Author: bam
Date: 2017-03-03 06:43:04 +0000 (Fri, 03 Mar 2017)
New Revision: 49383
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Add extra information concerning zoneminder
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-03 05:52:53 UTC (rev 49382)
+++ data/CVE/list 2017-03-03 06:43:04 UTC (rev 49383)
@@ -2470,6 +2470,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2017/01/27/2
CVE-2017-5595 (A file disclosure and inclusion vulnerability exists in ...)
- zoneminder <unfixed> (bug #854733)
+ NOTE: Check
https://github.com/ZoneMinder/ZoneMinder/commit/8b19fca9927cdec07cc9dd09bdcf2496a5ae69b3
CVE-2017-5594 (An issue was discovered in Pagekit CMS before 1.0.11. In this
...)
NOT-FOR-US: Pagekit CMS
CVE-2017-5593 (An incorrect implementation of "XEP-0280: Message
Carbons" in multiple ...)
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-03-03 05:52:53 UTC (rev 49382)
+++ data/dla-needed.txt 2017-03-03 06:43:04 UTC (rev 49383)
@@ -117,6 +117,10 @@
xorg-server (Emilio Pozuelo)
--
zoneminder
+ NOTE: Sql injection and session fixation vulerability fixes:
+ NOTE: https://github.com/ZoneMinder/ZoneMinder/pull/1764/files
+ NOTE: No CVE assigned.
+
--
zziplib
NOTE: added 2017-02-25, please give maintainer some time to respond
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
