[Secure-testing-commits] r55927 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Sep 20 09:28:54 UTC 2017
Author: jmm
Date: 2017-09-20 09:28:54 +0000 (Wed, 20 Sep 2017)
New Revision: 55927
Modified:
data/CVE/list
Log:
new nautilus issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-20 09:23:23 UTC (rev 55926)
+++ data/CVE/list 2017-09-20 09:28:54 UTC (rev 55927)
@@ -1,5 +1,9 @@
CVE-2017-14604 (GNOME Nautilus before 3.23.90 allows attackers to spoof a file type by ...)
- TODO: check
+ - nautilus <unfixed> (bug #860268)
+ NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=777991
+ NOTE: https://micahflee.com/2017/04/breaking-the-security-model-of-subgraph-os/
+ NOTE: https://github.com/freedomofpress/securedrop/issues/2238
+ NOTE: https://github.com/GNOME/nautilus/commit/1630f53481f445ada0a455e9979236d31a8d3bb0
CVE-2017-14603
RESERVED
CVE-2017-14602
More information about the Secure-testing-commits
mailing list