[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-10910/node-mqtt, itp'ed, #816028

Salvatore Bonaccorso carnil at debian.org
Sun Jan 7 16:11:37 UTC 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5c99f514 by Salvatore Bonaccorso at 2018-01-07T17:11:08+01:00
Add CVE-2017-10910/node-mqtt, itp'ed, #816028

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -31861,7 +31861,7 @@ CVE-2017-10925 (IrfanView 4.44 (32bit) with FPX Plugin 4.47 might allow attacker
 CVE-2017-10924 (IrfanView 4.44 (32bit) with FPX Plugin 4.47 allows attackers to execute ...)
 	NOT-FOR-US: IrfanView
 CVE-2017-10910 (MQTT.js 2.x.x prior to 2.15.0 issue in handling PUBLISH tickets may ...)
-	TODO: check
+	- node-mqtt <itp> (bug #816028)
 CVE-2017-10909 (Untrusted search path vulnerability in Music Center for PC version ...)
 	NOT-FOR-US: Music Center for PC
 CVE-2017-10908 (H2O version 2.2.3 and earlier allows remote attackers to cause a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c99f514c8e8356e5a4f6be7d15256e2db8d912d

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5c99f514c8e8356e5a4f6be7d15256e2db8d912d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180107/dc6ca469/attachment.html>


More information about the Secure-testing-commits mailing list