[Secure-testing-commits] r37501 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon Nov 2 09:10:12 UTC 2015
Author: sectracker
Date: 2015-11-02 09:10:12 +0000 (Mon, 02 Nov 2015)
New Revision: 37501
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-02 07:25:07 UTC (rev 37500)
+++ data/CVE/list 2015-11-02 09:10:12 UTC (rev 37501)
@@ -454,7 +454,7 @@
NOTE: https://git.kernel.org/cgit/linux/kernel/git/next/linux-next.git/commit/?id=eda98796aff0d9bf41094b06811f5def3b4c333c
CVE-2015-7871
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: https://github.com/ntp-project/ntp/commit/aa44b5835d69d8ee031736bb8ee2730a514edb7d
@@ -490,7 +490,7 @@
TODO: check
CVE-2015-7855
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: https://github.com/ntp-project/ntp/commit/ba716a464ecb20618560075f2e4e1051e5b6f24f
@@ -512,13 +512,13 @@
NOTE: https://github.com/ntp-project/ntp/commit/8482b536f9494a5d45196ab5b7e13040f5940261
CVE-2015-7852
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: https://github.com/ntp-project/ntp/commit/07a5b8141e354a998a52994c3c9cd547927e56ce
CVE-2015-7851
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
[jessie] - ntp <no-dsa> (Vulnerability only affects VMS)
[wheezy] - ntp <no-dsa> (Vulnerability only affects VMS)
@@ -527,7 +527,7 @@
NOTE: https://github.com/ntp-project/ntp/commit/184516e143ce4448ddb5b9876dd372008cc779f6
CVE-2015-7850
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: https://github.com/ntp-project/ntp/commit/bb928ef08eec020ef6008f3a140702ccc0536b8e
@@ -993,27 +993,27 @@
NOTE: https://github.com/ntp-project/ntp/commit/492758c3d0690d3ccf7130fabfcf670997f12f7b
CVE-2015-7704
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-3
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: Original ntp fix applied in 1:4.2.8p4+dfsg-1for CVE-2015-7704 is apparently broken
NOTE: http://lists.ntp.org/pipermail/pool/2015-October/007631.html
CVE-2015-7703
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: https://github.com/ntp-project/ntp/commit/5dea6ff160c7e8f7cb038619ccccd28c3a8df637
NOTE: https://github.com/ntp-project/ntp/commit/cdae0f1369ade98dc7ae912a0f1953b6e533cb88
CVE-2015-7702
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: https://github.com/ntp-project/ntp/commit/c4cd4aaf418f57f7225708a93bf48afb2bc9c1da
CVE-2015-7701
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: https://github.com/ntp-project/ntp/commit/d7cd5e186034340402f1393e0813c7d2b14ea6ca
@@ -1040,13 +1040,13 @@
RESERVED
CVE-2015-7692
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: Fixed upstream together with CVE-2015-7702
CVE-2015-7691
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-1
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: Fixed upstream together with CVE-2015-7702
@@ -6863,7 +6863,7 @@
NOT-FOR-US: Ipsilon
CVE-2015-5300 [MITM attacker can force ntpd to make a step larger than the panic threshold]
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p4+dfsg-2
NOTE: https://www.cs.bu.edu/~goldbe/NTPattack.html
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1271076
@@ -7196,7 +7196,7 @@
NOT-FOR-US: JBoss EAP
CVE-2015-5219 [infinite loop in sntp processing crafted packet]
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p3+dfsg-1 (low)
[jessie] - ntp <no-dsa> (Minor issue)
[wheezy] - ntp <no-dsa> (Minor issue)
@@ -7275,7 +7275,7 @@
REJECTED
CVE-2015-5195 [ntpd crash when processing config commands with statistics type]
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p3+dfsg-1 (low)
[jessie] - ntp <no-dsa> (Minor issue)
[wheezy] - ntp <no-dsa> (Minor issue)
@@ -7283,7 +7283,7 @@
NOTE: https://github.com/ntp-project/ntp/commit/52e977d79a0c4ace997e5c74af429844da2f27be
CVE-2015-5194 [crash with crafted logconfig configuration command]
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p3+dfsg-1 (low)
[jessie] - ntp <no-dsa> (Minor issue)
[wheezy] - ntp <no-dsa> (Minor issue)
@@ -7640,7 +7640,7 @@
NOT-FOR-US: Slider Revolution (revslider) plugin for WordPress
CVE-2015-5146 [ntpd control message crash: Crafted NUL-byte in configuration directive]
RESERVED
- {DLA-335-1}
+ {DSA-3388-1 DLA-335-1}
- ntp 1:4.2.8p3+dfsg-1
[jessie] - ntp <no-dsa> (Minor issue)
[wheezy] - ntp <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list