Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1fbe541d by Salvatore Bonaccorso at 2018-08-15T19:51:07Z
CVe-2016-9140 finally REJECTED by its CNA as not beeing a security issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -94182,12 +94182,8 @@ CVE-2016-9122 (go-jose before 1.0.4 suffers from
multiple signatures exploitatio
- golang-gopkg-square-go-jose.v1 1.0.5-1
CVE-2016-9121 (go-jose before 1.0.4 suffers from an invalid curve attack for
the ...)
- golang-gopkg-square-go-jose.v1 1.0.5-1
-CVE-2016-9140 [RCE]
- RESERVED
- - zabbix 1:3.0.6+dfsg-1 (bug #842702; unimportant)
- NOTE: https://www.exploit-db.com/exploits/39937/
- NOTE: Claimed to be not a vulnerability but a superadmin using a feature
- NOTE: as intended. 1:3.0.6+dfsg-1 improved the API script.execute
validation.
+CVE-2016-9140
+ REJECTED
CVE-2016-9139 (Cross-site scripting (XSS) vulnerability in Open Ticket Request
System ...)
{DLA-787-1}
- otrs2 5.0.14-1 (bug #843091)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1fbe541d8de4eaf332121977b19c7aa4164bc264
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1fbe541d8de4eaf332121977b19c7aa4164bc264
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
