[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2017-8314, xbmc: Wheezy and Jessie are affected

Markus Koschany apo at debian.org
Fri Jan 12 22:39:48 UTC 2018 

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0dbe367c by Markus Koschany at 2018-01-12T23:38:38+01:00
CVE-2017-8314,xbmc: Wheezy and Jessie are affected

- - - - -
9c6e95cd by Markus Koschany at 2018-01-12T23:39:26+01:00
Claim xbmc in dla-needed.txt

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -40142,7 +40142,7 @@ CVE-2017-8315
 	RESERVED
 CVE-2017-8314 (Directory Traversal in Zip Extraction built-in function in Kodi 17.1 ...)
 	- kodi 2:17.1+dfsg1-3 (bug #863230)
-	- xbmc <undetermined>
+	- xbmc <unfixed>
 	NOTE: http://blog.checkpoint.com/2017/05/23/hacked-in-translation/
 	NOTE: https://kodi.tv/article/kodi-v172-minor-bug-fix-and-security-release
 	NOTE: Fixed by https://github.com/xbmc/xbmc/commit/35cfe35608b15335ef21d798947fceab3f47c8d7


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -67,3 +67,5 @@ wordpress
   NOTE: 2018-08-09: Upstream bug opened 6 years ago and no chages to upstream
   NOTE: bug in 7 weeks.
 --
+xbmc (Markus Koschany)
+--



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/f9ee3c169eb1e31cfa521889c95df7426ce8d12e...9c6e95cde303fd5f96ff1dccc451398bf881afc0

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/f9ee3c169eb1e31cfa521889c95df7426ce8d12e...9c6e95cde303fd5f96ff1dccc451398bf881afc0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180112/f1a1ae79/attachment.html>

More information about the Secure-testing-commits mailing list