[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000007/curl

Wed Jan 24 07:17:41 UTC 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f7754c3e by Salvatore Bonaccorso at 2018-01-24T08:17:12+01:00
Add CVE-2018-1000007/curl

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -448,8 +448,11 @@ CVE-2018-5998
 	RESERVED
 CVE-2018-5997
 	RESERVED
-CVE-2018-1000007
+CVE-2018-1000007 [HTTP authentication leak in redirects]
 	RESERVED
+	- curl <unfixed>
+	NOTE: https://curl.haxx.se/docs/adv_2018-b3bf.html
+	NOTE: Patch: https://github.com/curl/curl/commit/af32cd3859336ab.patch
 CVE-2018-5996
 	RESERVED
 CVE-2018-5995



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f7754c3ea4f1515551ab1887715f9225a3eb0a6d

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f7754c3ea4f1515551ab1887715f9225a3eb0a6d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180124/ada8fa8d/attachment.html>
