[Secure-testing-commits] r34186 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon May 11 21:10:15 UTC 2015
Author: sectracker
Date: 2015-05-11 21:10:15 +0000 (Mon, 11 May 2015)
New Revision: 34186
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-11 20:42:17 UTC (rev 34185)
+++ data/CVE/list 2015-05-11 21:10:15 UTC (rev 34186)
@@ -1,3 +1,345 @@
+CVE-2015-3815
+ RESERVED
+CVE-2015-3814
+ RESERVED
+CVE-2015-3813
+ RESERVED
+CVE-2015-3812
+ RESERVED
+CVE-2015-3811
+ RESERVED
+CVE-2015-3810
+ RESERVED
+CVE-2015-3809
+ RESERVED
+CVE-2015-3808
+ RESERVED
+CVE-2015-3807
+ RESERVED
+CVE-2015-3806
+ RESERVED
+CVE-2015-3805
+ RESERVED
+CVE-2015-3804
+ RESERVED
+CVE-2015-3803
+ RESERVED
+CVE-2015-3802
+ RESERVED
+CVE-2015-3801
+ RESERVED
+CVE-2015-3800
+ RESERVED
+CVE-2015-3799
+ RESERVED
+CVE-2015-3798
+ RESERVED
+CVE-2015-3797
+ RESERVED
+CVE-2015-3796
+ RESERVED
+CVE-2015-3795
+ RESERVED
+CVE-2015-3794
+ RESERVED
+CVE-2015-3793
+ RESERVED
+CVE-2015-3792
+ RESERVED
+CVE-2015-3791
+ RESERVED
+CVE-2015-3790
+ RESERVED
+CVE-2015-3789
+ RESERVED
+CVE-2015-3788
+ RESERVED
+CVE-2015-3787
+ RESERVED
+CVE-2015-3786
+ RESERVED
+CVE-2015-3785
+ RESERVED
+CVE-2015-3784
+ RESERVED
+CVE-2015-3783
+ RESERVED
+CVE-2015-3782
+ RESERVED
+CVE-2015-3781
+ RESERVED
+CVE-2015-3780
+ RESERVED
+CVE-2015-3779
+ RESERVED
+CVE-2015-3778
+ RESERVED
+CVE-2015-3777
+ RESERVED
+CVE-2015-3776
+ RESERVED
+CVE-2015-3775
+ RESERVED
+CVE-2015-3774
+ RESERVED
+CVE-2015-3773
+ RESERVED
+CVE-2015-3772
+ RESERVED
+CVE-2015-3771
+ RESERVED
+CVE-2015-3770
+ RESERVED
+CVE-2015-3769
+ RESERVED
+CVE-2015-3768
+ RESERVED
+CVE-2015-3767
+ RESERVED
+CVE-2015-3766
+ RESERVED
+CVE-2015-3765
+ RESERVED
+CVE-2015-3764
+ RESERVED
+CVE-2015-3763
+ RESERVED
+CVE-2015-3762
+ RESERVED
+CVE-2015-3761
+ RESERVED
+CVE-2015-3760
+ RESERVED
+CVE-2015-3759
+ RESERVED
+CVE-2015-3758
+ RESERVED
+CVE-2015-3757
+ RESERVED
+CVE-2015-3756
+ RESERVED
+CVE-2015-3755
+ RESERVED
+CVE-2015-3754
+ RESERVED
+CVE-2015-3753
+ RESERVED
+CVE-2015-3752
+ RESERVED
+CVE-2015-3751
+ RESERVED
+CVE-2015-3750
+ RESERVED
+CVE-2015-3749
+ RESERVED
+CVE-2015-3748
+ RESERVED
+CVE-2015-3747
+ RESERVED
+CVE-2015-3746
+ RESERVED
+CVE-2015-3745
+ RESERVED
+CVE-2015-3744
+ RESERVED
+CVE-2015-3743
+ RESERVED
+CVE-2015-3742
+ RESERVED
+CVE-2015-3741
+ RESERVED
+CVE-2015-3740
+ RESERVED
+CVE-2015-3739
+ RESERVED
+CVE-2015-3738
+ RESERVED
+CVE-2015-3737
+ RESERVED
+CVE-2015-3736
+ RESERVED
+CVE-2015-3735
+ RESERVED
+CVE-2015-3734
+ RESERVED
+CVE-2015-3733
+ RESERVED
+CVE-2015-3732
