 (Sat, 16 Sep 2017)
New Revision: 55811
Modified:
data/CVE/list
Log:
Add references for CVE-2017-10784/ruby
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-16 08:41:12 UTC (rev 55810)
+++ data/CVE/list 2017-09-16 08:50:13 UTC (rev 55811)
@@ -10453,6 +10453,8 @@
- ruby1.9.1 <removed>
- ruby1.8 <removed>
NOTE: https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/
+ NOTE: https://github.com/ruby/ruby/commit/6617c41292b7d1e097abb8fdb0cab9ddd83c77e7
+ NOTE: https://hackerone.com/reports/223363
CVE-2017-10783 (XnView Classic for Windows Version 2.40 might allow attackers to cause ...)
NOT-FOR-US: XnView
CVE-2017-10782 (XnView Classic for Windows Version 2.40 might allow attackers to cause ...)
More information about the Secure-testing-commits
mailing list