[Secure-testing-commits] r36079 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Fri Aug 14 21:10:15 UTC 2015


Author: sectracker
Date: 2015-08-14 21:10:15 +0000 (Fri, 14 Aug 2015)
New Revision: 36079

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-08-14 19:35:24 UTC (rev 36078)
+++ data/CVE/list	2015-08-14 21:10:15 UTC (rev 36079)
@@ -1,3 +1,5 @@
+CVE-2015-5986
+	RESERVED
 CVE-2015-XXXX [denial of service with unusual traffic]
 	- conntrack <unfixed>
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/08/14/4
@@ -787,8 +789,8 @@
 	RESERVED
 CVE-2015-5686
 	RESERVED
-CVE-2015-5685
-	RESERVED
+CVE-2015-5685 (The lazy_bdecode function in BitTorrent DHT bootstrap server ...)
+	TODO: check
 CVE-2015-5684
 	RESERVED
 CVE-2015-5683
@@ -1052,83 +1054,59 @@
 	RESERVED
 CVE-2015-5566
 	RESERVED
-CVE-2015-5565
-	RESERVED
-CVE-2015-5564
-	RESERVED
+CVE-2015-5565 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
+	TODO: check
+CVE-2015-5564 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5563
-	RESERVED
+CVE-2015-5563 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5562
-	RESERVED
+CVE-2015-5562 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5561
-	RESERVED
+CVE-2015-5561 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5560
-	RESERVED
+CVE-2015-5560 (Integer overflow in Adobe Flash Player before 18.0.0.232 on Windows ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5559
-	RESERVED
+CVE-2015-5559 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5558
-	RESERVED
+CVE-2015-5558 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5557
-	RESERVED
+CVE-2015-5557 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5556
-	RESERVED
+CVE-2015-5556 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5555
-	RESERVED
+CVE-2015-5555 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5554
-	RESERVED
+CVE-2015-5554 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5553
-	RESERVED
+CVE-2015-5553 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5552
-	RESERVED
+CVE-2015-5552 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5551
-	RESERVED
+CVE-2015-5551 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5550
-	RESERVED
+CVE-2015-5550 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5549
-	RESERVED
+CVE-2015-5549 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5548
-	RESERVED
+CVE-2015-5548 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5547
-	RESERVED
+CVE-2015-5547 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5546
-	RESERVED
+CVE-2015-5546 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5545
-	RESERVED
+CVE-2015-5545 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5544
-	RESERVED
+CVE-2015-5544 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-5543
 	RESERVED
 CVE-2015-5542
 	RESERVED
-CVE-2015-5541
-	RESERVED
+CVE-2015-5541 (Heap-based buffer overflow in Adobe Flash Player before 18.0.0.232 on ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5540
-	RESERVED
+CVE-2015-5540 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5539
-	RESERVED
+CVE-2015-5539 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-5538
 	RESERVED
@@ -1205,10 +1183,10 @@
 	NOTE: https://bugs.php.net/bug.php?id=69958
 	NOTE: http://git.php.net/?p=php-src.git;a=commit;h=bf58162ddf970f63502837f366930e44d6a992cf
 	NOTE: Fixed in 5.6.11, 5.4.43
-CVE-2015-5536
-	RESERVED
-CVE-2015-5535
-	RESERVED
+CVE-2015-5536 (Belkin N300 Dual-Band Wi-Fi Range Extender with firmware before ...)
+	TODO: check
+CVE-2015-5535 (Cross-site scripting (XSS) vulnerability in the qTranslate plugin ...)
+	TODO: check
 CVE-2015-5534
 	RESERVED
 CVE-2015-5533
@@ -1351,8 +1329,8 @@
 	- request-tracker4 4.2.11-2
 	NOTE: https://github.com/bestpractical/rt/commit/67d517ba3421ba462e349c73207a627d137ef8ac (4.2.x)
 	NOTE: https://github.com/bestpractical/rt/commit/4ec786bb4743f67a35a634c1bf43b13d3d3b39a9 (4.0.x)
-CVE-2015-5474
-	RESERVED
+CVE-2015-5474 (BitTorrent and uTorrent allow remote attackers to inject command line ...)
+	TODO: check
 CVE-2015-5473
 	RESERVED
 CVE-2015-5472
