[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2017-9801: no longer NFU, commons-email was added, issue already fixed
Paul Wise
pabs at debian.org
Wed Jan 31 06:17:40 UTC 2018
Paul Wise pushed to branch master at Debian Security Tracker / security-tracker
Commits:
eaf9277c by Paul Wise at 2018-01-31T14:16:12+08:00
CVE-2017-9801: no longer NFU, commons-email was added, issue already fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -36584,7 +36584,11 @@ CVE-2017-9803 (Solr's Kerberos plugin can be configured to use delegation tokens
CVE-2017-9802 (The Javascript method Sling.evalString() in Apache Sling Servlets Post ...)
NOT-FOR-US: Apache Sling
CVE-2017-9801 (When a call-site passes a subject for an email that contains ...)
- NOT-FOR-US: Apache commons email
+ - commons-email 1.5-1
+ NOTE: https://commons.apache.org/proper/commons-email/security-reports.html
+ NOTE: Fixed by: https://svn.apache.org/viewvc?view=revision&revision=1801385
+ NOTE: Fixed by: https://svn.apache.org/viewvc?view=revision&revision=1801388
+ NOTE: Fixed by: https://svn.apache.org/viewvc?view=revision&revision=1801389
CVE-2017-9800 (A maliciously constructed svn+ssh:// URL would cause Subversion ...)
{DSA-3932-1 DLA-1052-1}
- subversion 1.9.7-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/eaf9277c8ea8441005346d1f9fd6219f29bd27e4
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/eaf9277c8ea8441005346d1f9fd6219f29bd27e4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180131/6760e4e3/attachment.html>
More information about the Secure-testing-commits
mailing list