[Secure-testing-commits] r37515 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Mon Nov 2 21:10:12 UTC 2015 

Author: sectracker
Date: 2015-11-02 21:10:12 +0000 (Mon, 02 Nov 2015)
New Revision: 37515

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-11-02 19:57:17 UTC (rev 37514)
+++ data/CVE/list	2015-11-02 21:10:12 UTC (rev 37515)
@@ -1,3 +1,7 @@
+CVE-2015-8033
+	RESERVED
+CVE-2015-8032
+	RESERVED
 CVE-2015-8035 [DoS if xz enabled]
 	- libxml2 <unfixed> (unimportant)
 	NOTE: Debian binary package not built with --with-lzma
@@ -591,6 +595,7 @@
 CVE-2015-7836 (Siemens RUGGEDCOM ROS before 4.2.1 allows remote attackers to obtain ...)
 	TODO: check
 CVE-2015-7835 (The mod_l2_entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x ...)
+	{DSA-3390-1}
 	- xen <unfixed>
 	[squeeze] - xen <end-of-life> (not supported in squeeze-lts)
 	NOTE: http://xenbits.xen.org/xsa/advisory-148.html
@@ -4183,10 +4188,10 @@
 	RESERVED
 CVE-2015-6355
 	RESERVED
-CVE-2015-6354
-	RESERVED
-CVE-2015-6353
-	RESERVED
+CVE-2015-6354 (Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight ...)
+	TODO: check
+CVE-2015-6353 (Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight ...)
+	TODO: check
 CVE-2015-6352 (Cisco Unified Communications Domain Manager before 10.6(1) provides ...)
 	TODO: check
 CVE-2015-6351 (Cisco ASR 5500 System Architecture Evolution (SAE) Gateway devices ...)
@@ -4205,8 +4210,8 @@
 	TODO: check
 CVE-2015-6344 (The web-based GUI in Cisco Adaptive Security Appliance (ASA) CX ...)
 	TODO: check
-CVE-2015-6343
-	RESERVED
+CVE-2015-6343 (The SIP implementation in Cisco IOS 15.5(3)M on Cisco Unified Border ...)
+	TODO: check
 CVE-2015-6342
 	RESERVED
 CVE-2015-6341 (The Web Management GUI on Cisco Wireless LAN Controller (WLC) devices ...)
@@ -4817,10 +4822,10 @@
 	RESERVED
 CVE-2015-6034 (EPSON Network Utility 4.10 uses weak permissions (Everyone: Full ...)
 	TODO: check
-CVE-2015-6033
-	RESERVED
-CVE-2015-6032
-	RESERVED
+CVE-2015-6033 (Qolsys IQ Panel (aka QOL) before 1.5.1 does not verify the digital ...)
+	TODO: check
+CVE-2015-6032 (Qolsys IQ Panel (aka QOL) before 1.5.1 has hardcoded cryptographic ...)
+	TODO: check
 CVE-2015-6031 [Buffer overflow vulnerability in XML parser functionality]
 	RESERVED
 	{DSA-3379-1}
@@ -5909,8 +5914,8 @@
 	TODO: check
 CVE-2015-5668 (SQL injection vulnerability in Techno Project Japan Enisys Gw before ...)
 	TODO: check
-CVE-2015-5667
-	RESERVED
+CVE-2015-5667 (Cross-site scripting (XSS) vulnerability in the HTML-Scrubber module ...)
+	TODO: check
 CVE-2015-5666
 	RESERVED
 CVE-2015-5665 (Cross-site request forgery (CSRF) vulnerability in LOCKON EC-CUBE ...)

More information about the Secure-testing-commits mailing list