[Git][security-tracker-team/security-tracker][master] Add upstream tag information for commit for CVE-2017-16933
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Nov 29 19:54:45 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f04b9947 by Salvatore Bonaccorso at 2024-11-29T20:52:24+01:00
Add upstream tag information for commit for CVE-2017-16933
Dropping the comment about fixing CVE-2018-6533 as this is already
covered in that CVE entry and in particular CVE-2017-1693 is
specifically assigned for the unsafe use of chown(1).
CVE-2018-6533 is the larger issue than CVE-2017-16933 and cover by the
https://github.com/Icinga/icinga2/pull/5850 pull request upstream.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -503040,8 +503040,7 @@ CVE-2017-16933 (etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a ch
[stretch] - icinga2 <no-dsa> (Minor issue)
[jessie] - icinga2 <no-dsa> (Minor issue)
NOTE: https://github.com/Icinga/icinga2/issues/5793
- NOTE: Fix for this and CVE-2018-6533 in https://github.com/Icinga/icinga2/pull/5850
- NOTE: Specific commit: https://github.com/Icinga/icinga2/commit/5aafc7eda5c1b026a993fc2782fa84b8f3e8e052
+ NOTE: Fixed by: https://github.com/Icinga/icinga2/commit/5aafc7eda5c1b026a993fc2782fa84b8f3e8e052 (v2.8.2)
NOTE: CVE is for the unsafe use of chown(1)
CVE-2016-10700 (auth_login.php in Cacti before 1.0.0 allows remote authenticated users ...)
- cacti 0.8.8h+ds1-5 (bug #833420)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f04b994729dd8aafc0109d4ec4b48e56f1126da9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f04b994729dd8aafc0109d4ec4b48e56f1126da9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241129/0d710294/attachment.htm>
More information about the debian-security-tracker-commits
mailing list