[Secure-testing-commits] r35457 - data/CVE

Tue Jul 14 09:10:16 UTC 2015

Author: sectracker
Date: 2015-07-14 09:10:16 +0000 (Tue, 14 Jul 2015)
New Revision: 35457

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2015-07-14 04:46:50 UTC (rev 35456)
+++ data/CVE/list	2015-07-14 09:10:16 UTC (rev 35457)
@@ -1,3 +1,109 @@
+CVE-2015-5515
+	RESERVED
+CVE-2015-5514
+	RESERVED
+CVE-2015-5513
+	RESERVED
+CVE-2015-5512
+	RESERVED
+CVE-2015-5511
+	RESERVED
+CVE-2015-5510
+	RESERVED
+CVE-2015-5509
+	RESERVED
+CVE-2015-5508
+	RESERVED
+CVE-2015-5507
+	RESERVED
+CVE-2015-5506
+	RESERVED
+CVE-2015-5505
+	RESERVED
+CVE-2015-5504
+	RESERVED
+CVE-2015-5503
+	RESERVED
+CVE-2015-5502
+	RESERVED
+CVE-2015-5501
+	RESERVED
+CVE-2015-5500
+	RESERVED
+CVE-2015-5499
+	RESERVED
+CVE-2015-5498
+	RESERVED
+CVE-2015-5497
+	RESERVED
+CVE-2015-5496
+	RESERVED
+CVE-2015-5495
+	RESERVED
+CVE-2015-5494
+	RESERVED
+CVE-2015-5493
+	RESERVED
+CVE-2015-5492
+	RESERVED
+CVE-2015-5491
+	RESERVED
+CVE-2015-5490
+	RESERVED
+CVE-2015-5489
+	RESERVED
+CVE-2015-5488
+	RESERVED
+CVE-2015-5487
+	RESERVED
+CVE-2015-5486
+	RESERVED
+CVE-2015-5485
+	RESERVED
+CVE-2015-5484
+	RESERVED
+CVE-2015-5483
+	RESERVED
+CVE-2015-5482
+	RESERVED
+CVE-2015-5481
+	RESERVED
+CVE-2015-5480
+	RESERVED
+CVE-2015-5479
+	RESERVED
+CVE-2015-5478
+	RESERVED
+CVE-2015-5477
+	RESERVED
+CVE-2015-5476
+	RESERVED
+CVE-2015-5475
+	RESERVED
+CVE-2015-5474
+	RESERVED
+CVE-2015-5473
+	RESERVED
+CVE-2015-5472
+	RESERVED
+CVE-2015-5471
+	RESERVED
+CVE-2015-5469
+	RESERVED
+CVE-2015-5468
+	RESERVED
+CVE-2015-5467
+	RESERVED
+CVE-2015-5466
+	RESERVED
+CVE-2015-5465
+	RESERVED
+CVE-2015-5464
+	RESERVED
+CVE-2015-5463
+	RESERVED
+CVE-2015-5462
+	RESERVED
 CVE-2015-XXXX [IPython CSRF validation]
 	- ipython <unfixed>
 	NOTE: https://github.com/ipython/ipython/commit/a05fe052a18810e92d9be8c1185952c13fe4e5b0 (2.x)
@@ -234,6 +340,7 @@
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/07/07/9
 	TODO: check
 CVE-2015-5470 [denial of service - incomplete fix for CVE-2015-1868]
+	RESERVED
 	{DSA-3307-1 DSA-3306-1}
 	- pdns 3.4.5-1
 	[wheezy] - pdns <not-affected> (3.2 and up affected)
@@ -2060,8 +2167,8 @@
 	RESERVED
 CVE-2015-4527
 	RESERVED
-CVE-2015-4526
-	RESERVED
+CVE-2015-4526 (EMC RecoverPoint for Virtual Machines (VMs) 4.2 allows local users to ...)
+	TODO: check
 CVE-2015-4525 (The log-gather implementation in the web administration interface in ...)
 	NOT-FOR-US: EMC Isilon OneFS
 CVE-2015-4524 (Unrestricted file upload vulnerability in EMC Documentum WebTop 6.7SP1 ...)
@@ -2237,8 +2344,7 @@
 	[wheezy] - chicken <no-dsa> (Minor issue)
 	[squeeze] - chicken <no-dsa> (Minor issue)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/06/15/1
-CVE-2015-2967 [JVN#78187936 / TN:JPCERT#98968540]
-	RESERVED
+CVE-2015-2967 (Cross-site scripting (XSS) vulnerability in settings.php in Cacti ...)
 	{DSA-3295-1 DLA-255-1}
 	- cacti 0.8.8d+ds1-1
 	[squeeze] - cacti 0.8.7g-1+squeeze6
@@ -2629,16 +2735,16 @@
 	RESERVED
