[Git][security-tracker-team/security-tracker][master] Update information on CVE-2017-9268/open-build-service

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Dec 4 16:19:02 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6dec23c7 by Salvatore Bonaccorso at 2021-12-04T17:18:26+01:00
Update information on CVE-2017-9268/open-build-service

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -281250,9 +281250,12 @@ CVE-2017-9269 (In libzypp before August 2018 GPG keys attached to YUM repositori
 	- libzypp 17.3.1-1 (bug #899065)
 	[jessie] - libzypp <ignored> (Minor issue)
 CVE-2017-9268 (In the open build service before 201707022 the wipetrigger and rebuild ...)
-	- open-build-service <unfixed> (low)
+	- open-build-service 2.9.4-1 (low)
 	[stretch] - open-build-service <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1045519
+	NOTE: https://github.com/openSUSE/open-build-service/pull/3267
+	NOTE: https://github.com/openSUSE/open-build-service/pull/3269
+	NOTE: https://github.com/openSUSE/open-build-service/commit/b43efe6be46387b16c0b27cf8ee7b9ca53f905ef
 CVE-2017-9267 (In Novell eDirectory before 9.0.3.1 the LDAP interface was not strictl ...)
 	NOT-FOR-US: Novell eDirectory
 CVE-2016-10379 (The VirtueMart com_virtuemart component 3.0.14 for Joomla! allows SQL  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6dec23c7268e990d62b8512449cc3e8ef3ad1cee

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6dec23c7268e990d62b8512449cc3e8ef3ad1cee
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211204/d60a5482/attachment.htm>


More information about the debian-security-tracker-commits mailing list