Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8b941270 by Salvatore Bonaccorso at 2018-09-14T19:28:20Z
Update information for CVE-2017-7561
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -75831,10 +75831,11 @@ CVE-2017-7562 (An authentication bypass flaw was
found in the way krb5's certaut
CVE-2017-7561 (Red Hat JBoss EAP version 3.0.7 through before 4.0.0.Beta1 is
...)
- resteasy <unfixed> (bug #873392)
[jessie] - resteasy <not-affected> (CORS Filter added in 3.0.7.Final)
- - resteasy3.0 <undetermined>
+ - resteasy3.0 <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1483823
NOTE: https://issues.jboss.org/projects/RESTEASY/issues/RESTEASY-1704
NOTE: Fixed by:
https://github.com/resteasy/Resteasy/commit/517db971d8f7094124416bf72091fd0b45a13028
+ NOTE: Fixed in 4.0.0.Beta1, 3.0.25.Final, 3.5.0.CR1
CVE-2017-7560 (It was found that rhnsd PID files are created as world-writable
that ...)
- rhnsd <not-affected> (Vulnerable code introduced later)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1480550
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b94127021e65d8ee695de594884ebfa52c7223f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b94127021e65d8ee695de594884ebfa52c7223f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
