[Secure-testing-commits] r43873 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon Aug 8 21:10:14 UTC 2016
Author: sectracker
Date: 2016-08-08 21:10:14 +0000 (Mon, 08 Aug 2016)
New Revision: 43873
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-08 18:47:21 UTC (rev 43872)
+++ data/CVE/list 2016-08-08 21:10:14 UTC (rev 43873)
@@ -1,3 +1,67 @@
+CVE-2016-6635 (Cross-site request forgery (CSRF) vulnerability in the ...)
+ TODO: check
+CVE-2016-6634 (Cross-site scripting (XSS) vulnerability in the network settings page ...)
+ TODO: check
+CVE-2016-6633
+ RESERVED
+CVE-2016-6632
+ RESERVED
+CVE-2016-6631
+ RESERVED
+CVE-2016-6630
+ RESERVED
+CVE-2016-6629
+ RESERVED
+CVE-2016-6628
+ RESERVED
+CVE-2016-6627
+ RESERVED
+CVE-2016-6626
+ RESERVED
+CVE-2016-6625
+ RESERVED
+CVE-2016-6624
+ RESERVED
+CVE-2016-6623
+ RESERVED
+CVE-2016-6622
+ RESERVED
+CVE-2016-6621
+ RESERVED
+CVE-2016-6620
+ RESERVED
+CVE-2016-6619
+ RESERVED
+CVE-2016-6618
+ RESERVED
+CVE-2016-6617
+ RESERVED
+CVE-2016-6616
+ RESERVED
+CVE-2016-6615
+ RESERVED
+CVE-2016-6614
+ RESERVED
+CVE-2016-6613
+ RESERVED
+CVE-2016-6612
+ RESERVED
+CVE-2016-6611
+ RESERVED
+CVE-2016-6610
+ RESERVED
+CVE-2016-6609
+ RESERVED
+CVE-2016-6608
+ RESERVED
+CVE-2016-6607
+ RESERVED
+CVE-2016-6606
+ RESERVED
+CVE-2016-6605
+ RESERVED
+CVE-2016-6604
+ RESERVED
CVE-2016-XXXX [off-by-one error leading to segfault]
- imagemagick <unfixed> (bug #832455)
NOTE: https://github.com/ImageMagick/ImageMagick/commit/a54fe0e8600eaf3dc6fe717d3c0398001507f723
@@ -353,8 +417,8 @@
RESERVED
CVE-2016-6517
RESERVED
-CVE-2016-6515
- RESERVED
+CVE-2016-6515 (The auth_password function in auth-passwd.c in sshd in OpenSSH before ...)
+ TODO: check
CVE-2016-6514
RESERVED
CVE-2016-6502
@@ -373,6 +437,7 @@
RESERVED
CVE-2016-6525 [heap overflow in pdf_load_mesh_params()]
RESERVED
+ {DLA-589-1}
- mupdf <unfixed> (bug #833417)
NOTE: http://bugs.ghostscript.com/show_bug.cgi?id=696954
NOTE: Fixed by: http://git.ghostscript.com/?p=mupdf.git;h=39b0f07dd960f34e7e6bf230ffc3d87c41ef0f2e
@@ -391,8 +456,7 @@
RESERVED
- imagemagick <unfixed> (bug #833485)
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/76401e172ea3a55182be2b8e2aca4d07270f6da6
-CVE-2016-6516 [double fetch leading to heap overflow]
- RESERVED
+CVE-2016-6516 (Race condition in the ioctl_file_dedupe_range function in fs/ioctl.c ...)
- linux <unfixed>
[jessie] - linux <not-affected> (Vulnerable code introduced later)
[wheezy] - linux <not-affected> (Vulnerable code introduced later)
@@ -415,8 +479,8 @@
RESERVED
CVE-2016-6487
RESERVED
-CVE-2016-6486
- RESERVED
+CVE-2016-6486 (Siemens SINEMA Server uses weak permissions for the application ...)
+ TODO: check
CVE-2016-6494 [world-readable .dbshell history file]
RESERVED
{DLA-588-1}
@@ -438,56 +502,49 @@
RESERVED
CVE-2016-6484
RESERVED
-CVE-2016-6513 [WBXML crash (wnpa-sec-2016-49)]
- RESERVED
+CVE-2016-6513 (epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 2.x ...)
- wireshark 2.0.5+ga3be9c6-1
NOTE: Affects 2.0.0 to 2.0.4, fixed in 2.0.5
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-49.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12663
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=347f071f1b9180563c28b0f3d0627b91eb456c72
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6512 [MMSE, WAP, WBXML, and WSP infinite loop (wnpa-sec-2016-48)]
- RESERVED
+CVE-2016-6512 (epan/dissectors/packet-wap.c in Wireshark 2.x before 2.0.5 omits an ...)
- wireshark 2.0.5+ga3be9c6-1
NOTE: Affects 2.0.0 to 2.0.4, fixed in 2.0.5.
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-48.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12661
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=2193bea3212d74e2a907152055e27d409b59485e
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6511 [OpenFlow long loop (wnpa-sec-2016-47)]
- RESERVED
+CVE-2016-6511 (epan/proto.c in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 ...)
- wireshark 2.0.5+ga3be9c6-1
NOTE: Affects 2.0.0 to 2.0.4, 1.12.0 to 1.12.12, fixed in 2.0.5, 1.12.13.
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-47.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12659
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=56706427f53cc64793870bf072c2c06248ae88f3
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6510 [RLC dissector crash (wnpa-sec-2016-46)]
- RESERVED
+CVE-2016-6510 (Off-by-one error in epan/dissectors/packet-rlc.c in the RLC dissector ...)
- wireshark 2.0.5+ga3be9c6-1
NOTE: Affects 2.0.0 to 2.0.4, 1.12.0 to 1.12.12, fixed in 2.0.5, 1.12.13.
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-46.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12664
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=47a5fa850b388fcf4ea762073806f01b459820fe
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6509 [LDSS dissector crash (wnpa-sec-2016-45)]
- RESERVED
+CVE-2016-6509 (epan/dissectors/packet-ldss.c in the LDSS dissector in Wireshark ...)
- wireshark 2.0.5+ga3be9c6-1
NOTE: Affects 2.0.0 to 2.0.4, 1.12.0 to 1.12.12, fixed in 2.0.5, 1.12.13.
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-45.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12662
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=5a469ddc893f7c1912d0e15cc73bd3011e6cc2fb
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6508 [RLC long loop (wnpa-sec-2016-44)]
- RESERVED
+CVE-2016-6508 (epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x ...)
- wireshark 2.0.5+ga3be9c6-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-44.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12660
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=6cf9616df68a4db7e436bb77392586ff9ad84feb
NOTE: Affects 2.0.0 to 2.0.4, 1.12.0 to 1.12.12, fixed in 2.0.5, 1.12.13.
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6507 [MMSE infinite loop (wnpa-sec-2016-43)]
- RESERVED
+CVE-2016-6507 (epan/dissectors/packet-mmse.c in the MMSE dissector in Wireshark ...)
- wireshark 2.0
NOTE: Only affects 1.12, marking 2.0 as fixed
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-43.html
@@ -495,24 +552,21 @@
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=b5a10743258bd016c07ebf6479137fda3d172a0f
NOTE: Affects 1.12.0 to 1.12.12, fixed 1.12.13
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6506 [WSP infinite loop (wnpa-sec-2016-42)]
- RESERVED
+CVE-2016-6506 (epan/dissectors/packet-wsp.c in the WSP dissector in Wireshark 1.12.x ...)
- wireshark 2.0.5+ga3be9c6-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-42.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12594
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=a9d5256890c9189c7461bfce6ed6edce5d861499
NOTE: Affects 2.0.0 to 2.0.4, 1.12.0 to 1.12.12 , fixed in 2.0.5, 1.12.13
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6505 [PacketBB dissector could divide by zero (wnpa-sec-2016-41)]
- RESERVED
+CVE-2016-6505 (epan/dissectors/packet-packetbb.c in the PacketBB dissector in ...)