+ RESERVED
+CVE-2015-3731
+ RESERVED
+CVE-2015-3730
+ RESERVED
+CVE-2015-3729
+ RESERVED
+CVE-2015-3728
+ RESERVED
+CVE-2015-3727
+ RESERVED
+CVE-2015-3726
+ RESERVED
+CVE-2015-3725
+ RESERVED
+CVE-2015-3724
+ RESERVED
+CVE-2015-3723
+ RESERVED
+CVE-2015-3722
+ RESERVED
+CVE-2015-3721
+ RESERVED
+CVE-2015-3720
+ RESERVED
+CVE-2015-3719
+ RESERVED
+CVE-2015-3718
+ RESERVED
+CVE-2015-3717
+ RESERVED
+CVE-2015-3716
+ RESERVED
+CVE-2015-3715
+ RESERVED
+CVE-2015-3714
+ RESERVED
+CVE-2015-3713
+ RESERVED
+CVE-2015-3712
+ RESERVED
+CVE-2015-3711
+ RESERVED
+CVE-2015-3710
+ RESERVED
+CVE-2015-3709
+ RESERVED
+CVE-2015-3708
+ RESERVED
+CVE-2015-3707
+ RESERVED
+CVE-2015-3706
+ RESERVED
+CVE-2015-3705
+ RESERVED
+CVE-2015-3704
+ RESERVED
+CVE-2015-3703
+ RESERVED
+CVE-2015-3702
+ RESERVED
+CVE-2015-3701
+ RESERVED
+CVE-2015-3700
+ RESERVED
+CVE-2015-3699
+ RESERVED
+CVE-2015-3698
+ RESERVED
+CVE-2015-3697
+ RESERVED
+CVE-2015-3696
+ RESERVED
+CVE-2015-3695
+ RESERVED
+CVE-2015-3694
+ RESERVED
+CVE-2015-3693
+ RESERVED
+CVE-2015-3692
+ RESERVED
+CVE-2015-3691
+ RESERVED
+CVE-2015-3690
+ RESERVED
+CVE-2015-3689
+ RESERVED
+CVE-2015-3688
+ RESERVED
+CVE-2015-3687
+ RESERVED
+CVE-2015-3686
+ RESERVED
+CVE-2015-3685
+ RESERVED
+CVE-2015-3684
+ RESERVED
+CVE-2015-3683
+ RESERVED
+CVE-2015-3682
+ RESERVED
+CVE-2015-3681
+ RESERVED
+CVE-2015-3680
+ RESERVED
+CVE-2015-3679
+ RESERVED
+CVE-2015-3678
+ RESERVED
+CVE-2015-3677
+ RESERVED
+CVE-2015-3676
+ RESERVED
+CVE-2015-3675
+ RESERVED
+CVE-2015-3674
+ RESERVED
+CVE-2015-3673
+ RESERVED
+CVE-2015-3672
+ RESERVED
+CVE-2015-3671
+ RESERVED
+CVE-2015-3670
+ RESERVED
+CVE-2015-3669
+ RESERVED
+CVE-2015-3668
+ RESERVED
+CVE-2015-3667
+ RESERVED
+CVE-2015-3666
+ RESERVED
+CVE-2015-3665
+ RESERVED
+CVE-2015-3664
+ RESERVED
+CVE-2015-3663
+ RESERVED
+CVE-2015-3662
+ RESERVED
+CVE-2015-3661
+ RESERVED
+CVE-2015-3660
+ RESERVED
+CVE-2015-3659
+ RESERVED
+CVE-2015-3658
+ RESERVED
+CVE-2015-3657
+ RESERVED
+CVE-2015-3656
+ RESERVED
+CVE-2015-3655
+ RESERVED
+CVE-2015-3654
+ RESERVED
+CVE-2015-3653
+ RESERVED
+CVE-2015-3652
+ RESERVED
+CVE-2015-3651
+ RESERVED
+CVE-2015-3650
+ RESERVED
+CVE-2015-3649
+ RESERVED
+CVE-2015-3648
+ RESERVED
+CVE-2015-3647
+ RESERVED
+CVE-2015-3645
+ RESERVED
+CVE-2015-3644
+ RESERVED
CVE-2015-XXXX [dcraw imput sanitization errors]
- dcraw <unfixed> (bug #785019)
- ufraw <unfixed>
@@ -166,8 +508,8 @@
RESERVED
CVE-2015-3611
RESERVED
-CVE-2015-3610
- RESERVED
+CVE-2015-3610 (The Siemens HomeControl for Room Automation application before 2.0.1 ...)
