[Secure-testing-commits] r35426 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Fri Jul 10 21:10:14 UTC 2015
Author: sectracker
Date: 2015-07-10 21:10:14 +0000 (Fri, 10 Jul 2015)
New Revision: 35426
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-10 16:20:12 UTC (rev 35425)
+++ data/CVE/list 2015-07-10 21:10:14 UTC (rev 35426)
@@ -768,14 +768,11 @@
RESERVED
CVE-2015-5119 (Use-after-free vulnerability in the ByteArray class in the ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-5118
- RESERVED
+CVE-2015-5118 (Heap-based buffer overflow in Adobe Flash Player before 13.0.0.302 and ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-5117
- RESERVED
+CVE-2015-5117 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-5116
- RESERVED
+CVE-2015-5116 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
CVE-2015-5115
RESERVED
@@ -2291,23 +2288,17 @@
RESERVED
CVE-2015-4434
RESERVED
-CVE-2015-4433
- RESERVED
+CVE-2015-4433 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-4432
- RESERVED
+CVE-2015-4432 (Heap-based buffer overflow in Adobe Flash Player before 13.0.0.302 and ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-4431
- RESERVED
+CVE-2015-4431 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-4430
- RESERVED
+CVE-2015-4430 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-4429
- RESERVED
+CVE-2015-4429 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-4428
- RESERVED
+CVE-2015-4428 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
CVE-2015-4427 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
NOT-FOR-US: Ektron CMS
@@ -2634,24 +2625,24 @@
RESERVED
CVE-2015-4261
RESERVED
-CVE-2015-4260
- RESERVED
+CVE-2015-4260 (Cross-site scripting (XSS) vulnerability in Cisco Hosted Collaboration ...)
+ TODO: check
CVE-2015-4259
RESERVED
-CVE-2015-4258
- RESERVED
-CVE-2015-4257
- RESERVED
-CVE-2015-4256
- RESERVED
-CVE-2015-4255
- RESERVED
+CVE-2015-4258 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
+ TODO: check
+CVE-2015-4257 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
+ TODO: check
+CVE-2015-4256 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
+ TODO: check
+CVE-2015-4255 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
+ TODO: check
CVE-2015-4254
RESERVED
-CVE-2015-4253
- RESERVED
-CVE-2015-4252
- RESERVED
+CVE-2015-4253 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
+ TODO: check
+CVE-2015-4252 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
+ TODO: check
CVE-2015-4251
RESERVED
CVE-2015-4250
@@ -2666,8 +2657,8 @@
RESERVED
CVE-2015-4245
RESERVED
-CVE-2015-4244
- RESERVED
+CVE-2015-4244 (The boot implementation on Cisco ASR 5000 and 5500 devices with ...)
+ TODO: check
CVE-2015-4243 (The PPPoE establishment implementation in Cisco IOS XE 3.5.0S on ASR ...)
TODO: check
CVE-2015-4242 (Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT ...)
@@ -5989,77 +5980,53 @@
NOTE: https://github.com/the-tcpdump-group/tcpdump/issues/446
NOTE: Fixed by: https://github.com/the-tcpdump-group/tcpdump/commit/3ed82f4ed0095768529afc22b923c8f7171fff70
NOTE: Introduced by: https://github.com/the-tcpdump-group/tcpdump/commit/3a3ec26085461998074b827b112d38e8f3246a86
-CVE-2015-3137
- RESERVED
+CVE-2015-3137 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3136
- RESERVED
+CVE-2015-3136 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3135
- RESERVED
+CVE-2015-3135 (Heap-based buffer overflow in Adobe Flash Player before 13.0.0.302 and ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3134
- RESERVED
+CVE-2015-3134 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3133
- RESERVED
+CVE-2015-3133 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3132
- RESERVED
+CVE-2015-3132 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3131
- RESERVED
+CVE-2015-3131 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3130
- RESERVED
+CVE-2015-3130 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3129
- RESERVED
+CVE-2015-3129 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3128
- RESERVED
+CVE-2015-3128 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3127
- RESERVED
+CVE-2015-3127 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3126
- RESERVED
+CVE-2015-3126 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3125
- RESERVED
+CVE-2015-3125 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3124
- RESERVED
+CVE-2015-3124 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3123
- RESERVED
+CVE-2015-3123 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3122
- RESERVED
+CVE-2015-3122 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3121
- RESERVED
+CVE-2015-3121 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3120
- RESERVED
+CVE-2015-3120 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3119
- RESERVED
+CVE-2015-3119 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3118
- RESERVED
+CVE-2015-3118 (Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3117
- RESERVED
+CVE-2015-3117 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3116
- RESERVED
+CVE-2015-3116 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3115
- RESERVED
+CVE-2015-3115 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2015-3114
- RESERVED
+CVE-2015-3114 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
CVE-2015-3113 (Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and ...)
NOT-FOR-US: Adobe Flash Player
@@ -9901,8 +9868,7 @@
- glusterfs <not-affected> (Vulnerable code specific to glusterfs.spec and not present in source in Debian)
CVE-2015-1794
RESERVED
-CVE-2015-1793 [Alternative chains certificate forgery]
- RESERVED
+CVE-2015-1793 (The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL ...)
- openssl 1.0.2d-1
[jessie] - openssl <not-affected> (Vulnerable code not present)
[wheezy] - openssl <not-affected> (Vulnerable code not present)
@@ -38997,8 +38963,7 @@
NOT-FOR-US: Adobe Flash Player
CVE-2014-0579
RESERVED
-CVE-2014-0578
- RESERVED
+CVE-2014-0578 (Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before ...)
NOT-FOR-US: Adobe Flash Player
CVE-2014-0577 (Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before ...)
NOT-FOR-US: Adobe Flash Player
More information about the Secure-testing-commits
mailing list