- wireshark 2.0.5+ga3be9c6-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-41.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12577
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=94e97e45cf614c7bb8fe90c23df52910246b2c95
NOTE: Affects 2.0.0 to 2.0.4, 1.12.0 to 1.12.12, fixed in 2.0.5, 1.12.13.
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6504 [NDS dissector crash (wnpa-sec-2016-40)]
- RESERVED
+CVE-2016-6504 (epan/dissectors/packet-ncp2222.inc in the NDS dissector in Wireshark ...)
- wireshark 2.0
NOTE: Only affects 1.12, marking 2.0 as fixed
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-40.html
@@ -520,8 +574,7 @@
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=9eacbb4d48df647648127b9258f9e5aeeb0c7d99
NOTE: Affects 1.12.0 to 1.12.12, fixed in 1.12.13.
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/3
-CVE-2016-6503 [CORBA IDL dissector crash on 64-bit Windows (wnpa-sec-2016-39)]
- RESERVED
+CVE-2016-6503 (The CORBA IDL dissectors in Wireshark 2.x before 2.0.5 on 64-bit ...)
- wireshark <not-affected> (Only affects Wireshark on Windows)
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-39.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12495
@@ -547,8 +600,7 @@
{DSA-3634-1 DLA-577-1}
- redis 2:3.2.1-4 (bug #832460)
NOTE: http://www.openwall.com/lists/oss-security/2016/07/28/1
-CVE-2016-6480
- RESERVED
+CVE-2016-6480 (Race condition in the ioctl_send_fib function in ...)
- linux <unfixed>
CVE-2016-6478
RESERVED
@@ -1662,8 +1714,7 @@
CVE-2016-6213
RESERVED
- linux <unfixed>
-CVE-2016-6186 [XSS in admin's add/change related popup]
- RESERVED
+CVE-2016-6186 (Cross-site scripting (XSS) vulnerability in the ...)
{DSA-3622-1 DLA-555-1}
- python-django 1:1.9.8-1 (bug #831799)
NOTE: https://www.djangoproject.com/weblog/2016/jul/18/security-releases/
@@ -1674,13 +1725,11 @@
[jessie] - leptonlib <no-dsa> (Minor issue)
[wheezy] - leptonlib <no-dsa> (Minor issue)
NOTE: Not exploitable with kernel hardening since wheezy
-CVE-2016-6198
- RESERVED
+CVE-2016-6198 (The filesystem layer in the Linux kernel before 4.5.5 proceeds with ...)
- linux 4.5.5-1
NOTE: https://git.kernel.org/linus/54d5ca871e72f2bb172ec9323497f01cd5091ec7 (v4.6)
NOTE: https://git.kernel.org/linus/9409e22acdfc9153f88d9b1ed2bd2a5b34d2d3ca (v4.6)
-CVE-2016-6197
- RESERVED
+CVE-2016-6197 (fs/overlayfs/dir.c in the OverlayFS filesystem implementation in the ...)
- linux 4.6.1-1
[jessie] - linux <not-affected> (Vulnerable code not present)
[wheezy] - linux <not-affected> (Vulnerable code not present)
@@ -1711,8 +1760,7 @@
NOTE: http://github.com/inverse-inc/sogo/commit/32bb1456e23a32c7f45079c3985bf732dd0d276d
NOTE: https://sogo.nu/bugs/view.php?id=3510
TODO: check versions
-CVE-2016-6187 [apparmor: oops in apparmor_setprocattr()]
- RESERVED
+CVE-2016-6187 (The apparmor_setprocattr function in security/apparmor/lsm.c in the ...)
- linux 4.6.4-1
[jessie] - linux <not-affected> (Vulnerable code introduced later)
[wheezy] - linux <not-affected> (Vulnerable code introduced later)
@@ -1809,8 +1857,7 @@
[wheezy] - librsvg <not-affected> (vulnerable code not present, no segfault)
NOTE: Fixed by: https://git.gnome.org/browse/librsvg/commit/?id=0035e95118a60c0cd3949c2300472d805e16a022 (2.40.7)
NOTE: Reproducer attached in http://seclists.org/oss-sec/2016/q3/7
-CVE-2016-6162 [BUG_ON crash in linux 4.7-rc6/master skbuff.c]
- RESERVED
+CVE-2016-6162 (net/core/skbuff.c in the Linux kernel 4.7-rc6 allows local users to ...)
- linux <not-affected> (Vulnerable code introduced in 4.7-rc1)
CVE-2016-6161
RESERVED
@@ -1824,8 +1871,7 @@
RESERVED
CVE-2016-6157
RESERVED
-CVE-2016-6156
- RESERVED
+CVE-2016-6156 (Race condition in the ec_device_ioctl_xcmd function in ...)
- linux <unfixed>
[jessie] - linux <not-affected> (Vulnerable code not present)
[wheezy] - linux <not-affected> (Vulnerable code not present)
@@ -1839,36 +1885,35 @@
TODO: check
CVE-2016-6151 (CA eHealth 6.2.x allows remote authenticated users to cause a denial ...)
TODO: check
-CVE-2016-6150
- RESERVED
-CVE-2016-6149
- RESERVED
-CVE-2016-6148
- RESERVED
-CVE-2016-6147
- RESERVED
+CVE-2016-6150 (The multi-tenant database container feature in SAP HANA does not ...)
+ TODO: check
+CVE-2016-6149 (SAP HANA SPS09 1.00.091.00.14186593 allows local users to obtain ...)
+ TODO: check
+CVE-2016-6148 (SAP HANA DB 1.00.73.00.389160 allows remote attackers to cause a ...)
+ TODO: check
+CVE-2016-6147 (An unspecified interface in SAP TREX 7.10 Revision 63 allows remote ...)
+ TODO: check
CVE-2016-6146
RESERVED
-CVE-2016-6145
- RESERVED
-CVE-2016-6144
- RESERVED
+CVE-2016-6145 (The SQL interface in SAP HANA provides different error messages for ...)
+ TODO: check
+CVE-2016-6144 (The SQL interface in SAP HANA before Revision 102 does not limit the ...)
+ TODO: check
CVE-2016-6143
RESERVED
CVE-2016-6142
RESERVED
CVE-2016-6141
RESERVED
-CVE-2016-6140
- RESERVED
-CVE-2016-6139
- RESERVED
-CVE-2016-6138
- RESERVED
+CVE-2016-6140 (SAP TREX 7.10 Revision 63 allows remote attackers to write to ...)
+ TODO: check
+CVE-2016-6139 (SAP TREX 7.10 Revision 63 allows remote attackers to read arbitrary ...)
+ TODO: check
+CVE-2016-6138 (Directory traversal vulnerability in SAP TREX 7.10 Revision 63 allows ...)
+ TODO: check
CVE-2016-6137
RESERVED
-CVE-2016-6136 [Double-Fetch Vulnerability in Linux-4.6/kernel/auditsc.c]
- RESERVED
+CVE-2016-6136 (Race condition in the audit_log_single_execve_arg function in ...)
- linux <unfixed>
NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=120681
NOTE: https://github.com/linux-audit/audit-kernel/issues/18
@@ -2397,8 +2442,8 @@
RESERVED
CVE-2016-5879
RESERVED
-CVE-2016-5878
- RESERVED
+CVE-2016-5878 (Open redirect vulnerability in IBM FileNet Workplace 4.0.2 before ...)
+ TODO: check
CVE-2016-5877
RESERVED
CVE-2016-6132 [read out-of-bands was found in the parsing of TGA files]
@@ -2439,8 +2484,7 @@
- linux 4.6.1-1
[wheezy] - linux <not-affected> (Vulnerable code not present)
NOTE: Fixed by: https://git.kernel.org/linus/532c34b5fbf1687df63b3fcd5b2846312ac943c6
-CVE-2016-6128 [Invalid color index is not properly handled leading to denial of service]
- RESERVED
+CVE-2016-6128 (The gdImageCropThreshold function in gd_crop.c in the GD Graphics ...)
