[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2017-16896/tt-rss
Salvatore Bonaccorso
carnil at debian.org
Tue Mar 13 21:50:13 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bbfad33d by Salvatore Bonaccorso at 2018-03-13T22:49:38+01:00
Add fixed version for CVE-2017-16896/tt-rss
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -22374,7 +22374,7 @@ CVE-2017-16898 (The printMP3Headers function in util/listmp3.c in libming v0.4.8
CVE-2017-16897 (A vulnerability has been discovered in the Auth0 passport-wsfed-saml2 ...)
NOT-FOR-US: Auth0 passport-wsfed-saml2 library
CVE-2017-16896 (A SQL injection in classes/handler/public.php in the forgotpass ...)
- - tt-rss <unfixed> (bug #882543)
+ - tt-rss 17.4+git20180312+dfsg-1 (bug #882543)
NOTE: https://discourse.tt-rss.org/t/sql-injection-in-forgotpass-fixed/669
NOTE: https://git.tt-rss.org/git/tt-rss/commit/2352c320c2ed34ec7df1ad22f0c55a1b26489815
CVE-2017-16895 (The (1) arq_updater, (2) arqcommitter, (3) standardrestorer, (4) ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bbfad33df7659a2f6147854de48888870f6e6832
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bbfad33df7659a2f6147854de48888870f6e6832
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180313/732917fe/attachment.html>
More information about the Secure-testing-commits
mailing list