diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2020-10-31 16:22:27 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-10-31 16:22:27 +0100 |
commit | 8b187d1e4be7ad4ac0c211a620ebfa644e3aba76 (patch) | |
tree | b11e1503d8e86112247596137a5fc24cd6d2327d /data/CVE/2017.list | |
parent | 6427616983d6b2589d96e7fb49e4f65b73b14a1d (diff) |
Replace NFUs for Odoo with now packaged odoo
Probably all of those were fixed with the initial upload to Debian, but
should be double checked.
Diffstat (limited to 'data/CVE/2017.list')
-rw-r--r-- | data/CVE/2017.list | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/data/CVE/2017.list b/data/CVE/2017.list index 9ff8e04b22..a31283fadf 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -23361,11 +23361,11 @@ CVE-2017-10807 (JabberD 2.x (aka jabberd2) before 2.6.1 allows anyone to authent NOTE: Fixed by: https://github.com/jabberd2/jabberd2/commit/8416ae54ecefa670534f27a31db71d048b9c7f16 NOTE: https://github.com/jabberd2/jabberd2/releases/tag/jabberd-2.6.1 CVE-2017-10805 (In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise ...) - NOT-FOR-US: Odoo + - odoo <undetermined> CVE-2017-10804 (In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise ...) - NOT-FOR-US: Odoo + - odoo <undetermined> CVE-2017-10803 (In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise ...) - NOT-FOR-US: Odoo + - odoo <undetermined> CVE-2017-10802 RESERVED CVE-2017-10801 (phpSocial (formerly phpDolphin) before 3.0.1 has XSS in the PATH_INFO ...) @@ -27248,7 +27248,7 @@ CVE-2017-9417 (Broadcom BCM43xx Wi-Fi chips allow remote attackers to execute ar NOTE: https://www.blackhat.com/us-17/briefings/schedule/#broadpwn-remotely-compromising-android-and-ios-via-a-bug-in-broadcoms-wi-fi-chipsets-7603 NOTE: https://marc.info/?l=linux-wireless&m=150391055518346&w=2 CVE-2017-9416 (Directory traversal vulnerability in tools.file_open in Odoo 8.0, 9.0, ...) - NOT-FOR-US: Odoo + - odoo <undetermined> CVE-2017-9415 (Cross-site request forgery (CSRF) vulnerability in subsonic 6.1.1 allo ...) NOT-FOR-US: Subsonic CVE-2017-9414 (Cross-site request forgery (CSRF) vulnerability in the Subscribe to Po ...) @@ -37757,7 +37757,7 @@ CVE-2017-5873 (Unquoted Windows search path vulnerability in the guest service i CVE-2017-5872 (The TCP/IP networking module in Unisys ClearPath MCP systems with TCP- ...) NOT-FOR-US: Unisys ClearPath CVE-2017-5871 (Odoo Version <= 8.0-20160726 and Version 9 is affected by: CWE-601: ...) - NOT-FOR-US: Odoo + - odoo <undetermined> CVE-2017-5870 (Multiple cross-site scripting (XSS) vulnerabilities in ViMbAdmin 3.0.1 ...) NOT-FOR-US: ViMbAdmin CVE-2017-5869 (Directory traversal vulnerability in the file import feature in Nuxeo ...) |