[Secure-testing-commits] r35661 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Thu Jul 23 21:10:14 UTC 2015
Author: sectracker
Date: 2015-07-23 21:10:14 +0000 (Thu, 23 Jul 2015)
New Revision: 35661
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-23 20:20:27 UTC (rev 35660)
+++ data/CVE/list 2015-07-23 21:10:14 UTC (rev 35661)
@@ -1,3 +1,23 @@
+CVE-2015-5621
+ RESERVED
+CVE-2015-5620
+ RESERVED
+CVE-2015-5619
+ RESERVED
+CVE-2015-5618
+ RESERVED
+CVE-2015-5617
+ RESERVED
+CVE-2015-5616
+ RESERVED
+CVE-2015-5615
+ RESERVED
+CVE-2015-5614
+ RESERVED
+CVE-2015-5613
+ RESERVED
+CVE-2015-5612
+ RESERVED
CVE-2015-5623
- wordpress <unfixed>
NOTE: https://core.trac.wordpress.org/changeset/33357
@@ -16,8 +36,8 @@
RESERVED
CVE-2015-5606
RESERVED
-CVE-2015-5605
- RESERVED
+CVE-2015-5605 (The regular-expression implementation in Google V8, as used in Google ...)
+ TODO: check
CVE-2015-5604
RESERVED
CVE-2015-5603
@@ -3072,14 +3092,14 @@
RESERVED
CVE-2015-4285
RESERVED
-CVE-2015-4284
- RESERVED
+CVE-2015-4284 (The Concurrent Data Management Replication process in Cisco IOS XR ...)
+ TODO: check
CVE-2015-4283 (Cisco Videoscape Policy Resource Manager (PRM) 3.5.4 allows remote ...)
TODO: check
CVE-2015-4282
RESERVED
-CVE-2015-4281
- RESERVED
+CVE-2015-4281 (Cross-site request forgery (CSRF) vulnerability in Cisco WebEx ...)
+ TODO: check
CVE-2015-4280 (Cisco Prime Collaboration Assurance 10.0 allows remote attackers to ...)
TODO: check
CVE-2015-4279 (The Manager component in Cisco Unified Computing System (UCS) 2.2(3b) ...)
@@ -12281,100 +12301,80 @@
RESERVED
CVE-2015-1290
RESERVED
-CVE-2015-1289
- RESERVED
+CVE-2015-1289 (Multiple unspecified vulnerabilities in Google Chrome before ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1288
- RESERVED
+CVE-2015-1288 (The Spellcheck API implementation in Google Chrome before 44.0.2403.89 ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1287
- RESERVED
+CVE-2015-1287 (Blink, as used in Google Chrome before 44.0.2403.89, enables a ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1286
- RESERVED
+CVE-2015-1286 (Cross-site scripting (XSS) vulnerability in the ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1285
- RESERVED
+CVE-2015-1285 (The XSSAuditor::canonicalize function in ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1284
- RESERVED
+CVE-2015-1284 (The LocalFrame::isURLAllowed function in core/frame/LocalFrame.cpp in ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1283
- RESERVED
+CVE-2015-1283 (Multiple integer overflows in the XML_GetBuffer function in Expat ...)
- expat <unfixed>
-CVE-2015-1282
- RESERVED
+CVE-2015-1282 (Multiple use-after-free vulnerabilities in ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1281
- RESERVED
+CVE-2015-1281 (core/loader/ImageLoader.cpp in Blink, as used in Google Chrome before ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1280
- RESERVED
+CVE-2015-1280 (SkPictureShader.cpp in Skia, as used in Google Chrome before ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1279
- RESERVED
+CVE-2015-1279 (Integer overflow in the CJBig2_Image::expand function in ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1278
- RESERVED
+CVE-2015-1278 (content/browser/web_contents/web_contents_impl.cc in Google Chrome ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1277
- RESERVED
+CVE-2015-1277 (Use-after-free vulnerability in the accessibility implementation in ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1276
- RESERVED
+CVE-2015-1276 (Use-after-free vulnerability in ...)
- chromium-browser 44.0.2403.89-1
- chromium-browser <unfixed>
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1275
- RESERVED
+CVE-2015-1275 (Cross-site scripting (XSS) vulnerability in ...)
- chromium-browser <not-affected> (Android-specific)
-CVE-2015-1274
- RESERVED
+CVE-2015-1274 (Google Chrome before 44.0.2403.89 does not ensure that the auto-open ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1273
- RESERVED
+CVE-2015-1273 (Heap-based buffer overflow in j2k.c in OpenJPEG before r3002, as used ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1272
- RESERVED
+CVE-2015-1272 (Use-after-free vulnerability in the GPU process implementation in ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1271
- RESERVED
+CVE-2015-1271 (PDFium, as used in Google Chrome before 44.0.2403.89, does not ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
-CVE-2015-1270
- RESERVED
+CVE-2015-1270 (The ucnv_io_getConverterName function in common/ucnv_io.cpp in ...)
- chromium-browser 44.0.2403.89-1
[wheezy] - chromium-browser <end-of-life>
[squeeze] - chromium-browser <end-of-life>
@@ -39549,8 +39549,8 @@
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1069301
CVE-2009-5137 (Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows ...)
NOT-FOR-US: CastRipper
-CVE-2014-0611
- RESERVED
+CVE-2014-0611 (Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in ...)
+ TODO: check
CVE-2014-0610 (The client in Novell GroupWise before 8.0.3 HP4, 2012 before SP3, and ...)
NOT-FOR-US: Novell GroupWise
CVE-2014-0609 (Unspecified vulnerability in Novell Open Enterprise Server (OES) 11 ...)
More information about the Secure-testing-commits
mailing list