diff options
author | security tracker role <sectracker@soriano.debian.org> | 2020-08-24 20:10:19 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2020-08-24 20:10:19 +0000 |
commit | fde3f9f122dafa650c2a8141f47e3302a3da7c94 (patch) | |
tree | be412acaca1e4cc588deeef991daee2395bf2c30 /data/CVE/2017.list | |
parent | c581f7e2b86eeba969aa961e04d0632c39ca2318 (diff) |
automatic update
Diffstat (limited to 'data/CVE/2017.list')
-rw-r--r-- | data/CVE/2017.list | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/data/CVE/2017.list b/data/CVE/2017.list index 10bf8b1ac7..29ac6be719 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -10907,7 +10907,7 @@ CVE-2017-15096 (A flaw was found in GlusterFS in versions prior to 3.10. A null NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1502928 NOTE: Fixed by: http://git.gluster.org/cgit/glusterfs.git/commit/?id=1f48d17fee0cac95648ec34d13f038b27ef5c6ac CVE-2017-15095 (A deserialization flaw was discovered in the jackson-databind in versi ...) - {DSA-4037-1 DLA-2091-1} + {DSA-4037-1 DLA-2342-1 DLA-2091-1} - jackson-databind 2.9.1-1 - libjackson-json-java <unfixed> NOTE: The Debian upload for stretch (2.8.6-1+deb9u1) and jessie (2.4.2-2+deb8u1) @@ -33043,7 +33043,7 @@ CVE-2017-7526 (libgcrypt before version 1.7.8 is vulnerable to a cache side-chan NOTE: GnuPG: https://dev.gnupg.org/rC8725c99ffa41778f382ca97233183bcd687bb0ce NOTE: GnuPG1: https://dev.gnupg.org/D438 CVE-2017-7525 (A deserialization flaw was discovered in the jackson-databind, version ...) - {DSA-4004-1 DLA-2091-1} + {DSA-4004-1 DLA-2342-1 DLA-2091-1} - jackson-databind 2.9.1-1 (bug #870848) - libjackson-json-java <unfixed> NOTE: https://github.com/FasterXML/jackson-databind/issues/1599 |