[Git][security-tracker-team/security-tracker][master] add dnsreplay DoS
Yves-Alexis Perez
corsac at debian.org
Wed May 9 10:05:40 BST 2018
Yves-Alexis Perez pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8dfdff70 by Yves-Alexis Perez at 2018-05-09T11:05:19+02:00
add dnsreplay DoS
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -26729,7 +26729,11 @@ CVE-2018-1047 (A flaw was found in Wildfly 9.x. A path traversal vulnerability .
NOTE: https://issues.jboss.org/browse/WFLY-9620
NOTE: https://developer.jboss.org/thread/276826
NOTE: Fixed by https://github.com/wildfly/wildfly/pull/10748
-CVE-2018-1046
+CVE-2018-1046 [stack-based buffer overflow in dnsreplay]
+ - pdns <unfixed>
+ [stretch] - pdns <no-dsa> (local DoS when parsing untrusted files)
+ NOTE: https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2018-02.html
+ NOTE: Fixed by https://github.com/PowerDNS/pdns/commit/f9c57c98da1b1007a51680629b667d57d9b702b8
RESERVED
CVE-2018-1045 (In Moodle 3.x, there is XSS via a calendar event name. ...)
- moodle <removed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8dfdff70966d735b7417563b72b306a9143c8608
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8dfdff70966d735b7417563b72b306a9143c8608
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180509/ecc8d0d2/attachment.html>
More information about the debian-security-tracker-commits
mailing list