[Git][security-tracker-team/security-tracker][master] Add upstream issue reference for CVE-2017-12098
Salvatore Bonaccorso
carnil at debian.org
Sun May 27 07:46:42 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
15ce58cc by Salvatore Bonaccorso at 2018-05-27T08:46:07+02:00
Add upstream issue reference for CVE-2017-12098
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -46943,6 +46943,8 @@ CVE-2017-12098 (An exploitable cross site scripting (XSS) vulnerability exists i
- ruby-rails-admin <unfixed>
[stretch] - ruby-rails-admin <no-dsa> (Minor issue)
NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0450
+ NOTE: https://github.com/sferik/rails_admin/issues/2985
+ NOTE: https://github.com/sferik/rails_admin/commit/44f09ed72b5e0e917a5d61bd89c48d97c494b41c
CVE-2017-12097 (An exploitable cross site scripting (XSS) vulnerability exists in the ...)
NOT-FOR-US: delayed_job_web rails gem
CVE-2017-12096 (An exploitable vulnerability exists in the WiFi management of Circle ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/15ce58ccc7d16d7b102017728083407c2a8df5bf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/15ce58ccc7d16d7b102017728083407c2a8df5bf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180527/29b20709/attachment.html>
More information about the debian-security-tracker-commits
mailing list