[Secure-testing-commits] r36702 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Tue Sep 15 21:10:14 UTC 2015 

Author: sectracker
Date: 2015-09-15 21:10:13 +0000 (Tue, 15 Sep 2015)
New Revision: 36702

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-09-15 20:18:48 UTC (rev 36701)
+++ data/CVE/list	2015-09-15 21:10:13 UTC (rev 36702)
@@ -1,3 +1,19 @@
+CVE-2015-6939
+	RESERVED
+CVE-2015-6936
+	RESERVED
+CVE-2015-6935
+	RESERVED
+CVE-2015-6934
+	RESERVED
+CVE-2015-6933
+	RESERVED
+CVE-2015-6932
+	RESERVED
+CVE-2015-6931
+	RESERVED
+CVE-2014-9745 (The parse_encoding function in type1/t1load.c in FreeType before 2.5.3 ...)
+	TODO: check
 CVE-2015-XXXX [Use-after-free in openjpeg]
 	- openjpeg2 <unfixed>
 	- openjpeg <not-affected> (Vulnerable code not present; opj_j2k_write_mco function)
@@ -181,6 +197,7 @@
 CVE-2015-6840
 	RESERVED
 CVE-2015-6937 [NULL pointer dereference in net/rds/connection.c]
+	RESERVED
 	- linux <unfixed>
 	- linux-2.6 <removed>
 	NOTE: Fixed by: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=74e98eb085889b0d2d4908f59f6e00026063014f (v4.3-rc1)
@@ -381,6 +398,7 @@
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/09/03/8
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=706087#c1 notes that the fix breaks ABI
 CVE-2015-6938 [XSS]
+	RESERVED
 	- ipython <unfixed> (low; bug #798886)
 	[wheezy] - ipython <no-dsa> (Minor issue)
 	[jessie] - ipython <no-dsa> (Minor issue)
@@ -4900,8 +4918,8 @@
 	RESERVED
 CVE-2015-4981
 	RESERVED
-CVE-2015-4980
-	RESERVED
+CVE-2015-4980 (Unspecified vulnerability in IBM WebSphere Commerce 7.0.0.6 through ...)
+	TODO: check
 CVE-2015-4979
 	RESERVED
 CVE-2015-4978
@@ -13649,8 +13667,8 @@
 	NOT-FOR-US: IBM InfoSphere
 CVE-2015-1944 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.0 ...)
 	NOT-FOR-US: IBM WebSphere
-CVE-2015-1943
-	RESERVED
+CVE-2015-1943 (IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through ...)
+	TODO: check
 CVE-2015-1942 (The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 ...)
 	NOT-FOR-US: IBM
 CVE-2015-1941 (The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 ...)
@@ -15996,7 +16014,7 @@
 	[wheezy] - chromium-browser <end-of-life>
 	[squeeze] - chromium-browser <end-of-life>
 CVE-2015-1270 (The ucnv_io_getConverterName function in common/ucnv_io.cpp in ...)
-	{DSA-3315-1}
+	{DSA-3360-1 DSA-3315-1}
 	- chromium-browser 44.0.2403.89-1
 	[wheezy] - chromium-browser <end-of-life>
 	[squeeze] - chromium-browser <end-of-life>

More information about the Secure-testing-commits mailing list