diff options
author | Moritz Muehlenhoff <jmm@debian.org> | 2020-03-24 08:30:59 +0100 |
---|---|---|
committer | Moritz Muehlenhoff <jmm@debian.org> | 2020-03-24 08:30:59 +0100 |
commit | ed1fe5a2b9c596491569fbcc69cba2a7aa19d8c9 (patch) | |
tree | 5eafb59dfd2abe31a2f643f2bac6096f975eec13 /data/CVE/2017.list | |
parent | 0cd8bb1dc185ac65c5653efc2a03f1da606f3e4d (diff) |
"new" ruby issue, "new" bitcoin issues, NFUs
Diffstat (limited to 'data/CVE/2017.list')
-rw-r--r-- | data/CVE/2017.list | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/data/CVE/2017.list b/data/CVE/2017.list index de379c2d1c..1fb7de2106 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -663,7 +663,7 @@ CVE-2017-18352 (Error reporting within Rendertron 1.0.0 allows reflected Cross S CVE-2017-18351 RESERVED CVE-2017-18350 (bitcoind and Bitcoin-Qt prior to 0.15.1 have a stack-based buffer over ...) - TODO: check + - bitcoin 0.15.1~dfsg-1 CVE-2017-18349 (parseObject in Fastjson before 1.2.25, as used in FastjsonEngine in Pi ...) NOT-FOR-US: FastjsonEngine CVE-2017-18348 (Splunk Enterprise 6.6.x, when configured to run as root but drop privi ...) @@ -16824,7 +16824,7 @@ CVE-2017-12843 (Cyrus IMAP before 3.0.3 allows remote authenticated users to wri - cyrus-imapd-2.4 <not-affected> (Vulnerable code introduced later) NOTE: https://github.com/cyrusimap/cyrus-imapd/commit/d734a23122155f3522a8cb6aef118223aa73cde0 CVE-2017-12842 (Bitcoin Core before 0.14 allows an attacker to create an ostensibly va ...) - TODO: check + - bitcoin 0.14.2~dfsg-1~exp2 CVE-2017-12841 RESERVED CVE-2017-12840 (A kernel driver, namely DLMFENC.sys, bundled with the DESLock+ client ...) @@ -22318,7 +22318,7 @@ CVE-2017-10994 (Foxit Reader before 8.3.1 and PhantomPDF before 8.3.1 have an Ar CVE-2017-10993 (Contao before 3.5.28 and 4.x before 4.4.1 allows remote attackers to i ...) NOT-FOR-US: Contao CVE-2017-10992 (In HPE Storage Essentials 9.5.0.142, there is Unauthenticated Java Des ...) - TODO: check + NOT-FOR-US: HPE CVE-2017-10991 (The WP Statistics plugin through 12.0.9 for WordPress has XSS in the r ...) NOT-FOR-US: Wordpress plugin CVE-2017-10990 |