+ TODO: check
CVE-2015-3609
RESERVED
CVE-2015-3608
@@ -510,6 +852,7 @@
- salt <not-affected> (Vulnerable code not present in the version in Debian stable/unstable)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/02/1
CVE-2015-3646 [Potential Keystone cache backend password leak in log]
+ RESERVED
- keystone 2015.1.0-1
[jessie] - keystone <no-dsa> (Minor issue)
[wheezy] - keystone <not-affected> (Vulnerable code not present)
@@ -970,8 +1313,7 @@
RESERVED
CVE-2015-3295
RESERVED
-CVE-2015-3294 [unchecked return value of the setup_reply() function]
- RESERVED
+CVE-2015-3294 (The tcp_request function in Dnsmasq before 2.73rc4 does not properly ...)
{DSA-3251-1}
- dnsmasq 2.72-3.1 (bug #783459)
NOTE: http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2015q2/009382.html
@@ -1578,8 +1920,8 @@
RESERVED
CVE-2015-3009
RESERVED
-CVE-2014-9716
- RESERVED
+CVE-2014-9716 (Cross-site scripting (XSS) vulnerability in WebODF before 0.5.4 allows ...)
+ TODO: check
CVE-2015-3416 (The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does ...)
{DSA-3252-1}
- sqlite3 3.8.9-1 (bug #783968)
@@ -2074,22 +2416,19 @@
[jessie] - caja <no-dsa> (Minor issue)
NOTE: https://github.com/mate-desktop/caja/issues/398
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/04/03/12
-CVE-2015-3013 [Bypass of file blacklist]
- RESERVED
+CVE-2015-3013 (ownCloud Server before 5.0.19, 6.x before 6.0.7, and 7.x before 7.0.5 ...)
{DSA-3244-1}
[experimental] - owncloud 7.0.5+dfsg-1
- owncloud 7.0.4+dfsg-3
NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2015-004
-CVE-2015-3012 [Multiple stored XSS in "documents" application]
- RESERVED
+CVE-2015-3012 (Multiple cross-site scripting (XSS) vulnerabilities in WebODF before ...)
{DSA-3244-1}
[experimental] - owncloud 7.0.5+dfsg-1
- owncloud 7.0.4+dfsg-3
- owncloud-documents <itp> (bug #779358)
NOTE: owncloud-documents fixed in 0.9.0+8.0.0+dfsg-1
NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2015-002
-CVE-2015-3011 [Multiple stored XSS in "contacts" application]
- RESERVED
+CVE-2015-3011 (Multiple cross-site scripting (XSS) vulnerabilities in the contacts ...)
{DSA-3244-1}
[experimental] - owncloud 7.0.5+dfsg-1
- owncloud 7.0.4+dfsg-3
@@ -3338,8 +3677,8 @@
{DSA-3198-1}
- php5 5.6.7+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=69207
-CVE-2015-2347
- RESERVED
+CVE-2015-2347 (Cross-site scripting (XSS) vulnerability in Huawei SEQ Analyst before ...)
+ TODO: check
CVE-2015-2346
RESERVED
CVE-2015-2345
@@ -4654,8 +4993,8 @@
RESERVED
CVE-2015-1908 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 ...)
TODO: check
-CVE-2015-1907
- RESERVED
+CVE-2015-1907 (The Administration and Reporting Tool in IBM Rational License Key ...)
+ TODO: check
CVE-2015-1906
RESERVED
CVE-2015-1905
@@ -7164,16 +7503,16 @@
RESERVED
CVE-2015-1157
RESERVED
-CVE-2015-1156
- RESERVED
-CVE-2015-1155
- RESERVED
-CVE-2015-1154
- RESERVED
-CVE-2015-1153
- RESERVED
-CVE-2015-1152
- RESERVED
+CVE-2015-1156 (The page-loading implementation in WebKit, as used in Apple Safari ...)
