[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] uwsgi in wheezy:not affected
Abhijith PA
gitlab at salsa.debian.org
Tue Mar 27 04:56:50 UTC 2018
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9976f692 by Abhijith PA at 2018-03-27T10:26:15+05:30
uwsgi in wheezy:not affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -3808,6 +3808,7 @@ CVE-2018-7491 (In PrestaShop through 1.7.2.5, a UI-Redressing/Clickjacking ...)
CVE-2018-7490 (uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the ...)
{DSA-4142-1}
- uwsgi 2.0.15-10.4 (bug #891639)
+ [wheezy] - uwsgi <not-affected> (plugin package introduced in jessie)
NOTE: Fixed in 2.0.17 upstream
NOTE: https://github.com/unbit/uwsgi/commit/0a480f435ea6feb63deb410ad2bf376ed3f05f8a
NOTE: https://blog.runesec.com/2018/03/01/uwsgi-path-traversal/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9976f6928fdd8cd8bf3eb1289333092561e3996f
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9976f6928fdd8cd8bf3eb1289333092561e3996f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180327/b80c15c5/attachment.html>
More information about the Secure-testing-commits
mailing list