[Git][security-tracker-team/security-tracker][master] CVe-2016-9140 finally REJECTED by its CNA as not beeing a security issue
Salvatore Bonaccorso
carnil at debian.org
Wed Aug 15 20:51:51 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1fbe541d by Salvatore Bonaccorso at 2018-08-15T19:51:07Z
CVe-2016-9140 finally REJECTED by its CNA as not beeing a security issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -94182,12 +94182,8 @@ CVE-2016-9122 (go-jose before 1.0.4 suffers from multiple signatures exploitatio
- golang-gopkg-square-go-jose.v1 1.0.5-1
CVE-2016-9121 (go-jose before 1.0.4 suffers from an invalid curve attack for the ...)
- golang-gopkg-square-go-jose.v1 1.0.5-1
-CVE-2016-9140 [RCE]
- RESERVED
- - zabbix 1:3.0.6+dfsg-1 (bug #842702; unimportant)
- NOTE: https://www.exploit-db.com/exploits/39937/
- NOTE: Claimed to be not a vulnerability but a superadmin using a feature
- NOTE: as intended. 1:3.0.6+dfsg-1 improved the API script.execute validation.
+CVE-2016-9140
+ REJECTED
CVE-2016-9139 (Cross-site scripting (XSS) vulnerability in Open Ticket Request System ...)
{DLA-787-1}
- otrs2 5.0.14-1 (bug #843091)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1fbe541d8de4eaf332121977b19c7aa4164bc264
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1fbe541d8de4eaf332121977b19c7aa4164bc264
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180815/5be67ce0/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list