Closed grahamc closed 7 years ago
unstable: we are not vulnerable (https://github.com/NixOS/nixpkgs/commit/308c09d41f309e5055e45c66c07454581945d458) 17.03: we are not vulnerable (https://github.com/NixOS/nixpkgs/commit/308c09d41f309e5055e45c66c07454581945d458) - same commit as unstable, branch point was after this commit 16.09: we are not vulnerable (https://github.com/NixOS/nixpkgs/commit/674d8cf06f297e4337ca2a248b46e10fb85b766d)
Here is a report from the oss-security mailing list for Vulnerability Roundup 27.
Skip to First Email
Instructions:
Identification
Identify if we have the software, in 16.09, 17.03, and unstable. Then determine if we are vulnerable, and make a comment with your findings. It can also be helpful to specify if you think there is a patch, or if it can be fixed via a general update.
Example:
IMPORTANT: If you believe there are possibly related issues, bring them up on the parent issue!
Patching
Start by commenting on this issue saying you're working on a patch. This way, we don't duplicate work.
If you open a pull request, tag this issue and the master issue for the roundup.
If you commit the patch directly to a branch, please leave a comment on this issue with the branch and the commit hash, example:
Skip to First Email
Upon Completion ...
Info
Triage Indicator:
Should the search term be changed from
wordpress
? Suggest a new package search by commenting:Known CVEs: CVE-2017-6814, CVE-2017-6815, CVE-2017-6816, CVE-2017-6817, CVE-2017-6818, CVE-2017-6819
Skip to End
Sun, 12 Mar 2017 20:34:23 +0000 Craig Small,
CALy8Cw58FYZobXa7G5MGoPbfJ4T9w1XHu3BYL1sGeBM-voBSkA@mail.gmail.com
Skip to End