[Secure-testing-commits] r41180 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon Apr 25 21:10:11 UTC 2016
Author: sectracker
Date: 2016-04-25 21:10:11 +0000 (Mon, 25 Apr 2016)
New Revision: 41180
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-25 18:59:13 UTC (rev 41179)
+++ data/CVE/list 2016-04-25 21:10:11 UTC (rev 41180)
@@ -1,8 +1,50 @@
+CVE-2016-4085 (Stack-based buffer overflow in epan/dissectors/packet-ncp2222.inc in ...)
+ TODO: check
+CVE-2016-4084 (Integer signedness error in epan/dissectors/packet-mswsp.c in the ...)
+ TODO: check
+CVE-2016-4083 (epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark ...)
+ TODO: check
+CVE-2016-4082 (epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in ...)
+ TODO: check
+CVE-2016-4081 (epan/dissectors/packet-iax2.c in the IAX2 dissector in Wireshark ...)
+ TODO: check
+CVE-2016-4080 (epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark ...)
+ TODO: check
+CVE-2016-4079 (epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark ...)
+ TODO: check
+CVE-2016-4078 (The IEEE 802.11 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x ...)
+ TODO: check
+CVE-2016-4077 (epan/reassemble.c in TShark in Wireshark 2.0.x before 2.0.3 relies on ...)
+ TODO: check
+CVE-2016-4076 (epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark ...)
+ TODO: check
+CVE-2016-4075
+ RESERVED
+CVE-2016-4067
+ RESERVED
+CVE-2016-4066
+ RESERVED
+CVE-2016-4065 (The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 7.3.4 on ...)
+ TODO: check
+CVE-2016-4064 (Use-after-free vulnerability in the XFA forms handling functionality ...)
+ TODO: check
+CVE-2016-4063 (Use-after-free vulnerability in Foxit Reader and PhantomPDF before ...)
+ TODO: check
+CVE-2016-4062 (Foxit Reader and PhantomPDF before 7.3.4 on Windows improperly report ...)
+ TODO: check
+CVE-2016-4061 (Foxit Reader and PhantomPDF before 7.3.4 on Windows allow remote ...)
+ TODO: check
+CVE-2016-4060 (Use-after-free vulnerability in Foxit Reader and PhantomPDF before ...)
+ TODO: check
+CVE-2016-4059 (Use-after-free vulnerability in Foxit Reader and PhantomPDF before ...)
+ TODO: check
CVE-2016-4074 [Stack exhaustion parsing a JSON file]
+ RESERVED
- jq <unfixed> (bug #822456)
NOTE: https://github.com/stedolan/jq/issues/1136
NOTE: http://www.openwall.com/lists/oss-security/2016/04/24/3
CVE-2016-4069 [Protect download urls against CSRF using unique request tokens]
+ RESERVED
- roundcube <unfixed> (bug #822333)
NOTE: https://github.com/roundcube/roundcubemail/issues/4957
NOTE: https://github.com/roundcube/roundcubemail/wiki/Changelog#release-115
@@ -10,10 +52,12 @@
NOTE: https://github.com/roundcube/roundcubemail/commit/699af1e5206ed9114322adaa3c25c1c969640a53 (release-1.1)
NOTE: http://www.openwall.com/lists/oss-security/2016/04/23/3
CVE-2016-4068 ["for the remaining SVG XSS issues additional to CVE-2015-8864"]
+ RESERVED
- roundcube <unfixed>
NOTE: https://github.com/roundcube/roundcubemail/commit/40d7342dd9c9bd2a1d613edc848ed95a4d71aa18#commitcomment-15294218
NOTE: These remain unfixed in versions 1.0.9, 1.1.5 and 1.2-rc
CVE-2015-8864 [XSS issue in SVG images handling]
+ RESERVED
- roundcube <unfixed> (bug #822333)
NOTE: https://github.com/roundcube/roundcubemail/issues/4949
NOTE: https://github.com/roundcube/roundcubemail/wiki/Changelog#release-115
@@ -120,6 +164,7 @@
NOTE: upstream fixed in 2.1
NOTE: https://bugs.gentoo.org/show_bug.cgi?id=564400
CVE-2015-8866 [libxml_disable_entity_loader setting is shared between threads]
+ RESERVED
- php5 5.6.6+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=64938
NOTE: https://bugs.launchpad.net/ubuntu/+source/php5/+bug/1509817
@@ -128,6 +173,7 @@
NOTE: Fixed in 5.6.6, 5.5.22
NOTE: http://www.openwall.com/lists/oss-security/2016/04/21/8
CVE-2015-8867 [openssl_random_pseudo_bytes() is not cryptographically secure]
+ RESERVED
- php7.0 7.0.0-1
- php5 5.6.12+dfsg-1
[jessie] - php5 5.6.12+dfsg-0+deb8u1
@@ -200,6 +246,7 @@
NOTE: http://perl5.git.perl.org/perl.git/commitdiff/22b433eff9a1ffa2454e18405a56650f07b385b5
NOTE: http://www.openwall.com/lists/oss-security/2016/04/20/5
CVE-2015-8863 [off-by-one error that leads to a heap-based buffer overflow]
+ RESERVED
- jq <unfixed> (bug #802231)
NOTE: https://github.com/stedolan/jq/issues/995
NOTE: https://github.com/stedolan/jq/commit/8eb1367ca44e772963e704a700ef72ae2e12babd
@@ -288,8 +335,8 @@
RESERVED
CVE-2016-4007 (Multiple unspecified vulnerabilities in the obs-service-extract_file ...)
