Update references for CVE-2017-8779

author: Salvatore Bonaccorso <carnil@debian.org> 2021-06-10 06:17:23 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-06-10 06:27:21 +0200
commit: c47259e2627056bd00789bfbd7a9c3af7c09fba1 (patch)
tree: baf6f2b2da44a460d80904c9dabaafdcaeaf9612 /data/CVE/2017.list
parent: 84842369a1eae76da5458928d56ec9c2bed0483b (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/data/CVE/2017.list b/data/CVE/2017.list
index feeaefc32d..d091ab418f 100644
--- a/data/CVE/2017.list
+++ b/data/CVE/2017.list
@@ -29386,6 +29386,9 @@ CVE-2017-8779 (rpcbind through 0.2.4, LIBTIRPC through 1.0.1 and 1.0.2-rc throug
 	- ntirpc 1.4.4-1 (bug #861836)
 	NOTE: https://www.openwall.com/lists/oss-security/2017/05/04/1
 	NOTE: https://github.com/guidovranken/rpcbomb/
+	NOTE: For rpcbind, 0.2.3-0.6 upload was based on Guido Vranken 's patch in
+	NOTE: https://github.com/guidovranken/rpcbomb/blob/master/rpcbind_patch.txt
+	NOTE: Upstream patch (complete): https://git.linux-nfs.org/?p=steved/rpcbind.git;a=commit;h=7ea36eeece56b59f98e469934e4c20b4da043346 (rpcbind-0_2_5-rc1)
 CVE-2017-8776 (Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10. ...)
 	NOT-FOR-US: Quick Heal Internet Security
 CVE-2017-8775 (Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10. ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-06-10 06:17:23 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-06-10 06:27:21 +0200
commit	c47259e2627056bd00789bfbd7a9c3af7c09fba1 (patch)
tree	baf6f2b2da44a460d80904c9dabaafdcaeaf9612 /data/CVE/2017.list
parent	84842369a1eae76da5458928d56ec9c2bed0483b (diff)