+ TODO: check
+CVE-2015-1155 (The history implementation in WebKit, as used in Apple Safari before ...)
+ TODO: check
+CVE-2015-1154 (WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and ...)
+ TODO: check
+CVE-2015-1153 (WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and ...)
+ TODO: check
+CVE-2015-1152 (WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and ...)
+ TODO: check
CVE-2015-1151 (Wiki Server in Apple OS X Server before 4.1 allows remote attackers to ...)
TODO: check
CVE-2015-1150 (The Firewall component in Apple OS X Server before 4.1 uses an ...)
@@ -8651,10 +8990,10 @@
RESERVED
CVE-2015-0717
RESERVED
-CVE-2015-0716
- RESERVED
-CVE-2015-0715
- RESERVED
+CVE-2015-0716 (Cross-site request forgery (CSRF) vulnerability in the CUCReports page ...)
+ TODO: check
+CVE-2015-0715 (SQL injection vulnerability in the administrative web interface in ...)
+ TODO: check
CVE-2015-0714 (Multiple cross-site scripting (XSS) vulnerabilities in Cisco Finesse ...)
TODO: check
CVE-2015-0713
@@ -8681,8 +9020,8 @@
NOT-FOR-US: Cisco
CVE-2015-0702 (Unrestricted file upload vulnerability in the Custom Prompts upload ...)
NOT-FOR-US: Cisco
-CVE-2015-0701
- RESERVED
+CVE-2015-0701 (Cisco UCS Central Software before 1.3(1a) allows remote attackers to ...)
+ TODO: check
CVE-2015-0700 (Cross-site request forgery (CSRF) vulnerability in the Dashboard page ...)
NOT-FOR-US: Cisco
CVE-2015-0699 (SQL injection vulnerability in the Interactive Voice Response (IVR) ...)
@@ -9281,6 +9620,7 @@
CVE-2014-9463
RESERVED
CVE-2014-9462 (The _validaterepo function in sshpeer in Mercurial before 3.2.4 allows ...)
+ {DSA-3257-1}
- mercurial 3.4-1 (bug #783237)
NOTE: http://chargen.matasano.com/chargen/2015/3/17/this-new-vulnerability-mercurial-command-injection-cve-2014-9462.html
NOTE: http://selenic.com/hg/rev/e3f30068d2eb
@@ -9659,8 +9999,8 @@
RESERVED
CVE-2015-0539
RESERVED
-CVE-2015-0538
- RESERVED
+CVE-2015-0538 (ftagent.exe in EMC AutoStart 5.4.x and 5.5.x before 5.5.0.508 HF4 ...)
+ TODO: check
CVE-2015-0537
RESERVED
CVE-2015-0536
@@ -9673,8 +10013,8 @@
RESERVED
CVE-2015-0532 (EMC RSA Identity Management and Governance (IMG) 6.9 before P04 and ...)
TODO: check
-CVE-2015-0531
- RESERVED
+CVE-2015-0531 (EMC SourceOne Email Management before 7.2 does not have a lockout ...)
+ TODO: check
CVE-2015-0530 (Buffer overflow in an unspecified function in nsr_render_log in EMC ...)
NOT-FOR-US: EMC NetWorker
CVE-2015-0529 (EMC PowerPath Virtual Appliance (aka vApp) before 2.0 has default ...)
@@ -33031,8 +33371,8 @@
NOT-FOR-US: IBM MessageSight
CVE-2014-0920 (IBM SPSS Analytic Server 1.0 before IF002 and 1.0.1 before IF004 logs ...)
NOT-FOR-US: IBM SPSS Analytic Server
-CVE-2014-0919
- RESERVED
+CVE-2014-0919 (IBM DB2 9.5 through 10.5 on Linux, UNIX, and Windows stores passwords ...)
+ TODO: check
CVE-2014-0918 (Directory traversal vulnerability in IBM Eclipse Help System (IEHS) in ...)
NOT-FOR-US: IBM Eclipse Help System
CVE-2014-0917 (Cross-site scripting (XSS) vulnerability in IBM Eclipse Help System ...)
More information about the Secure-testing-commits
mailing list