{DSA-3619-1}
- libgd2 2.2.2-29-g3c2b605-1 (bug #829062)
[wheezy] - libgd2 <not-affected> (Vulnerable code not present)
@@ -2594,8 +2638,8 @@
RESERVED
CVE-2016-5793
RESERVED
-CVE-2016-5792
- RESERVED
+CVE-2016-5792 (SQL injection vulnerability in Moxa SoftCMS before 1.5 allows remote ...)
+ TODO: check
CVE-2016-5791
RESERVED
CVE-2016-5790 (Tollgrade LightHouse SMS before 5.1 patch 3 allows remote attackers to ...)
@@ -2674,25 +2718,24 @@
RESERVED
CVE-2016-5745
RESERVED
-CVE-2015-8945
- RESERVED
+CVE-2015-8945 (openshift-node in OpenShift Origin 1.1.6 and earlier improperly stores ...)
NOT-FOR-US: OpenShift
-CVE-2015-8944
- RESERVED
-CVE-2015-8943
- RESERVED
-CVE-2015-8942
- RESERVED
-CVE-2015-8941
- RESERVED
-CVE-2015-8940
- RESERVED
-CVE-2015-8939
- RESERVED
-CVE-2015-8938
- RESERVED
-CVE-2015-8937
- RESERVED
+CVE-2015-8944 (The ioresources_init function in kernel/resource.c in the Linux kernel ...)
+ TODO: check
+CVE-2015-8943 (drivers/video/msm/mdss/mdss_mdp_util.c in the Qualcomm components in ...)
+ TODO: check
+CVE-2015-8942 (drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c in the ...)
+ TODO: check
+CVE-2015-8941 (drivers/media/platform/msm/camera_v2/isp/msm_isp_axi_util.c in the ...)
+ TODO: check
+CVE-2015-8940 (Integer overflow in sound/soc/msm/qdsp6v2/q6lsm.c in the Qualcomm ...)
+ TODO: check
+CVE-2015-8939 (drivers/video/msm/mdp4_util.c in the Qualcomm components in Android ...)
+ TODO: check
+CVE-2015-8938 (The MSM camera driver in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2015-8937 (drivers/char/diag/diagchar_core.c in the Qualcomm components in ...)
+ TODO: check
CVE-2014-9906 [use-after-free in mysql_dr_error]
RESERVED
{DSA-3635-1 DLA-576-1}
@@ -2719,86 +2762,86 @@
CVE-2014-9903 (The sched_read_attr function in kernel/sched/core.c in the Linux ...)
- linux <not-affected>
NOTE: vulnerable code between 3.14-rc1 and 3.14-rc4
-CVE-2014-9902
- RESERVED
-CVE-2014-9901
- RESERVED
-CVE-2014-9900
- RESERVED
-CVE-2014-9899
- RESERVED
-CVE-2014-9898
- RESERVED
-CVE-2014-9897
- RESERVED
-CVE-2014-9896
- RESERVED
-CVE-2014-9895
- RESERVED
-CVE-2014-9894
- RESERVED
-CVE-2014-9893
- RESERVED
-CVE-2014-9892
- RESERVED
-CVE-2014-9891
- RESERVED
-CVE-2014-9890
- RESERVED
-CVE-2014-9889
- RESERVED
-CVE-2014-9888
- RESERVED
-CVE-2014-9887
- RESERVED
-CVE-2014-9886
- RESERVED
-CVE-2014-9885
- RESERVED
-CVE-2014-9884
- RESERVED
-CVE-2014-9883
- RESERVED
-CVE-2014-9882
- RESERVED
-CVE-2014-9881
- RESERVED
-CVE-2014-9880
- RESERVED
-CVE-2014-9879
- RESERVED
-CVE-2014-9878
- RESERVED
-CVE-2014-9877
- RESERVED
-CVE-2014-9876
- RESERVED
-CVE-2014-9875
- RESERVED
-CVE-2014-9874
- RESERVED
-CVE-2014-9873
- RESERVED
-CVE-2014-9872
- RESERVED
-CVE-2014-9871
- RESERVED
-CVE-2014-9870
- RESERVED
-CVE-2014-9869
- RESERVED
-CVE-2014-9868
- RESERVED
-CVE-2014-9867
- RESERVED
-CVE-2014-9866
- RESERVED
-CVE-2014-9865
- RESERVED
-CVE-2014-9864
- RESERVED
-CVE-2014-9863
- RESERVED
+CVE-2014-9902 (Buffer overflow in CORE/SYS/legacy/src/utils/src/dot11f.c in the ...)
+ TODO: check
+CVE-2014-9901 (The Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 ...)
+ TODO: check
+CVE-2014-9900 (The ethtool_get_wol function in net/core/ethtool.c in the Linux kernel ...)
+ TODO: check
+CVE-2014-9899 (drivers/usb/host/ehci-msm2.c in the Qualcomm components in Android ...)
+ TODO: check
+CVE-2014-9898 (arch/arm/mach-msm/qdsp6v2/ultrasound/usf.c in the Qualcomm components ...)
+ TODO: check
+CVE-2014-9897 (sound/soc/msm/qdsp6v2/msm-lsm-client.c in the Qualcomm components in ...)
+ TODO: check
+CVE-2014-9896 (drivers/char/adsprpc.c in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9895 (drivers/media/media-device.c in the Linux kernel before 3.11, as used ...)
+ TODO: check
+CVE-2014-9894 (drivers/misc/qseecom.c in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9893 (drivers/video/msm/mdss/mdss_mdp_pp.c in the Qualcomm components in ...)
+ TODO: check
+CVE-2014-9892 (The snd_compr_tstamp function in sound/core/compress_offload.c in the ...)
+ TODO: check
+CVE-2014-9891 (drivers/misc/qseecom.c in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9890 (Off-by-one error in ...)
+ TODO: check
+CVE-2014-9889 (drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c in the ...)
+ TODO: check
+CVE-2014-9888 (arch/arm/mm/dma-mapping.c in the Linux kernel before 3.13 on ARM ...)
+ TODO: check
+CVE-2014-9887 (drivers/misc/qseecom.c in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9886 (arch/arm/mach-msm/qdsp6v2/ultrasound/usf.c in the Qualcomm components ...)
+ TODO: check
+CVE-2014-9885 (Format string vulnerability in drivers/thermal/qpnp-adc-tm.c in the ...)
+ TODO: check
+CVE-2014-9884 (drivers/misc/qseecom.c in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9883 (Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm ...)
+ TODO: check
+CVE-2014-9882 (Buffer overflow in drivers/media/radio/radio-iris.c in the Qualcomm ...)
+ TODO: check
+CVE-2014-9881 (drivers/media/radio/radio-iris.c in the Qualcomm components in Android ...)
+ TODO: check
+CVE-2014-9880 (drivers/video/msm/vidc/common/enc/venc.c in the Qualcomm components in ...)
+ TODO: check
+CVE-2014-9879 (The mdss mdp3 driver in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9878 (drivers/mmc/card/mmc_block_test.c in the Qualcomm components in ...)
+ TODO: check
+CVE-2014-9877 (drivers/media/platform/msm/camera_v2/sensor/actuator/msm_actuator.c in ...)
+ TODO: check
+CVE-2014-9876 (drivers/char/diag/diagfwd.c in the Qualcomm components in Android ...)
+ TODO: check
+CVE-2014-9875 (drivers/char/diag/diag_dci.c in the Qualcomm components in Android ...)
+ TODO: check
+CVE-2014-9874 (Buffer overflow in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9873 (Integer underflow in drivers/char/diag/diag_dci.c in the Qualcomm ...)
