Update information on CVE-2017-9268/open-build-service

author: Salvatore Bonaccorso <carnil@debian.org> 2021-12-04 17:18:26 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-12-04 17:18:26 +0100
commit: f74011340db255b189ec66a55c3908b55519f35d (patch)
tree: e90b6c1901b20de171cd3b5afc886a17033e91dd /data/CVE/list.2017
parent: 78c8b1bfefbfeae01f3acd7c483eab2bcd8ff4d6 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/list.2017 b/data/CVE/list.2017
index 71cfd714fc..84bae891a5 100644
--- a/data/CVE/list.2017
+++ b/data/CVE/list.2017
@@ -27762,9 +27762,12 @@ CVE-2017-9269 (In libzypp before August 2018 GPG keys attached to YUM repositori
 	- libzypp 17.3.1-1 (bug #899065)
 	[jessie] - libzypp <ignored> (Minor issue)
 CVE-2017-9268 (In the open build service before 201707022 the wipetrigger and rebuild ...)
-	- open-build-service <unfixed> (low)
+	- open-build-service 2.9.4-1 (low)
 	[stretch] - open-build-service <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1045519
+	NOTE: https://github.com/openSUSE/open-build-service/pull/3267
+	NOTE: https://github.com/openSUSE/open-build-service/pull/3269
+	NOTE: https://github.com/openSUSE/open-build-service/commit/b43efe6be46387b16c0b27cf8ee7b9ca53f905ef
 CVE-2017-9267 (In Novell eDirectory before 9.0.3.1 the LDAP interface was not strictl ...)
 	NOT-FOR-US: Novell eDirectory
 CVE-2017-9266
author	Salvatore Bonaccorso <carnil@debian.org>	2021-12-04 17:18:26 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-12-04 17:18:26 +0100
commit	f74011340db255b189ec66a55c3908b55519f35d (patch)
tree	e90b6c1901b20de171cd3b5afc886a17033e91dd /data/CVE/list.2017
parent	78c8b1bfefbfeae01f3acd7c483eab2bcd8ff4d6 (diff)