[Secure-testing-commits] r54404 - data/CVE

Harlan Lieberman-Berg Mon, 07 Aug 2017 13:51:40 -0700

Author: hlieberman
Date: 2017-08-07 20:50:37 +0000 (Mon, 07 Aug 2017)
New Revision: 54404


Modified:
   data/CVE/list
Log:
Mark CVE-2017-7481 as unimportant


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-08-07 20:27:15 UTC (rev 54403)
+++ data/CVE/list       2017-08-07 20:50:37 UTC (rev 54404)
@@ -14275,10 +14275,10 @@
 CVE-2017-7474 (It was found that the Keycloak Node.js adapter 2.5 - 3.0 did 
not ...)
        NOT-FOR-US: Keycloak
 CVE-2017-7473 (Ansible versions 2.2.3 and earlier are vulnerable to an 
information ...)
-       - ansible <unfixed> (bug #863583)
+       - ansible <unfixed> (unimportant; bug #863583)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1440912
-       NOTE: Possibly https://github.com/ansible/ansible/issues/22505
-       NOTE: but needs confirmation.
+       NOTE: Upstream issue is https://github.com/ansible/ansible/issues/22505
+       NOTE: but upstream denies that it is a bug.
 CVE-2017-7472 (The KEYS subsystem in the Linux kernel before 4.10.13 allows 
local ...)
        {DLA-922-1}
        - linux 4.9.25-1


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r54404 - data/CVE

Reply via email to