[Secure-testing-commits] r37223 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Oct 22 04:33:01 UTC 2015 

Author: carnil
Date: 2015-10-22 04:33:01 +0000 (Thu, 22 Oct 2015)
New Revision: 37223

Modified:
   data/CVE/list
Log:
Add ntp CVEs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-10-22 04:22:44 UTC (rev 37222)
+++ data/CVE/list	2015-10-22 04:33:01 UTC (rev 37223)
@@ -1,5 +1,7 @@
 CVE-2015-7871
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7870
 	RESERVED
 CVE-2015-7869
@@ -32,20 +34,36 @@
 	TODO: check
 CVE-2015-7855
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7854
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7853
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7852
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7851
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7850
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7849
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7848
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7847
 	RESERVED
 CVE-2015-7846
@@ -441,14 +459,26 @@
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/10/06/3
 CVE-2015-7705
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7704
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7703
 	RESERVED
+	- ntp <undetermined>
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
+	TODO: check. According to advisory as well fixed in 4.2.8p4
 CVE-2015-7702
 	RESERVED
+	- ntp <undetermined>
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
+	TODO: check. According to advisory as well fixed in 4.2.8p4
 CVE-2015-7701
 	RESERVED
+	- ntp 1:4.2.8p4+dfsg-1
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
 CVE-2015-7700
 	RESERVED
 CVE-2015-7697 [Infinite loop when extracting password-protected archive]
@@ -469,8 +499,14 @@
 	RESERVED
 CVE-2015-7692
 	RESERVED
+	- ntp <undetermined>
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
+	TODO: check. According to advisory as well fixed in 4.2.8p4
 CVE-2015-7691
 	RESERVED
+	- ntp <undetermined>
+	NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
+	TODO: check. According to advisory as well fixed in 4.2.8p4
 CVE-2015-7690
 	RESERVED
 CVE-2015-7689
@@ -6690,7 +6726,7 @@
 	REJECTED
 CVE-2015-5196 [config command can be used to set the pidfile and drift file paths]
 	RESERVED
-	- ntp <unfixed> (low)
+	- ntp 1:4.2.8p4+dfsg-1 (low)
 	[jessie] - ntp <no-dsa> (Minor issue)
 	[wheezy] - ntp <no-dsa> (Minor issue)
 	[squeeze] - ntp <no-dsa> (Minor issue)

More information about the Secure-testing-commits mailing list