[Secure-testing-commits] r40906 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Wed Apr 13 09:10:12 UTC 2016 

Author: sectracker
Date: 2016-04-13 09:10:12 +0000 (Wed, 13 Apr 2016)
New Revision: 40906

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-04-13 08:48:01 UTC (rev 40905)
+++ data/CVE/list	2016-04-13 09:10:12 UTC (rev 40906)
@@ -5229,6 +5229,7 @@
 	RESERVED
 CVE-2016-2118 [SAMR and LSA man in the middle attacks possible]
 	RESERVED
+	{DSA-3548-1}
 	- samba 2:4.3.7+dfsg-1
 	NOTE: https://www.samba.org/samba/security/CVE-2016-2118.html
 	NOTE: http://badlock.org/
@@ -5243,28 +5244,34 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2016/03/03/12
 CVE-2016-2115 [SMB client connections for IPC traffic are not integrity protected]
 	RESERVED
+	{DSA-3548-1}
 	- samba 2:4.3.7+dfsg-1
 	NOTE: https://www.samba.org/samba/security/CVE-2016-2115.html
 CVE-2016-2114 ["server signing = mandatory" not enforced]
 	RESERVED
+	{DSA-3548-1}
 	- samba 2:4.3.7+dfsg-1
 	[wheezy] - samba <not-affected> (Affects Samba 4.0.0 to 4.4.0)
 	NOTE: https://www.samba.org/samba/security/CVE-2016-2114.html
 CVE-2016-2113 [Missing TLS certificate validation allows man in the middle attacks]
 	RESERVED
+	{DSA-3548-1}
 	- samba 2:4.3.7+dfsg-1
 	[wheezy] - samba <not-affected> (Affects Samba 4.0.0 to 4.4.0)
 	NOTE: https://www.samba.org/samba/security/CVE-2016-2113.html
 CVE-2016-2112 [The LDAP client and server don't enforce integrity protection]
 	RESERVED
+	{DSA-3548-1}
 	- samba 2:4.3.7+dfsg-1
 	NOTE: https://www.samba.org/samba/security/CVE-2016-2112.html
 CVE-2016-2111 [NETLOGON Spoofing Vulnerability]
 	RESERVED
+	{DSA-3548-1}
 	- samba 2:4.3.7+dfsg-1
 	NOTE: https://www.samba.org/samba/security/CVE-2016-2111.html
 CVE-2016-2110 [an in the middle attacks possible with NTLMSSP]
 	RESERVED
+	{DSA-3548-1}
 	- samba 2:4.3.7+dfsg-1
 	NOTE: https://www.samba.org/samba/security/CVE-2016-2110.html
 CVE-2016-2109
@@ -20719,6 +20726,7 @@
 	NOT-FOR-US: SolarWinds
 CVE-2015-5370 [Multiple errors in DCE-RPC code]
 	RESERVED
+	{DSA-3548-1}
 	- samba 2:4.3.7+dfsg-1
 	NOTE: https://www.samba.org/samba/security/CVE-2015-5370.html
 CVE-2015-5369 (Pulse Connect Secure (aka PCS and formerly Juniper PCS) PSC6000, ...)

More information about the Secure-testing-commits mailing list