+ TODO: check
+CVE-2014-9872 (The diag driver in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9871 (Multiple buffer overflows in ...)
+ TODO: check
+CVE-2014-9870 (The Linux kernel before 3.11 on ARM platforms, as used in Android ...)
+ TODO: check
+CVE-2014-9869 (drivers/media/platform/msm/camera_v2/isp/msm_isp_stats_util.c in the ...)
+ TODO: check
+CVE-2014-9868 (drivers/media/platform/msm/camera_v2/sensor/csiphy/msm_csiphy.c in the ...)
+ TODO: check
+CVE-2014-9867 (drivers/media/platform/msm/camera_v2/isp/msm_isp_axi_util.c in the ...)
+ TODO: check
+CVE-2014-9866 (drivers/media/platform/msm/camera_v2/sensor/csid/msm_csid.c in the ...)
+ TODO: check
+CVE-2014-9865 (drivers/misc/qseecom.c in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9864 (drivers/misc/qseecom.c in the Qualcomm components in Android before ...)
+ TODO: check
+CVE-2014-9863 (Integer underflow in the diag driver in the Qualcomm components in ...)
+ TODO: check
CVE-2016-5844 [undefined behaviour (integer overflow) in iso parser]
RESERVED
{DLA-554-1}
@@ -2899,56 +2942,49 @@
- wordpress 4.5.3+dfsg-1
NOTE: https://wordpress.org/news/2016/06/wordpress-4-5-3/
NOTE: Fixed by: https://core.trac.wordpress.org/changeset/37773/
-CVE-2016-5773 [ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize]
- RESERVED
+CVE-2016-5773 (php_zip.c in the zip extension in PHP before 5.5.37, 5.6.x before ...)
{DSA-3618-1}
- php7.0 7.0.8-1
- php5 5.6.23+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72434
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=f6aef68089221c5ea047d4a74224ee3deead99a6
NOTE: Fixed in 5.5.37, 5.6.23, 7.0.8
-CVE-2016-5772 [Double Free Courruption in wddx_deserialize]
- RESERVED
+CVE-2016-5772 (Double free vulnerability in the php_wddx_process_data function in ...)
{DSA-3618-1}
- php7.0 7.0.8-1
- php5 5.6.23+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72340
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=a44c89e8af7c2410f4bfc5e097be2a5d0639a60c
NOTE: Fixed in 5.5.37, 5.6.23, 7.0.8
-CVE-2016-5771 [Use After Free Vulnerability in PHP's GC algorithm and unserialize]
- RESERVED
+CVE-2016-5771 (spl_array.c in the SPL extension in PHP before 5.5.37 and 5.6.x before ...)
{DSA-3618-1}
- php7.0 <not-affected> (Does not affect PHP 7.x)
- php5 5.6.23+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72433
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=a44c89e8af7c2410f4bfc5e097be2a5d0639a60c
NOTE: Fixed in 5.5.37, 5.6.23
-CVE-2016-5770 [int/size_t confusion in SplFileObject::fread]
- RESERVED
+CVE-2016-5770 (Integer overflow in the SplFileObject::fread function in ...)
{DSA-3618-1}
- php7.0 7.0.8-1
- php5 5.6.23+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72262
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=7245bff300d3fa8bacbef7897ff080a6f1c23eba
NOTE: Fixed in 5.5.37, 5.6.23, 7.0.8
-CVE-2016-5769 [Heap Overflow due to integer overflows]
- RESERVED
+CVE-2016-5769 (Multiple integer overflows in mcrypt.c in the mcrypt extension in PHP ...)
{DSA-3618-1}
- php7.0 7.0.8-1
- php5 5.6.23+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72455
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=6c5211a0cef0cc2854eaa387e0eb036e012904d0
NOTE: Fixed in 5.5.37, 5.6.23, 7.0.8
-CVE-2016-5768 [_php_mb_regex_ereg_replace_exec - double free]
- RESERVED
+CVE-2016-5768 (Double free vulnerability in the _php_mb_regex_ereg_replace_exec ...)
{DSA-3618-1}
- php7.0 7.0.8-1
- php5 5.6.23+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72402
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=5b597a2e5b28e2d5a52fc1be13f425f08f47cb62
NOTE: Fixed in 5.5.37, 5.6.23, 7.0.8
-CVE-2016-5767 [Integer Overflow in gdImagePaletteToTrueColor() resulting heap overflow]
- RESERVED
+CVE-2016-5767 (Integer overflow in the gdImageCreate function in gd.c in the GD ...)
- php7.0 7.0.8-1 (unimportant)
- php5 5.6.23+dfsg-1 (unimportant)
[jessie] - php5 5.6.23+dfsg-0+deb8u1
@@ -2958,8 +2994,7 @@
NOTE: Fixed in 5.5.37, 5.6.23, 7.0.8
- libgd2 2.0.34~rc1-1
NOTE: Fixed by: https://github.com/libgd/libgd/commit/cfee163a5e848fc3e3fb1d05a30d7557cdd36457 (GD_2_0_34RC1)
-CVE-2016-5766 [Integer Overflow in _gd2GetHeader() resulting in heap overflow]
- RESERVED
+CVE-2016-5766 (Integer overflow in the _gd2GetHeader function in gd_gd2.c in the GD ...)
{DSA-3619-1 DLA-534-1}
- php7.0 7.0.8-1 (unimportant)
- php5 5.6.23+dfsg-1 (unimportant)
@@ -3757,8 +3792,7 @@
RESERVED
CVE-2016-5413
RESERVED
-CVE-2016-5412
- RESERVED
+CVE-2016-5412 (arch/powerpc/kvm/book3s_hv_rmhandlers.S in the Linux kernel through ...)
- linux <unfixed>
NOTE: https://marc.info/?l=kvm&m=146968629127349&w=2
NOTE: https://git.kernel.org/linus/93d17397e4e2182fdaad503e2f9da46202c0f1c3 (v4.8-rc1)
@@ -3795,8 +3829,7 @@
CVE-2016-5401
RESERVED
NOT-FOR-US: JBoss BPMS business-central
-CVE-2016-5400 [memory leak in airspy usb driver]
- RESERVED
+CVE-2016-5400 (Memory leak in the airspy_probe function in ...)
- linux <unfixed>
CVE-2016-5399 [Improper error handling in bzread()]
RESERVED
@@ -3820,8 +3853,7 @@
RESERVED
CVE-2016-5393
RESERVED
-CVE-2016-5392
- RESERVED
+CVE-2016-5392 (The API server in Kubernetes, as used in Red Hat OpenShift Enterprise ...)
- kubernetes <itp> (bug #795652)
NOTE: kubernetes entered experimental only so far
CVE-2016-5391
@@ -3829,8 +3861,7 @@
CVE-2016-5390
RESERVED
- foreman <itp> (bug #663101)
-CVE-2016-5696 [challenge ACK counter information disclosure]
- RESERVED
+CVE-2016-5696 (net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly ...)
- linux <unfixed>
NOTE: Fixed by: https://github.com/torvalds/linux/commit/75ff39ccc1bd5d3c455b6822ab09e533c551f758
CVE-2016-5389
@@ -3876,7 +3907,7 @@
NOTE: Fixed in 7.0.9, 5.6.24, 5.5.38
CVE-2016-5384 [possible double free due to insufficiently validated cache files]
RESERVED
- {DLA-587-1}
+ {DSA-3644-1 DLA-587-1}
- fontconfig 2.11.0-6.5 (bug #833570)
NOTE: https://lists.freedesktop.org/archives/fontconfig/2016-August/005792.html
NOTE: Fixed by: https://cgit.freedesktop.org/fontconfig/commit/?id=7a4a5bd7897d216f0794ca9dbce0a4a5c9d14940 (2.12.1)
@@ -3950,8 +3981,8 @@
RESERVED
CVE-2016-5341
RESERVED
-CVE-2016-5340
- RESERVED
+CVE-2016-5340 (The is_ashmem_file function in drivers/staging/android/ashmem.c in a ...)
