[Secure-testing-commits] r56230 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Sep 29 04:26:23 UTC 2017
Author: carnil
Date: 2017-09-29 04:26:23 +0000 (Fri, 29 Sep 2017)
New Revision: 56230
Modified:
data/CVE/list
Log:
Add two kibana issues, itp'ed, #700337
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-29 04:25:57 UTC (rev 56229)
+++ data/CVE/list 2017-09-29 04:26:23 UTC (rev 56230)
@@ -9361,7 +9361,7 @@
CVE-2017-11480
RESERVED
CVE-2017-11479 (Kibana versions prior to 5.6.1 had a cross-site scripting (XSS) ...)
- TODO: check
+ - kibana <itp> (bug #700337)
CVE-2017-11477
RESERVED
CVE-2017-11476
@@ -17975,7 +17975,7 @@
CVE-2017-8449 (X-Pack Security 5.2.x would allow access to more fields than the user ...)
NOT-FOR-US: Kibana addon
CVE-2017-8448 (An error was found in the permission model used by X-Pack Alerting ...)
- TODO: check
+ - kibana <itp> (bug #700337)
CVE-2017-8447 (An error was found in the X-Pack Security 5.3.0 to 5.5.2 privilege ...)
TODO: check
CVE-2017-8446 (The Reporting feature in X-Pack in versions prior to 5.5.2 and ...)
More information about the Secure-testing-commits
mailing list