[Secure-testing-commits] r37501 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Mon Nov 2 09:10:12 UTC 2015


Author: sectracker
Date: 2015-11-02 09:10:12 +0000 (Mon, 02 Nov 2015)
New Revision: 37501

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-11-02 07:25:07 UTC (rev 37500)
+++ data/CVE/list	2015-11-02 09:10:12 UTC (rev 37501)
@@ -454,7 +454,7 @@
 	NOTE: https://git.kernel.org/cgit/linux/kernel/git/next/linux-next.git/commit/?id=eda98796aff0d9bf41094b06811f5def3b4c333c
 CVE-2015-7871
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: https://github.com/ntp-project/ntp/commit/aa44b5835d69d8ee031736bb8ee2730a514edb7d
@@ -490,7 +490,7 @@
 	TODO: check
 CVE-2015-7855
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: https://github.com/ntp-project/ntp/commit/ba716a464ecb20618560075f2e4e1051e5b6f24f
@@ -512,13 +512,13 @@
 	NOTE: https://github.com/ntp-project/ntp/commit/8482b536f9494a5d45196ab5b7e13040f5940261
 CVE-2015-7852
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: https://github.com/ntp-project/ntp/commit/07a5b8141e354a998a52994c3c9cd547927e56ce
 CVE-2015-7851
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	[jessie] - ntp <no-dsa> (Vulnerability only affects VMS)
 	[wheezy] - ntp <no-dsa> (Vulnerability only affects VMS)
@@ -527,7 +527,7 @@
 	NOTE: https://github.com/ntp-project/ntp/commit/184516e143ce4448ddb5b9876dd372008cc779f6
 CVE-2015-7850
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: https://github.com/ntp-project/ntp/commit/bb928ef08eec020ef6008f3a140702ccc0536b8e
@@ -993,27 +993,27 @@
 	NOTE: https://github.com/ntp-project/ntp/commit/492758c3d0690d3ccf7130fabfcf670997f12f7b
 CVE-2015-7704
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-3
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: Original ntp fix applied in 1:4.2.8p4+dfsg-1for CVE-2015-7704 is apparently broken
 	NOTE: http://lists.ntp.org/pipermail/pool/2015-October/007631.html
 CVE-2015-7703
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: https://github.com/ntp-project/ntp/commit/5dea6ff160c7e8f7cb038619ccccd28c3a8df637
 	NOTE: https://github.com/ntp-project/ntp/commit/cdae0f1369ade98dc7ae912a0f1953b6e533cb88
 CVE-2015-7702
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: https://github.com/ntp-project/ntp/commit/c4cd4aaf418f57f7225708a93bf48afb2bc9c1da
 CVE-2015-7701
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: https://github.com/ntp-project/ntp/commit/d7cd5e186034340402f1393e0813c7d2b14ea6ca
@@ -1040,13 +1040,13 @@
 	RESERVED
 CVE-2015-7692
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: Fixed upstream together with CVE-2015-7702
 CVE-2015-7691
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-1
 	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 	NOTE: Fixed upstream together with CVE-2015-7702
@@ -6863,7 +6863,7 @@
 	NOT-FOR-US: Ipsilon
 CVE-2015-5300 [MITM attacker can force ntpd to make a step larger than the panic threshold]
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p4+dfsg-2
 	NOTE: https://www.cs.bu.edu/~goldbe/NTPattack.html
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1271076
@@ -7196,7 +7196,7 @@
 	NOT-FOR-US: JBoss EAP
 CVE-2015-5219 [infinite loop in sntp processing crafted packet]
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p3+dfsg-1 (low)
 	[jessie] - ntp <no-dsa> (Minor issue)
 	[wheezy] - ntp <no-dsa> (Minor issue)
@@ -7275,7 +7275,7 @@
 	REJECTED
 CVE-2015-5195 [ntpd crash when processing config commands with statistics type]
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p3+dfsg-1 (low)
 	[jessie] - ntp <no-dsa> (Minor issue)
 	[wheezy] - ntp <no-dsa> (Minor issue)
@@ -7283,7 +7283,7 @@
 	NOTE: https://github.com/ntp-project/ntp/commit/52e977d79a0c4ace997e5c74af429844da2f27be
 CVE-2015-5194 [crash with crafted logconfig configuration command]
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p3+dfsg-1 (low)
 	[jessie] - ntp <no-dsa> (Minor issue)
 	[wheezy] - ntp <no-dsa> (Minor issue)
@@ -7640,7 +7640,7 @@
 	NOT-FOR-US: Slider Revolution (revslider) plugin for WordPress
 CVE-2015-5146 [ntpd control message crash: Crafted NUL-byte in configuration directive]
 	RESERVED
-	{DLA-335-1}
+	{DSA-3388-1 DLA-335-1}
 	- ntp 1:4.2.8p3+dfsg-1
 	[jessie] - ntp <no-dsa> (Minor issue)
 	[wheezy] - ntp <no-dsa> (Minor issue)




More information about the Secure-testing-commits mailing list