VulnXML: Bitmessage vulnerability
No CVE is available. CVE is requested. The bitmessage port will be updated shortly. Approved by: tcberner
This commit is contained in:
parent
26f71dedd2
commit
73eb00859b
Notes:
svn2git
2021-03-31 03:12:20 +00:00
svn path=/head/; revision=461837
@ -58,6 +58,35 @@ Notes:
|
||||
* Do not forget port variants (linux-f10-libxml2, libxml2, etc.)
|
||||
-->
|
||||
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
|
||||
<vuln vid="1a75c84a-11c8-11e8-83e7-485b3931c969">
|
||||
<topic>bitmessage -- remote code execution vulnerability</topic>
|
||||
<affects>
|
||||
<package>
|
||||
<name>bitmessage</name>
|
||||
<range><le>0.6.2</le></range>
|
||||
</package>
|
||||
</affects>
|
||||
<description>
|
||||
<body xmlns="http://www.w3.org/1999/xhtml">
|
||||
<p>Bitmessage developers report:</p>
|
||||
<blockquote cite="https://github.com/Bitmessage/PyBitmessage/releases/tag/v0.6.3">
|
||||
<p>A remote code execution vulnerability has been spotted in use
|
||||
against some users running PyBitmessage v0.6.2. The cause was
|
||||
identified and a fix has been added and released as 0.6.3.2. (Will be
|
||||
updated if/when CVE will be available.)</p>
|
||||
</blockquote>
|
||||
</body>
|
||||
</description>
|
||||
<references>
|
||||
<url>https://github.com/Bitmessage/PyBitmessage/releases/tag/v0.6.3</url>
|
||||
<url>https://bitmessage.org/wiki/Main_Page</url>
|
||||
</references>
|
||||
<dates>
|
||||
<discovery>2018-02-13</discovery>
|
||||
<entry>2018-02-14</entry>
|
||||
</dates>
|
||||
</vuln>
|
||||
|
||||
<vuln vid="5d374fbb-bae3-45db-afc0-795684ac7353">
|
||||
<topic>jenkins -- Path traversal vulnerability allows access to files outside plugin resources</topic>
|
||||
<affects>
|
||||
|
Loading…
Reference in New Issue
Block a user