From 669473916a9331d0cc1e96412bbc7829b7b794ef Mon Sep 17 00:00:00 2001 From: security tracker role Date: Fri, 5 Mar 2021 20:10:30 +0000 Subject: automatic update --- data/CVE/2017.list | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'data/CVE/2017.list') diff --git a/data/CVE/2017.list b/data/CVE/2017.list index da1ed50642..863798e83c 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -9041,6 +9041,7 @@ CVE-2017-15710 (In Apache httpd 2.0.23 to 2.0.65, 2.2.0 to 2.2.34, and 2.4.0 to - apache2 2.4.33-1 NOTE: https://www.openwall.com/lists/oss-security/2018/03/24/8 CVE-2017-15709 (When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 ...) + {DLA-2583-1} - activemq 5.15.3-1 (bug #890352) [jessie] - activemq (Issue introduced with OpenWire protocol support) [wheezy] - activemq (Issue introduced with OpenWire protocol support) @@ -11097,7 +11098,7 @@ CVE-2017-15046 (LAME 3.99.5, 3.99.4, 3.98.4, 3.98.2, 3.98 and 3.97 have a stack- NOTE: Starting with 3.99.5+repack1-8 libsndfile is used to read the input file, marking that as the fixed NOTE: version, although the internal lame code was only fixed in 3.100 (strictly speaking that would be NOTE: severity:unimportant for stretch onwards, but we don't have suite-specific severity annotations -CVE-2017-15045 (LAME 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based buffer over-read ...) +CVE-2017-15045 (LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and ...) - lame 3.99.5+repack1-8 [jessie] - lame 3.99.5+repack1-7+deb8u2 NOTE: https://sourceforge.net/p/lame/bugs/478/ -- cgit v1.2.3