[Secure-testing-commits] r56223 - in data: CVE DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Sep 28 14:42:06 UTC 2017
Author: carnil
Date: 2017-09-28 14:42:06 +0000 (Thu, 28 Sep 2017)
New Revision: 56223
Modified:
data/CVE/list
data/DSA/list
Log:
CVE assigned for git issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-28 12:40:46 UTC (rev 56222)
+++ data/CVE/list 2017-09-28 14:42:06 UTC (rev 56223)
@@ -273,11 +273,8 @@
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=22148
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=94670f6cf11fc29cc6db6814b38c4305d9bcac96 (master)
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=e6ff33ca50c1180725dde11c84ee93fcdb4235ef (binutils-2_29-branch)
-CVE-2017-XXXX [Git cvsserver OS Command Injection]
+CVE-2017-14867 [Git cvsserver OS Command Injection]
- git 1:2.14.2-1 (bug #876854)
- [stretch] - git 1:2.11.0-3+deb9u2
- [jessie] - git 1:2.1.4-2.1+deb8u5
- NOTE: Workaround entries for DSA-3984-1 until CVE(s) assigned
NOTE: http://www.openwall.com/lists/oss-security/2017/09/26/9
NOTE: https://public-inbox.org/git/xmqqy3p29ekj.fsf@gitster.mtv.corp.google.com/T/#u
CVE-2017-14744 (UEditor 1.4.3.3 has XSS via the SRC attribute of an IFRAME element. ...)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2017-09-28 12:40:46 UTC (rev 56222)
+++ data/DSA/list 2017-09-28 14:42:06 UTC (rev 56223)
@@ -2,6 +2,7 @@
{CVE-2017-5111 CVE-2017-5112 CVE-2017-5113 CVE-2017-5114 CVE-2017-5115 CVE-2017-5116 CVE-2017-5117 CVE-2017-5118 CVE-2017-5119 CVE-2017-5120 CVE-2017-5121 CVE-2017-5122}
[stretch] - chromium-browser 61.0.3163.100-1~deb9u1
[26 Sep 2017] DSA-3984-1 git - security update
+ {CVE-2017-14867}
[jessie] - git 1:2.1.4-2.1+deb8u5
[stretch] - git 1:2.11.0-3+deb9u2
[22 Sep 2017] DSA-3983-1 samba - security update
More information about the Secure-testing-commits
mailing list