[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add todo for CVE-2017-7272
Salvatore Bonaccorso
carnil at debian.org
Mon Feb 26 09:39:24 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2f6f9c80 by Salvatore Bonaccorso at 2018-02-26T10:39:07+01:00
Add todo for CVE-2017-7272
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -50095,6 +50095,7 @@ CVE-2017-7272 (PHP through 7.1.11 enables potential SSRF in applications that ac
NOTE: https://github.com/php/php-src/commit/bab0b99f376dac9170ac81382a5ed526938d595a
NOTE: https://bugs.php.net/bug.php?id=74216
NOTE: Fixed in 7.1.4 and 7.0.18
+ TODO: Re-check php7.1, might not have been fixed up to 7.1.11 (completely)
CVE-2017-7269 (Buffer overflow in the ScStoragePathFromUrl function in the WebDAV ...)
NOT-FOR-US: Windows
CVE-2017-7268
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2f6f9c8023079acee4dd84cbd33edf7e294d55bc
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2f6f9c8023079acee4dd84cbd33edf7e294d55bc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180226/0bb25755/attachment.html>
More information about the Secure-testing-commits
mailing list