+ TODO: check
CVE-2016-5339
RESERVED
CVE-2014-9862 (Integer signedness error in bspatch.c in bspatch in bsdiff, as used in ...)
@@ -3994,10 +4025,10 @@
RESERVED
CVE-2016-5332
RESERVED
-CVE-2016-5331
- RESERVED
-CVE-2016-5330
- RESERVED
+CVE-2016-5331 (CRLF injection vulnerability in VMware vCenter Server 6.0 before U2 ...)
+ TODO: check
+CVE-2016-5330 (Untrusted search path vulnerability in the HGFS (aka Shared Folders) ...)
+ TODO: check
CVE-2016-5329
RESERVED
CVE-2016-5328
@@ -4011,77 +4042,67 @@
- nodejs <unfixed> (unimportant)
NOTE: libv8 is not covered by security support
NOTE: https://nodejs.org/en/blog/vulnerability/june-2016-security-releases/
-CVE-2016-5359 [wnpa-sec-2016-38]
- RESERVED
+CVE-2016-5359 (epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark ...)
{DSA-3615-1 DLA-538-1}
- wireshark 2.0
NOTE: Only affects 1.12, marking 2.0 as fixed
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-38.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12408
NOTE: https://github.com/wireshark/wireshark/commit/b8e0d416898bb975a02c1b55883342edc5b4c9c0
-CVE-2016-5358 [wnpa-sec-2016-37]
- RESERVED
+CVE-2016-5358 (epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark ...)
- wireshark 2.0.4+gdd7746e-1
[jessie] - wireshark <not-affected> (Only affects 2.0)
[wheezy] - wireshark <not-affected> (Only affects 2.0)
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-37.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12440
NOTE: https://github.com/wireshark/wireshark/commit/2c13e97d656c1c0ac4d76eb9d307664aae0e0cf7
-CVE-2016-5357 [wnpa-sec-2016-36]
- RESERVED
+CVE-2016-5357 (wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x ...)
{DSA-3615-1 DLA-538-1}
- wireshark 2.0.4+gdd7746e-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-36.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12396
NOTE: https://github.com/wireshark/wireshark/commit/11edc83b98a61e890d7bb01855389d40e984ea82
NOTE: https://github.com/wireshark/wireshark/commit/6a140eca7b78b230f1f90a739a32257476513c78
-CVE-2016-5356 [wnpa-sec-2016-35]
- RESERVED
+CVE-2016-5356 (wiretap/cosine.c in the CoSine file parser in Wireshark 1.12.x before ...)
{DSA-3615-1 DLA-538-1}
- wireshark 2.0.4+gdd7746e-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-35.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12395
NOTE: https://github.com/wireshark/wireshark/commit/a66628e425db725df1ac52a3c573a03357060ddd
NOTE: https://github.com/wireshark/wireshark/commit/f5ec0afb766f19519ea9623152cca3bbe2229500
-CVE-2016-5355 [wnpa-sec-2016-34]
- RESERVED
+CVE-2016-5355 (wiretap/toshiba.c in the Toshiba file parser in Wireshark 1.12.x ...)
{DSA-3615-1 DLA-538-1}
- wireshark 2.0.4+gdd7746e-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-34.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12394
NOTE: https://github.com/wireshark/wireshark/commit/3270dfac43da861c714df76513456b46765ff47f
NOTE: https://github.com/wireshark/wireshark/commit/5efb45231671baa2db2011d8f67f9d6e72bc455b
-CVE-2016-5354 [wnpa-sec-2016-33]
- RESERVED
+CVE-2016-5354 (The USB subsystem in Wireshark 1.12.x before 1.12.12 and 2.x before ...)
{DSA-3615-1 DLA-538-1}
- wireshark 2.0.4+gdd7746e-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-33.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12356
NOTE: https://github.com/wireshark/wireshark/commit/2cb5985bf47bdc8bea78d28483ed224abdd33dc6
-CVE-2016-5353 [wnpa-sec-2016-32]
- RESERVED
+CVE-2016-5353 (epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark ...)
{DSA-3615-1 DLA-538-1}
- wireshark 2.0.4+gdd7746e-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-32.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12191
NOTE: https://github.com/wireshark/wireshark/commit/7d7190695ce2ff269fdffb04e87139995cde21f4
-CVE-2016-5352 [wnpa-sec-2016-31]
- RESERVED
+CVE-2016-5352 (epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 2.x ...)
- wireshark 2.0.4+gdd7746e-1
[jessie] - wireshark <not-affected> (Only affects 2.0)
[wheezy] - wireshark <not-affected> (Only affects 2.0)
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-31.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12175
NOTE: https://github.com/wireshark/wireshark/commit/b6d838eebf4456192360654092e5587c5207f185
-CVE-2016-5351 [wnpa-sec-2016-30]
- RESERVED
+CVE-2016-5351 (epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 1.12.x ...)
{DSA-3615-1 DLA-538-1}
- wireshark 2.0.4+gdd7746e-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-30.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11585
NOTE: https://github.com/wireshark/wireshark/commit/9b0b20b8d5f8c9f7839d58ff6c5900f7e19283b4
-CVE-2016-5350 [wnpa-sec-2016-29]
- RESERVED
+CVE-2016-5350 (epan/dissectors/packet-dcerpc-spoolss.c in the SPOOLS component in ...)
{DSA-3615-1 DLA-538-1}
- wireshark 2.0.4+gdd7746e-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-29.html
@@ -4170,8 +4191,7 @@
RESERVED
CVE-2016-5302 (Citrix XenServer 7.0 before Hotfix XS70E003, when a deployment has ...)
TODO: check
-CVE-2015-8935 [XSS in header() with Internet Explorer]
- RESERVED
+CVE-2015-8935 (The sapi_header_op function in main/SAPI.c in PHP before 5.4.38, 5.5.x ...)
- php5 5.6.6+dfsg-1
[wheezy] - php5 5.4.38-0+deb7u1
NOTE: https://bugs.php.net/bug.php?id=68978
@@ -4934,36 +4954,28 @@
RESERVED
CVE-2016-5147
RESERVED
-CVE-2016-5146
- RESERVED
+CVE-2016-5146 (Multiple unspecified vulnerabilities in Google Chrome before ...)
- chromium-browser 52.0.2743.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
-CVE-2016-5145
- RESERVED
+CVE-2016-5145 (Blink, as used in Google Chrome before 52.0.2743.116, does not ensure ...)
- chromium-browser 52.0.2743.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
-CVE-2016-5144
- RESERVED
+CVE-2016-5144 (The Developer Tools (aka DevTools) subsystem in Blink, as used in ...)
- chromium-browser 52.0.2743.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
-CVE-2016-5143
- RESERVED
+CVE-2016-5143 (The Developer Tools (aka DevTools) subsystem in Blink, as used in ...)
- chromium-browser 52.0.2743.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
-CVE-2016-5142
- RESERVED
+CVE-2016-5142 (The Web Cryptography API (aka WebCrypto) implementation in Blink, as ...)
- chromium-browser 52.0.2743.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
-CVE-2016-5141
- RESERVED
+CVE-2016-5141 (Blink, as used in Google Chrome before 52.0.2743.116, allows remote ...)
- chromium-browser 52.0.2743.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
-CVE-2016-5140
- RESERVED
+CVE-2016-5140 (Heap-based buffer overflow in the opj_j2k_read_SQcd_SQcc function in ...)
- chromium-browser 52.0.2743.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
-CVE-2016-5139
- RESERVED
+CVE-2016-5139 (Multiple integer overflows in the opj_tcd_init_tile function in tcd.c ...)