 CVE-2015-4264
 	RESERVED
-CVE-2015-4263
-	RESERVED
+CVE-2015-4263 (The Control and Provisioning functionality in Cisco Mobility Services ...)
+	TODO: check
 CVE-2015-4262
 	RESERVED
 CVE-2015-4261
 	RESERVED
 CVE-2015-4260 (Cross-site scripting (XSS) vulnerability in Cisco Hosted Collaboration ...)
 	TODO: check
-CVE-2015-4259
-	RESERVED
+CVE-2015-4259 (The Integrated Management Controller on Cisco Unified Computing System ...)
+	TODO: check
 CVE-2015-4258 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
 	TODO: check
 CVE-2015-4257 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
@@ -2647,8 +2753,8 @@
 	TODO: check
 CVE-2015-4255 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
 	TODO: check
-CVE-2015-4254
-	RESERVED
+CVE-2015-4254 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
+	TODO: check
 CVE-2015-4253 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
 	TODO: check
 CVE-2015-4252 (Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ...)
@@ -2657,8 +2763,8 @@
 	RESERVED
 CVE-2015-4250
 	RESERVED
-CVE-2015-4249
-	RESERVED
+CVE-2015-4249 (Multiple cross-site scripting (XSS) vulnerabilities in Cisco WebEx ...)
+	TODO: check
 CVE-2015-4248
 	RESERVED
 CVE-2015-4247
@@ -2683,8 +2789,8 @@
 	TODO: check
 CVE-2015-4237 (The CLI parser in Cisco NX-OS 4.1(2)E1(1), 6.2(11b), 6.2(12), ...)
 	TODO: check
-CVE-2015-4236
-	RESERVED
+CVE-2015-4236 (Cisco AsyncOS on Email Security Appliance (ESA) devices with software ...)
+	TODO: check
 CVE-2015-4235
 	RESERVED
 CVE-2015-4234 (Cisco NX-OS 6.0(2) and 6.2(2) on Nexus devices has an improper OS ...)
@@ -4298,8 +4404,7 @@
 	RESERVED
 CVE-2015-3651
 	RESERVED
-CVE-2015-3650
-	RESERVED
+CVE-2015-3650 (vmware-vmx.exe in VMware Workstation 7.x through 10.x before 10.0.7 ...)
 	NOT-FOR-US: VMware
 CVE-2015-3649
 	RESERVED
@@ -5789,7 +5894,7 @@
 	NOTE: http://jaanuskp.blogspot.com/2015/05/cve-2015-3200.html
 	NOTE: http://redmine.lighttpd.net/issues/2646
 CVE-2015-3199
-	RESERVED
+	REJECTED
 	NOT-FOR-US: Foreman Discovery plugin
 CVE-2015-3198
 	RESERVED
@@ -6432,10 +6537,10 @@
 	RESERVED
 CVE-2015-2971
 	RESERVED
-CVE-2015-2970
-	RESERVED
-CVE-2015-2969
-	RESERVED
+CVE-2015-2970 (index.php in LEMON-S PHP Simple Oekaki BBS before 1.21 allows remote ...)
+	TODO: check
+CVE-2015-2969 (Cross-site scripting (XSS) vulnerability in index.php in LEMON-S PHP ...)
+	TODO: check
 CVE-2015-2968
 	RESERVED
 CVE-2015-2966 (Directory traversal vulnerability in the Droidware UK Explorer+ File ...)
@@ -6444,8 +6549,8 @@
 	NOT-FOR-US: osCommerce Japanese
 CVE-2015-2964 (NAMSHI | JOSE 5.0.0 and earlier allows remote attackers to bypass ...)
 	TODO: check
-CVE-2015-2963
-	RESERVED
+CVE-2015-2963 (The thoughtbot paperclip gem before 4.2.2 for Ruby does not consider ...)
+	TODO: check
 CVE-2015-2962 (CGI RESCUE BloBee 1.20 and earlier allows remote attackers to write to ...)
 	NOT-FOR-US: CGI RESCUE BloBee
 CVE-2015-2961 (Cross-site request forgery (CSRF) vulnerability in Zoho NetFlow ...)


