[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2017-8314, xbmc: Wheezy and Jessie are affected
Markus Koschany
apo at debian.org
Fri Jan 12 22:39:48 UTC 2018
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0dbe367c by Markus Koschany at 2018-01-12T23:38:38+01:00
CVE-2017-8314,xbmc: Wheezy and Jessie are affected
- - - - -
9c6e95cd by Markus Koschany at 2018-01-12T23:39:26+01:00
Claim xbmc in dla-needed.txt
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -40142,7 +40142,7 @@ CVE-2017-8315
RESERVED
CVE-2017-8314 (Directory Traversal in Zip Extraction built-in function in Kodi 17.1 ...)
- kodi 2:17.1+dfsg1-3 (bug #863230)
- - xbmc <undetermined>
+ - xbmc <unfixed>
NOTE: http://blog.checkpoint.com/2017/05/23/hacked-in-translation/
NOTE: https://kodi.tv/article/kodi-v172-minor-bug-fix-and-security-release
NOTE: Fixed by https://github.com/xbmc/xbmc/commit/35cfe35608b15335ef21d798947fceab3f47c8d7
=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -67,3 +67,5 @@ wordpress
NOTE: 2018-08-09: Upstream bug opened 6 years ago and no chages to upstream
NOTE: bug in 7 weeks.
--
+xbmc (Markus Koschany)
+--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/f9ee3c169eb1e31cfa521889c95df7426ce8d12e...9c6e95cde303fd5f96ff1dccc451398bf881afc0
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/f9ee3c169eb1e31cfa521889c95df7426ce8d12e...9c6e95cde303fd5f96ff1dccc451398bf881afc0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180112/f1a1ae79/attachment.html>
More information about the Secure-testing-commits
mailing list