[Secure-testing-commits] r55940 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Sep 20 17:42:01 UTC 2017
Author: jmm
Date: 2017-09-20 17:42:01 +0000 (Wed, 20 Sep 2017)
New Revision: 55940
Modified:
data/CVE/list
Log:
CVE-2017-14051 unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-20 16:57:53 UTC (rev 55939)
+++ data/CVE/list 2017-09-20 17:42:01 UTC (rev 55940)
@@ -1551,9 +1551,10 @@
CVE-2017-14035 (CrushFTP 8.x before 8.2.0 has a serialization vulnerability. ...)
NOT-FOR-US: CrushFTP
CVE-2017-14051 (An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in ...)
- - linux 4.12.13-1
+ - linux 4.12.13-1 (unimportant)
NOTE: Fixed by: https://git.kernel.org/linus/e6f77540c067b48dee10f1e33678415bfcc89017
NOTE: https://patchwork.kernel.org/patch/9929625/
+ NOTE: Non issue, only "exploitable" with root access
CVE-2017-14034
RESERVED
CVE-2017-14033 (The decode method in the OpenSSL::ASN1 module in Ruby before 2.2.8, ...)
More information about the Secure-testing-commits
mailing list