@@ -2217,34 +2195,26 @@
 	RESERVED
 CVE-2015-5135
 	RESERVED
-CVE-2015-5134
-	RESERVED
+CVE-2015-5134 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5133
-	RESERVED
+CVE-2015-5133 (Buffer overflow in Adobe Flash Player before 18.0.0.232 on Windows and ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5132
-	RESERVED
+CVE-2015-5132 (Buffer overflow in Adobe Flash Player before 18.0.0.232 on Windows and ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5131
-	RESERVED
+CVE-2015-5131 (Buffer overflow in Adobe Flash Player before 18.0.0.232 on Windows and ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5130
-	RESERVED
+CVE-2015-5130 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5129
-	RESERVED
+CVE-2015-5129 (Heap-based buffer overflow in Adobe Flash Player before 18.0.0.232 on ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-5128
 	RESERVED
 	NOT-FOR-US: Adobe Flash Player
-CVE-2015-5127
-	RESERVED
+CVE-2015-5127 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-5126
 	RESERVED
-CVE-2015-5125
-	RESERVED
+CVE-2015-5125 (Adobe Flash Player before 18.0.0.232 on Windows and OS X and before ...)
 	NOT-FOR-US: Adobe Flash Player
 CVE-2015-5124 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
 	NOT-FOR-US: Adobe Flash Player
@@ -3309,10 +3279,10 @@
 	RESERVED
 CVE-2015-4667
 	RESERVED
-CVE-2015-4666
-	RESERVED
-CVE-2015-4665
-	RESERVED
+CVE-2015-4666 (Directory traversal vulnerability in opm/read_sessionlog.php in ...)
+	TODO: check
+CVE-2015-4665 (Cross-site scripting (XSS) vulnerability in ajax_cmd.php in Xceedium ...)
+	TODO: check
 CVE-2015-4664
 	RESERVED
 CVE-2015-4663
@@ -7212,8 +7182,7 @@
 	NOTE: http://cgit.freedesktop.org/polkit/commit/?id=9f5e0c731784003bd4d6fc75ab739ff8b2ea269f
 CVE-2015-3254
 	RESERVED
-CVE-2015-3253
-	RESERVED
+CVE-2015-3253 (The MethodClosure class in runtime/MethodClosure.java in Apache Groovy ...)
 	{DLA-274-1}
 	- groovy <unfixed> (bug #793397)
 	[wheezy] - groovy <no-dsa> (Minor impact given the rdeps, will be fixed in a point update)
@@ -9710,30 +9679,30 @@
 	RESERVED
 CVE-2015-2453
 	RESERVED
-CVE-2015-2452
-	RESERVED
-CVE-2015-2451
-	RESERVED
-CVE-2015-2450
-	RESERVED
-CVE-2015-2449
-	RESERVED
-CVE-2015-2448
-	RESERVED
-CVE-2015-2447
-	RESERVED
-CVE-2015-2446
-	RESERVED
-CVE-2015-2445
-	RESERVED
-CVE-2015-2444
-	RESERVED
-CVE-2015-2443
-	RESERVED
-CVE-2015-2442
-	RESERVED
-CVE-2015-2441
-	RESERVED
+CVE-2015-2452 (Microsoft Internet Explorer 7 through 11 allows remote attackers to ...)
+	TODO: check
+CVE-2015-2451 (Microsoft Internet Explorer 9 through 11 allows remote attackers to ...)
+	TODO: check
+CVE-2015-2450 (Microsoft Internet Explorer 9 through 11 allows remote attackers to ...)
+	TODO: check
+CVE-2015-2449 (Microsoft Internet Explorer 7 through 11 allows remote attackers to ...)
+	TODO: check
+CVE-2015-2448 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
+	TODO: check
+CVE-2015-2447 (Microsoft Internet Explorer 11 allows remote attackers to execute ...)
+	TODO: check
+CVE-2015-2446 (Microsoft Internet Explorer 11 allows remote attackers to execute ...)
+	TODO: check
+CVE-2015-2445 (Microsoft Internet Explorer 10 allows remote attackers to bypass the ...)
+	TODO: check
+CVE-2015-2444 (Microsoft Internet Explorer 8 through 11 allows remote attackers to ...)
+	TODO: check
+CVE-2015-2443 (Microsoft Internet Explorer 10 and 11 allows remote attackers to ...)
+	TODO: check
+CVE-2015-2442 (Microsoft Internet Explorer 8 through 11 allows remote attackers to ...)
+	TODO: check
+CVE-2015-2441 (Microsoft Internet Explorer 7 through 11 allows remote attackers to ...)
+	TODO: check
 CVE-2015-2440
 	RESERVED
 CVE-2015-2439
@@ -10095,8 +10064,8 @@
 	NOT-FOR-US: FortiOS
 CVE-2015-2322
 	RESERVED
-CVE-2015-2321
-	RESERVED
+CVE-2015-2321 (Cross-site scripting (XSS) vulnerability in the Job Manager plugin ...)
+	TODO: check
 CVE-2015-2317 (The utils.http.is_safe_url function in Django before 1.4.20, 1.5.x, ...)
 	{DSA-3204-1 DLA-272-1}
 	- python-django 1.7.7-1 (bug #780873)




More information about the Secure-testing-commits mailing list