- chromium-browser 52.0.2743.116-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
CVE-2016-5138 (Integer overflow in the kbasep_vinstr_attach_client function in ...)
@@ -5198,8 +5210,7 @@
- graphicsmagick 1.3.24-1 (bug #825800)
NOTE: fixed by http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/ae3928faa858
NOTE: patch available at http://www.openwall.com/lists/oss-security/2016/05/29/7
-CVE-2016-5116 [xbm: avoid stack overflow (read) with large names]
- RESERVED
+CVE-2016-5116 (gd_xbm.c in the GD Graphics Library (aka libgd) before 2.2.0, as used ...)
{DSA-3619-1}
- libgd2 2.2.1-1
[wheezy] - libgd2 <not-affected> (Vulnerable code not present)
@@ -5421,13 +5432,11 @@
NOT-FOR-US: Apache Archiva
CVE-2016-5001
RESERVED
-CVE-2016-5000
- RESERVED
+CVE-2016-5000 (The XLSX2CSV example in Apache POI before 3.14 allows remote attackers ...)
- libapache-poi-java <unfixed> (unimportant)
NOTE: Versions affected: POI 3.5-3.13; Fixed in 3.14
NOTE: XLSX2CSV example is not installed
-CVE-2016-4999
- RESERVED
+CVE-2016-4999 (SQL injection vulnerability in the getStringParameterSQL method in ...)
NOT-FOR-US: JBoss dashbuilder
CVE-2016-4998 (The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter ...)
{DSA-3607-1}
@@ -5588,38 +5597,33 @@
NOTE: https://github.com/roundcube/roundcubemail/issues/5240
NOTE: https://github.com/roundcube/roundcubemail/pull/5241
NOTE: http://www.openwall.com/lists/oss-security/2016/05/25/8
-CVE-2016-5096 [int/size_t confusion in fread]
- RESERVED
+CVE-2016-5096 (Integer overflow in the fread function in ext/standard/file.c in PHP ...)
{DSA-3602-1 DLA-533-1}
- php5 5.6.22+dfsg-1
NOTE: PHP bug: https://bugs.php.net/bug.php?id=72114
NOTE: Fixed in 5.6.22, 5.5.36
NOTE: http://www.openwall.com/lists/oss-security/2016/05/25/3
-CVE-2016-5095 [don't create strings with lengths outside int range]
- RESERVED
+CVE-2016-5095 (Integer overflow in the php_escape_html_entities_ex function in ...)
{DSA-3602-1 DLA-533-1}
- php5 5.6.22+dfsg-1
NOTE: PHP bug: https://bugs.php.net/bug.php?id=72135
NOTE: Fixed in 5.6.22, 5.5.36
NOTE: http://www.openwall.com/lists/oss-security/2016/05/25/3
NOTE: For the additional issue reported in the "[2016-05-17 12:55 UTC]" comment
-CVE-2016-5094 [don't create strings with lengths outside int range]
- RESERVED
+CVE-2016-5094 (Integer overflow in the php_html_entities function in ...)
{DSA-3602-1 DLA-533-1}
- php5 5.6.22+dfsg-1
NOTE: PHP bug: https://bugs.php.net/bug.php?id=72135
NOTE: Fixed in 5.6.22, 5.5.36
NOTE: http://www.openwall.com/lists/oss-security/2016/05/25/3
-CVE-2016-5093 [get_icu_value_internal out-of-bounds read]
- RESERVED
+CVE-2016-5093 (The get_icu_value_internal function in ...)
{DSA-3602-1 DLA-533-1}
- php7.0 7.0.7-1
- php5 5.6.22+dfsg-1
NOTE: PHP bug: https://bugs.php.net/bug.php?id=72241
NOTE: Fixed in 7.0.7, 5.6.22, 5.5.36
NOTE: http://www.openwall.com/lists/oss-security/2016/05/25/3
-CVE-2013-7456 [Fixed memory overrun bug in gdImageScaleTwoPass]
- RESERVED
+CVE-2013-7456 (gd_interpolation.c in the GD Graphics Library (aka libgd) before ...)
{DSA-3602-1 DSA-3587-1}
- libgd2 2.1.1-1
[wheezy] - libgd2 <not-affected> (Vulnerable code not present)
@@ -7517,8 +7521,8 @@
RESERVED
CVE-2016-4375
RESERVED
-CVE-2016-4374
- RESERVED
+CVE-2016-4374 (HPE Release Control (RC) 9.13, 9.20, and 9.21 before 9.21.0005 p4 ...)
+ TODO: check
CVE-2016-4373 (The AdminUI in HPE Operations Manager (OM) before 9.21.130 on Linux, ...)
TODO: check
CVE-2016-4372 (HPE iMC PLAT before 7.2 E0403P04, iMC EAD before 7.2 E0405P05, iMC APM ...)
@@ -8457,8 +8461,8 @@
NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=a49923d2837d20510d645d3758f1ad87c32d0730 (v2.6.0-rc3)
CVE-2016-4030
RESERVED
-CVE-2016-4029
- RESERVED
+CVE-2016-4029 (WordPress before 4.5 does not consider octal and hexadecimal IP ...)
+ TODO: check
CVE-2016-4028
RESERVED
CVE-2016-4027
@@ -9033,84 +9037,84 @@
RESERVED
CVE-2016-3858
RESERVED
-CVE-2016-3857
- RESERVED
-CVE-2016-3856
- RESERVED
-CVE-2016-3855
- RESERVED
-CVE-2016-3854
- RESERVED
-CVE-2016-3853
- RESERVED
-CVE-2016-3852
- RESERVED
-CVE-2016-3851
- RESERVED
-CVE-2016-3850
- RESERVED
-CVE-2016-3849
- RESERVED
-CVE-2016-3848
- RESERVED
-CVE-2016-3847
- RESERVED
-CVE-2016-3846
- RESERVED
-CVE-2016-3845
- RESERVED
-CVE-2016-3844
- RESERVED
-CVE-2016-3843
- RESERVED
-CVE-2016-3842
- RESERVED
-CVE-2016-3841
- RESERVED
-CVE-2016-3840
- RESERVED
-CVE-2016-3839
- RESERVED
-CVE-2016-3838
- RESERVED
-CVE-2016-3837
- RESERVED
-CVE-2016-3836
- RESERVED
-CVE-2016-3835
- RESERVED
-CVE-2016-3834
- RESERVED
-CVE-2016-3833
- RESERVED
-CVE-2016-3832
- RESERVED
-CVE-2016-3831
- RESERVED
-CVE-2016-3830
- RESERVED
-CVE-2016-3829
- RESERVED
-CVE-2016-3828
- RESERVED
-CVE-2016-3827
- RESERVED
-CVE-2016-3826
- RESERVED
-CVE-2016-3825
- RESERVED
-CVE-2016-3824
- RESERVED
-CVE-2016-3823
- RESERVED
-CVE-2016-3822
- RESERVED
-CVE-2016-3821
- RESERVED
-CVE-2016-3820
- RESERVED
-CVE-2016-3819
- RESERVED
+CVE-2016-3857 (The kernel in Android before 2016-08-05 on Nexus 7 (2013) devices ...)
+ TODO: check
+CVE-2016-3856 (netd in Android before 2016-08-05 mishandles tethering and stdio ...)
+ TODO: check
+CVE-2016-3855 (drivers/thermal/supply_lm_core.c in the Qualcomm components in Android ...)
+ TODO: check
+CVE-2016-3854 (drivers/media/video/msm/msm_mctl_buf.c in the Qualcomm components in ...)
+ TODO: check
+CVE-2016-3853 (Google Play services in Android before 2016-08-05 on Nexus devices ...)
+ TODO: check
+CVE-2016-3852 (The MediaTek Wi-Fi driver in Android before 2016-08-05 on Android One ...)
+ TODO: check
+CVE-2016-3851 (The LG Electronics bootloader Android before 2016-08-05 on Nexus 5X ...)