NOT-FOR-US: obs-service-extract_file
-CVE-2016-4006
- RESERVED
+CVE-2016-4006 (epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 ...)
+ TODO: check
CVE-2015-8850
RESERVED
CVE-2015-8849
@@ -365,6 +412,7 @@
NOTE: Introduced in: https://github.com/brltty/brltty/commit/e62b3c925d03239a372d425fb87b2cac65d8ef19
NOTE: Fixed by: https://github.com/brltty/brltty/commit/74affe7d1401f2b43ad32e18cb78704d22604ad7
CVE-2015-8868 [heap overflow]
+ RESERVED
- poppler 0.38.0-3 (bug #822578)
[jessie] - poppler <no-dsa> (Minor issue; will be fixed via jessie-pu)
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=b3425dd3261679958cd56c0f71995c15d2124433
@@ -461,6 +509,7 @@
NOTE: https://git.enlightenment.org/legacy/imlib2.git/commit/?id=37a96801663b7b4cd3fbe56cc0eb8b6a17e766a8
NOTE: http://www.openwall.com/lists/oss-security/2016/04/09/6
CVE-2016-4070 [Integer overflow in php_raw_url_encode]
+ RESERVED
- php7.0 7.0.5-1
- php5 5.6.20+dfsg-1
NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
@@ -468,6 +517,7 @@
NOTE: https://git.php.net/?p=php-src.git;a=commit;h=95433e8e339dbb6b5d5541473c1661db6ba2c451
NOTE: http://www.openwall.com/lists/oss-security/2016/04/11/7
CVE-2016-4071 [Format string vulnerability in php_snmp_error()]
+ RESERVED
- php7.0 7.0.5-1
- php5 5.6.20+dfsg-1
NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
@@ -475,6 +525,7 @@
NOTE: https://git.php.net/?p=php-src.git;a=commit;h=6e25966544fb1d2f3d7596e060ce9c9269bbdcf8
NOTE: http://www.openwall.com/lists/oss-security/2016/04/11/7
CVE-2016-4072 [Invalid memory write in phar on filename containing \0 inside name]
+ RESERVED
- php7.0 7.0.5-1
- php5 5.6.20+dfsg-1
NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
@@ -483,6 +534,7 @@
NOTE: https://git.php.net/?p=php-src.git;a=commit;h=1e9b175204e3286d64dfd6c9f09151c31b5e099a
NOTE: http://www.openwall.com/lists/oss-security/2016/04/11/7
CVE-2016-4073 [Negative size parameter in memcpy]
+ RESERVED
- php7.0 7.0.5-1
- php5 5.6.20+dfsg-1
NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
@@ -606,6 +658,7 @@
- tiff3 <removed>
TODO: check
CVE-2015-8865 [Buffer over-write in finfo_open with malformed magic file]
+ RESERVED
- php7.0 7.0.5-1
- php5 5.6.20+dfsg-1
- file 1:5.24-1
@@ -2420,8 +2473,8 @@
RESERVED
CVE-2016-3127
RESERVED
-CVE-2016-3126
- RESERVED
+CVE-2016-3126 (Cross-site scripting (XSS) vulnerability in the Management Console in ...)
+ TODO: check
CVE-2016-3123
RESERVED
CVE-2016-3122
@@ -3481,8 +3534,8 @@
RESERVED
CVE-2015-8824
RESERVED
-CVE-2015-8823
- RESERVED
+CVE-2015-8823 (Use-after-free vulnerability in the TextField object implementation in ...)
+ TODO: check
CVE-2015-8822 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 ...)
NOT-FOR-US: Adobe Flash Player
CVE-2015-8821 (Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 ...)
@@ -5324,10 +5377,10 @@
RESERVED
CVE-2016-2205
RESERVED
-CVE-2016-2204
- RESERVED
-CVE-2016-2203
- RESERVED
+CVE-2016-2204 (The management console on Symantec Messaging Gateway (SMG) Appliance ...)
+ TODO: check
+CVE-2016-2203 (The management console on Symantec Messaging Gateway (SMG) Appliance ...)
+ TODO: check
CVE-2016-2202 (The Inventory Solution component in the Management Agent in the client ...)
TODO: check
CVE-2016-2201 (Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote ...)
