[Secure-testing-commits] r56100 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sun Sep 24 18:32:16 UTC 2017
Author: apo
Date: 2017-09-24 18:32:16 +0000 (Sun, 24 Sep 2017)
New Revision: 56100
Modified:
data/CVE/list
Log:
p3scan,CVE-2017-14681: no-dsa for Wheezy
Same reasoning as for kannel. Requires a second exploit for the daemon. Low
popcon, orphaned package, no sponsor uses it.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-24 17:50:22 UTC (rev 56099)
+++ data/CVE/list 2017-09-24 18:32:16 UTC (rev 56100)
@@ -114,6 +114,7 @@
NOTE: https://github.com/ImageMagick/ImageMagick/commit/3bee958ee63eb6ec62834d0c7b28b4b6835e6a00
CVE-2017-14681 (The daemon in P3Scan 3.0_rc1 and earlier creates a p3scan.pid file ...)
- p3scan <unfixed>
+ [wheezy] - p3scan <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/p3scan/bugs/33/
CVE-2017-14680 (ZKTeco ZKTime Web 2.0.1.12280 allows remote attackers to obtain ...)
NOT-FOR-US: ZKTeco ZKTime Web
More information about the Secure-testing-commits
mailing list