+ TODO: check
+CVE-2016-3850 (Integer overflow in app/aboot/aboot.c in the Qualcomm bootloader in ...)
+ TODO: check
+CVE-2016-3849 (The ION driver in Android before 2016-08-05 on Pixel C devices allows ...)
+ TODO: check
+CVE-2016-3848 (The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 ...)
+ TODO: check
+CVE-2016-3847 (The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 ...)
+ TODO: check
+CVE-2016-3846 (The Serial Peripheral Interface driver in Android before 2016-08-05 on ...)
+ TODO: check
+CVE-2016-3845 (The video driver in the kernel in Android before 2016-08-05 on Nexus 5 ...)
+ TODO: check
+CVE-2016-3844 (mediaserver in Android before 2016-08-05 on Nexus 9 and Pixel C ...)
+ TODO: check
+CVE-2016-3843 (Android before 2016-08-05 does not properly restrict code execution in ...)
+ TODO: check
+CVE-2016-3842 (The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5X, 6, ...)
+ TODO: check
+CVE-2016-3841 (The IPv6 stack in the Linux kernel before 4.3.3 mishandles options ...)
+ TODO: check
+CVE-2016-3840 (Conscrypt in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x ...)
+ TODO: check
+CVE-2016-3839 (Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x ...)
+ TODO: check
+CVE-2016-3838 (Android 6.x before 2016-08-01 allows attackers to cause a denial of ...)
+ TODO: check
+CVE-2016-3837 (service/jni/com_android_server_wifi_WifiNative.cpp in Wi-Fi in Android ...)
+ TODO: check
+CVE-2016-3836 (The SurfaceFlinger service in Android 5.0.x before 5.0.2, 5.1.x before ...)
+ TODO: check
+CVE-2016-3835 (The secure-session feature in the mm-video-v4l2 venc component in ...)
+ TODO: check
+CVE-2016-3834 (The camera APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x ...)
+ TODO: check
+CVE-2016-3833 (The Shell component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, ...)
+ TODO: check
+CVE-2016-3832 (The framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, ...)
+ TODO: check
+CVE-2016-3831 (The telephony component in Android 4.x before 4.4.4, 5.0.x before ...)
+ TODO: check
+CVE-2016-3830 (codecs/aacdec/SoftAAC2.cpp in libstagefright in mediaserver in Android ...)
+ TODO: check
+CVE-2016-3829 (The ih264d decoder in mediaserver in Android 6.x before 2016-08-01 ...)
+ TODO: check
+CVE-2016-3828 (decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-08-01 ...)
+ TODO: check
+CVE-2016-3827 (codecs/hevcdec/SoftHEVC.cpp in libstagefright in mediaserver in ...)
+ TODO: check
+CVE-2016-3826 (services/audioflinger/Effects.cpp in mediaserver in Android 4.x before ...)
+ TODO: check
+CVE-2016-3825 (mm-video-v4l2/vidc/venc/src/omx_video_base.cpp in mediaserver in ...)
+ TODO: check
+CVE-2016-3824 (omx/OMXNodeInstance.cpp in libstagefright in mediaserver in Android ...)
+ TODO: check
+CVE-2016-3823 (The secure-session feature in the mm-video-v4l2 venc component in ...)
+ TODO: check
+CVE-2016-3822 (exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android ...)
+ TODO: check
+CVE-2016-3821 (libmedia in mediaserver in Android 4.x before 4.4.4, 5.0.x before ...)
+ TODO: check
+CVE-2016-3820 (The ih264d decoder in mediaserver in Android 6.x before 2016-08-01 ...)
+ TODO: check
+CVE-2016-3819 (Integer overflow in codecs/on2/h264dec/source/h264bsd_dpb.c in ...)
+ TODO: check
CVE-2016-3818 (libc in Android 4.x before 4.4.4 allows remote attackers to cause a ...)
TODO: check
CVE-2016-3817
@@ -9601,8 +9605,8 @@
TODO: check
CVE-2016-3641
RESERVED
-CVE-2016-3640
- RESERVED
+CVE-2016-3640 (The Extended Application Services (aka XS or XS Engine) in SAP HANA DB ...)
+ TODO: check
CVE-2016-3639
RESERVED
CVE-2016-3638
@@ -10659,8 +10663,8 @@
TODO: check
CVE-2016-3198 (Microsoft Edge allows remote attackers to bypass the Content Security ...)
TODO: check
-CVE-2016-3196
- RESERVED
+CVE-2016-3196 (Cross-site scripting (XSS) vulnerability in Fortinet FortiAnalyzer 5.x ...)
+ TODO: check
CVE-2016-3195
RESERVED
NOT-FOR-US: Oracle
@@ -10803,8 +10807,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/03/15/3
CVE-2016-3133
RESERVED
-CVE-2016-3132
- RESERVED
+CVE-2016-3132 (Double free vulnerability in the SplDoublyLinkedList::offsetSet ...)
- php7.0 7.0.6-1
NOTE: https://bugs.php.net/bug.php?id=71735
NOTE: http://git.php.net/?p=php-src.git;a=commit;h=28a6ed9f9a36b9c517e4a8a429baf4dd382fc5d5
@@ -10894,8 +10897,7 @@
NOTE: Introduced in https://git.fedorahosted.org/cgit/mod_nss.git/commit/?id=2d1650900f4d47dc43400d826c0f7e1a7c5229b8 (1.10.11)
CVE-2016-3098
RESERVED
-CVE-2016-3097
- RESERVED
+CVE-2016-3097 (Cross-site scripting (XSS) vulnerability in spacewalk-java in Red Hat ...)
NOT-FOR-US: spacewalk-java
CVE-2016-3096 (The create_script function in the lxc_container module in Ansible ...)
- ansible 2.0.1.0-2 (bug #819676)
@@ -10947,13 +10949,11 @@
CVE-2016-3081 (Apache Struts 2.x before 2.3.20.2, 2.3.24.x before 2.3.24.2, and ...)
- libstruts1.2-java <not-affected> (Only affects Struts 2.x)
NOTE: https://struts.apache.org/docs/s2-032.html
-CVE-2016-3080
- RESERVED
+CVE-2016-3080 (Cross-site scripting (XSS) vulnerability in spacewalk-java in Red Hat ...)
NOT-FOR-US: Red Hat Satellite / Spacewalk / spacewalk-monitoring
CVE-2016-3079 (Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in ...)
NOT-FOR-US: Red Hat Satellite / Spacewalk
-CVE-2016-3078 [integer overflow in ZipArchive::getFrom*]
- RESERVED
+CVE-2016-3078 (Multiple integer overflows in php_zip.c in the zip extension in PHP ...)
- php7.0 7.0.6-1
NOTE: http://www.openwall.com/lists/oss-security/2016/04/28/1
NOTE: Fixed in 7.0.6
@@ -10994,8 +10994,7 @@
NOT-FOR-US: Katello
CVE-2016-3071 (Libreswan 3.16 might allow remote attackers to cause a denial of ...)
- libreswan <itp> (bug #773459)
-CVE-2016-3070 [Null pointer dereference in trace_writeback_dirty_page()]
- RESERVED
+CVE-2016-3070 (The trace_writeback_dirty_page implementation in ...)
{DSA-3607-1}
- linux 4.4.2-1
[wheezy] - linux <not-affected> (Vulnerable code not present)
@@ -11117,8 +11116,8 @@
RESERVED
CVE-2016-3060
RESERVED
-CVE-2016-3059
- RESERVED
+CVE-2016-3059 (IBM Tivoli Storage Manager for Databases: Data Protection for ...)
+ TODO: check
CVE-2016-3058
RESERVED
CVE-2016-3057
@@ -11127,8 +11126,8 @@
RESERVED
CVE-2016-3055
RESERVED
-CVE-2016-3054
- RESERVED
+CVE-2016-3054 (Cross-site scripting (XSS) vulnerability in IBM FileNet Workplace ...)
