Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 0c9578b9 by Salvatore Bonaccorso at 2018-03-02T19:09:38+01:00 Add reported bug for CVE-2018-1047 Kept the TODO item, still not fully clear (to me) if that is an issue in src:undertow or in wildfly. That will be clearer once we know how the issue was fixed. - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -17728,7 +17728,7 @@ CVE-2018-1048 (It was found that the AJP connector in undertow, as shipped in Jb NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1534343 TODO: check CVE-2018-1047 (A flaw was found in Wildfly 9.x. A path traversal vulnerability ...) - - undertow <undetermined> + - undertow <unfixed> (bug #891929) NOTE: https://issues.jboss.org/browse/WFLY-9620 NOTE: https://developer.jboss.org/thread/276826 TODO: check, issue in undertow or WildFly? View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c9578b9ffe5b6426a2686f65840057d5a315d73 --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c9578b9ffe5b6426a2686f65840057d5a315d73 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits