diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2019-01-07 21:13:22 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2019-01-07 21:13:22 +0100 |
commit | e4ea3201fd11e7a2ac7585128195053d4030b826 (patch) | |
tree | f8179fcfde7e17d6a85214532fe196139a3ea0a7 /data | |
parent | 63d47105575c8954b162b78e42e1b9c96450d1cc (diff) |
Reference upstream pull request for CVE-2018-1000546/triplea
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list index 25ba389013..1d3ae04a79 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -31670,6 +31670,7 @@ CVE-2018-1000546 (Triplea version <= 1.9.0.0.10291 contains a XML External En [jessie] - triplea <no-dsa> (Minor issue) NOTE: https://0dd.zone/2018/05/31/TripleA-XXE/ NOTE: https://github.com/triplea-game/triplea/issues/3442 + NOTE: https://github.com/triplea-game/triplea/pull/4516 CVE-2018-1000545 REJECTED CVE-2018-1000544 (rubyzip gem rubyzip version 1.2.1 and earlier contains a Directory ...) |