[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-17663/{mini-httpd, thttpd}

Mon Feb 12 20:51:40 UTC 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
76c07e7a by Salvatore Bonaccorso at 2018-02-12T21:51:04+01:00
Add CVE-2017-17663/{mini-httpd,thttpd}

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -13933,7 +13933,9 @@ CVE-2017-17664 (A Remote Crash issue was discovered in Asterisk Open Source 13.x
 	NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-27382
 	NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-27429
 CVE-2017-17663 (The htpasswd implementation of mini_httpd before v1.28 and of thttpd ...)
-	TODO: check
+	- mini-httpd <unfixed> (unimportant)
+	- thttpd <removed> (unimportant)
+	NOTE: http://acme.com/updates/archive/199.html
 CVE-2017-17662 (Directory traversal in the HTTP server on Yawcam 0.2.6 through 0.6.0 ...)
 	NOT-FOR-US: Yawcam
 CVE-2017-17661



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/76c07e7a26884cce0b30a35004d1bccb8877d88f

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/76c07e7a26884cce0b30a35004d1bccb8877d88f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180212/d12050c3/attachment.html>
