[Git][security-tracker-team/security-tracker][master] Update information for CVE-2017-7561
Salvatore Bonaccorso
carnil at debian.org
Fri Sep 14 20:28:48 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8b941270 by Salvatore Bonaccorso at 2018-09-14T19:28:20Z
Update information for CVE-2017-7561
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -75831,10 +75831,11 @@ CVE-2017-7562 (An authentication bypass flaw was found in the way krb5's certaut
CVE-2017-7561 (Red Hat JBoss EAP version 3.0.7 through before 4.0.0.Beta1 is ...)
- resteasy <unfixed> (bug #873392)
[jessie] - resteasy <not-affected> (CORS Filter added in 3.0.7.Final)
- - resteasy3.0 <undetermined>
+ - resteasy3.0 <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1483823
NOTE: https://issues.jboss.org/projects/RESTEASY/issues/RESTEASY-1704
NOTE: Fixed by: https://github.com/resteasy/Resteasy/commit/517db971d8f7094124416bf72091fd0b45a13028
+ NOTE: Fixed in 4.0.0.Beta1, 3.0.25.Final, 3.5.0.CR1
CVE-2017-7560 (It was found that rhnsd PID files are created as world-writable that ...)
- rhnsd <not-affected> (Vulnerable code introduced later)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1480550
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b94127021e65d8ee695de594884ebfa52c7223f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b94127021e65d8ee695de594884ebfa52c7223f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180914/81241c34/attachment.html>
More information about the debian-security-tracker-commits
mailing list