[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-5660/trafficserver
Salvatore Bonaccorso
carnil at debian.org
Wed Feb 28 07:09:11 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
778f0225 by Salvatore Bonaccorso at 2018-02-28T08:08:44+01:00
Add CVE-2017-5660/trafficserver
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -55325,7 +55325,8 @@ CVE-2017-5661 (In Apache FOP before 2.2, files lying on the filesystem of the se
NOTE: Fixed by: http://svn.apache.org/r1769967
NOTE: Fixed by: http://svn.apache.org/r1769968 (fix for Java 6)
CVE-2017-5660 (There is a vulnerability in Apache Traffic Server (ATS) 6.2.0 and ...)
- TODO: check
+ - trafficserver 7.1.2+ds-1
+ NOTE: https://github.com/apache/trafficserver/pull/1657
CVE-2017-5659 (Apache Traffic Server before 6.2.1 generates a coredump when there is ...)
- trafficserver 7.0.0-1
[wheezy] - trafficserver <not-affected> (PoC doesn't crash the server, fix too hard to backport)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/778f02257d4302362b305707fa3a9f7c7a86cbbd
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/778f02257d4302362b305707fa3a9f7c7a86cbbd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180228/4c6462fd/attachment.html>
More information about the Secure-testing-commits
mailing list