[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f2ceaa93 by security tracker role at 2018-01-24T09:10:21+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,5 @@
+CVE-2017-18075
+	RESERVED
 CVE-2018-1000018
 	NOT-FOR-US: ovirt-engine
 CVE-2018-6179
@@ -19983,8 +19985,7 @@ CVE-2017-15699
 	TODO: check, this is possibly specific to AMQ Interconnect as used by Red Hat JBoss, although based on Apache Qpid project
 CVE-2017-15698
 	RESERVED
-CVE-2017-15697
-	RESERVED
+CVE-2017-15697 (A malicious X-ProxyContextPath or X-Forwarded-Context header ...)
 	NOT-FOR-US: Apache NiFi
 CVE-2017-15696
 	RESERVED
@@ -29359,8 +29360,7 @@ CVE-2017-12634 (The camel-castor component in Apache Camel 2.x before 2.19.4 and
 	NOT-FOR-US: Apache Camel
 CVE-2017-12633 (The camel-hessian component in Apache Camel 2.x before 2.19.4 and ...)
 	NOT-FOR-US: Apache Camel
-CVE-2017-12632
-	RESERVED
+CVE-2017-12632 (A malicious host header in an incoming HTTP request could cause NiFi ...)
 	NOT-FOR-US: Apache NiFi
 CVE-2017-12631 (Apache CXF Fediz ships with a number of container-specific plugins to ...)
 	NOT-FOR-US: Apache CXF



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2ceaa93d2c5f0ef18abb948b2a8033582a8fbc4

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2ceaa93d2c5f0ef18abb948b2a8033582a8fbc4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180124/1a5d3366/attachment.html>