@@ -5648,35 +5701,29 @@
{DSA-3508-1}
- jasper <unfixed> (bug #816626)
NOTE: http://www.openwall.com/lists/oss-security/2016/03/03/12
-CVE-2016-2115 [SMB client connections for IPC traffic are not integrity protected]
- RESERVED
+CVE-2016-2115 (Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before ...)
{DSA-3548-1}
- samba 2:4.3.7+dfsg-1
NOTE: https://www.samba.org/samba/security/CVE-2016-2115.html
-CVE-2016-2114 ["server signing = mandatory" not enforced]
- RESERVED
+CVE-2016-2114 (The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x ...)
{DSA-3548-1}
- samba 2:4.3.7+dfsg-1
[wheezy] - samba <not-affected> (Affects Samba 4.0.0 to 4.4.0)
NOTE: https://www.samba.org/samba/security/CVE-2016-2114.html
-CVE-2016-2113 [Missing TLS certificate validation allows man in the middle attacks]
- RESERVED
+CVE-2016-2113 (Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 ...)
{DSA-3548-1}
- samba 2:4.3.7+dfsg-1
[wheezy] - samba <not-affected> (Affects Samba 4.0.0 to 4.4.0)
NOTE: https://www.samba.org/samba/security/CVE-2016-2113.html
-CVE-2016-2112 [The LDAP client and server don't enforce integrity protection]
- RESERVED
+CVE-2016-2112 (The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, ...)
{DSA-3548-1}
- samba 2:4.3.7+dfsg-1
NOTE: https://www.samba.org/samba/security/CVE-2016-2112.html
-CVE-2016-2111 [NETLOGON Spoofing Vulnerability]
- RESERVED
+CVE-2016-2111 (The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before ...)
{DSA-3548-1}
- samba 2:4.3.7+dfsg-1
NOTE: https://www.samba.org/samba/security/CVE-2016-2111.html
-CVE-2016-2110 [an in the middle attacks possible with NTLMSSP]
- RESERVED
+CVE-2016-2110 (The NTLMSSP authentication implementation in Samba 3.x and 4.x before ...)
{DSA-3548-1}
- samba 2:4.3.7+dfsg-1
NOTE: https://www.samba.org/samba/security/CVE-2016-2110.html
@@ -6322,6 +6369,7 @@
CVE-2016-1970 (Integer underflow in the srtp_unprotect function in the WebRTC ...)
- iceweasel <not-affected> (Windows-specific)
CVE-2016-1969 (The setAttr function in Graphite 2 before 1.3.6, as used in Mozilla ...)
+ {DSA-3515-1 DSA-3477-1}
- graphite2 1.3.6-1
- iceweasel <removed>
- firefox 45.0-1
@@ -6602,12 +6650,12 @@
NOT-FOR-US: Greenbone Security Assistant
CVE-2016-1921
RESERVED
-CVE-2016-1918
- RESERVED
-CVE-2016-1917
- RESERVED
-CVE-2016-1916
- RESERVED
+CVE-2016-1918 (Cross-site scripting (XSS) vulnerability in the Management Console in ...)
+ TODO: check
+CVE-2016-1917 (Cross-site scripting (XSS) vulnerability in the Management Console in ...)
+ TODO: check
+CVE-2016-1916 (Cross-site scripting (XSS) vulnerability in the Management Console in ...)
+ TODO: check
CVE-2016-1915
RESERVED
CVE-2016-1914
@@ -9446,8 +9494,8 @@
RESERVED
CVE-2016-1037
RESERVED
-CVE-2016-1036
- RESERVED
+CVE-2016-1036 (Cross-site scripting (XSS) vulnerability in Adobe Analytics ...)
+ TODO: check
CVE-2016-1035 (Adobe RoboHelp Server 9 before 9.0.1 mishandles SQL queries, which ...)
TODO: check
CVE-2016-1034 (The Sync Process in the JavaScript API for Creative Cloud Libraries in ...)
@@ -21254,8 +21302,7 @@
NOT-FOR-US: AdNovum nevisAuth
CVE-2015-5371 (The AuthenticationFilter class in SolarWinds Storage Manager allows ...)
NOT-FOR-US: SolarWinds
-CVE-2015-5370 [Multiple errors in DCE-RPC code]
- RESERVED
+CVE-2015-5370 (Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before ...)
{DSA-3548-1}
- samba 2:4.3.7+dfsg-1
NOTE: https://www.samba.org/samba/security/CVE-2015-5370.html
@@ -23043,7 +23090,7 @@
- mariadb-10.0 10.0.22-1 (bug #802874)
NOTE: http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
CVE-2015-4829
- RESERVED
+ REJECTED
CVE-2015-4828 (Unspecified vulnerability in the PeopleSoft Enterprise FSCM component ...)
TODO: check
CVE-2015-4827 (Unspecified vulnerability in the Oracle Retail Open Commerce Platform ...)
More information about the Secure-testing-commits
mailing list