+ TODO: check
CVE-2016-3053
RESERVED
CVE-2016-3052
@@ -11257,8 +11256,8 @@
RESERVED
CVE-2016-2990
RESERVED
-CVE-2016-2989
- RESERVED
+CVE-2016-2989 (Open redirect vulnerability in the Connections Portlets component 5.x ...)
+ TODO: check
CVE-2016-2988
RESERVED
CVE-2016-2987
@@ -11315,8 +11314,8 @@
RESERVED
CVE-2016-2961 (The integration server in IBM Integration Bus 9 before 9.0.0.6 and 10 ...)
TODO: check
-CVE-2016-2960
- RESERVED
+CVE-2016-2960 (IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.0.x ...)
+ TODO: check
CVE-2016-2959
RESERVED
CVE-2016-2958
@@ -11385,8 +11384,8 @@
RESERVED
CVE-2016-2926
RESERVED
-CVE-2016-2925
- RESERVED
+CVE-2016-2925 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal ...)
+ TODO: check
CVE-2016-2924
RESERVED
CVE-2016-2923 (IBM WebSphere Application Server (WAS) 8.5 through 8.5.5.9 Liberty ...)
@@ -11407,12 +11406,12 @@
RESERVED
CVE-2016-2915
RESERVED
-CVE-2016-2914
- RESERVED
+CVE-2016-2914 (Unrestricted file upload vulnerability in the Document Builder in IBM ...)
+ TODO: check
CVE-2016-2913
RESERVED
-CVE-2016-2912
- RESERVED
+CVE-2016-2912 (Cross-site scripting (XSS) vulnerability in the Document Builder in ...)
+ TODO: check
CVE-2016-2911
RESERVED
CVE-2016-2910
@@ -11485,8 +11484,8 @@
RESERVED
CVE-2016-2876
RESERVED
-CVE-2016-2875
- RESERVED
+CVE-2016-2875 (IBM Security QRadar SIEM 7.1.x and 7.2.x before 7.2.7 allows remote ...)
+ TODO: check
CVE-2016-2874
RESERVED
CVE-2016-2873
@@ -12980,8 +12979,8 @@
TODO: check
CVE-2016-2505 (mpeg2ts/ATSParser.cpp in libstagefright in mediaserver in Android 6.x ...)
TODO: check
-CVE-2016-2504
- RESERVED
+CVE-2016-2504 (The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5, 5X, ...)
+ TODO: check
CVE-2016-2503 (The Qualcomm GPU driver in Android before 2016-07-05 on Nexus 5X and ...)
TODO: check
CVE-2016-2502 (drivers/usb/gadget/f_serial.c in the Qualcomm USB driver in Android ...)
@@ -12994,8 +12993,8 @@
TODO: check
CVE-2016-2498 (The Qualcomm Wi-Fi driver in Android before 2016-06-01 on Nexus 7 ...)
TODO: check
-CVE-2016-2497
- RESERVED
+CVE-2016-2497 (services/core/java/com/android/server/pm/PackageManagerService.java in ...)
+ TODO: check
CVE-2016-2496 (The Framework UI permission-dialog implementation in Android 6.x ...)
TODO: check
CVE-2016-2495 (SampleTable.cpp in libstagefright in mediaserver in Android 4.x before ...)
@@ -13134,7 +13133,7 @@
NOT-FOR-US: Android
CVE-2016-2428 (libAACdec/src/aacdec_drc.cpp in mediaserver in Android 4.x before ...)
NOT-FOR-US: Android
-CVE-2016-2427 (asn1/cms/GCMParameters.java in the Bouncy Castle Crypto APIs 1.54 for ...)
+CVE-2016-2427 (** DISPUTED ** The AES-GCM specification in RFC 5084, as used in ...)
NOT-FOR-US: Android
CVE-2016-2426 (server/content/ContentService.java in the Framework component in ...)
NOT-FOR-US: Android
@@ -14568,8 +14567,7 @@
NOTE: https://git.php.net/?p=php-src.git;a=commit;h=366f9505a4aae98ef2f4ca39a838f628a324b746
NOTE: https://bugs.php.net/bug.php?id=70661
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/02/03/3
-CVE-2016-5114
- RESERVED
+CVE-2016-5114 (sapi/fpm/fpm/fpm_log.c in PHP before 5.5.31, 5.6.x before 5.6.17, and ...)
- php5 5.6.17+dfsg-1
[jessie] - php5 5.6.17+dfsg-0+deb8u1
[squeeze] - php5 <not-affected> (vulnerable code not present)
@@ -14718,12 +14716,12 @@
TODO: check
CVE-2016-2066 (Integer signedness error in the MSM QDSP6 audio driver for the Linux ...)
TODO: check
-CVE-2016-2065
- RESERVED
-CVE-2016-2064
- RESERVED
-CVE-2016-2063
- RESERVED
+CVE-2016-2065 (sound/soc/msm/qdsp6v2/msm-audio-effects-q6-v2.c in the MSM QDSP6 audio ...)
+ TODO: check
+CVE-2016-2064 (sound/soc/msm/qdsp6v2/msm-audio-effects-q6-v2.c in the MSM QDSP6 audio ...)
+ TODO: check
+CVE-2016-2063 (Stack-based buffer overflow in the supply_lm_input_write function in ...)
+ TODO: check
CVE-2016-2062 (The adreno_perfcounter_query_group function in ...)
TODO: check
CVE-2016-2061 (Integer signedness error in the MSM V4L2 video driver for the Linux ...)
@@ -15169,8 +15167,7 @@
- firefox-esr 45.0esr-1
- firefox 45.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-16/
-CVE-2016-1951
- RESERVED
+CVE-2016-1951 (Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable ...)
{DLA-513-1}
- firefox-esr 45.0esr-1
- firefox 45.0-1
@@ -16756,8 +16753,7 @@
RESERVED
CVE-2016-1514
RESERVED
-CVE-2016-1513
- RESERVED
+CVE-2016-1513 (The Impress tool in Apache OpenOffice 4.1.2 and earlier allows remote ...)
- libreoffice 1:4.3.3-1
NOTE: http://www.openoffice.org/security/cves/CVE-2016-1513.html
NOTE: http://www.talosintelligence.com/reports/TALOS-2016-0051/
@@ -16871,16 +16867,16 @@
RESERVED
CVE-2016-1479
RESERVED
-CVE-2016-1478
- RESERVED
+CVE-2016-1478 (Cisco IOS 15.5(3)S3, 15.6(1)S2, 15.6(2)S1, and 15.6(2)T1 does not ...)
+ TODO: check
CVE-2016-1477
RESERVED
CVE-2016-1476
RESERVED
CVE-2016-1475
RESERVED
-CVE-2016-1474
- RESERVED
+CVE-2016-1474 (Cisco Prime Infrastructure 2.2(2) does not properly restrict use of ...)
+ TODO: check
CVE-2016-1473
RESERVED
CVE-2016-1472
@@ -16891,12 +16887,12 @@
RESERVED
CVE-2016-1469
RESERVED
-CVE-2016-1468
- RESERVED
+CVE-2016-1468 (The administrative web interface in Cisco TelePresence Video ...)
+ TODO: check
CVE-2016-1467 (Cisco Videoscape Session Resource Manager (VSRM) allows remote ...)
TODO: check
-CVE-2016-1466
- RESERVED
+CVE-2016-1466 (Cisco Unified Communications Manager IM and Presence Service 9.1(1) ...)
+ TODO: check
CVE-2016-1465 (Cisco Nexus 1000v Application Virtual Switch (AVS) devices before ...)
TODO: check
CVE-2016-1464
@@ -16967,10 +16963,10 @@
TODO: check
CVE-2016-1431 (Cross-site scripting (XSS) vulnerability in Cisco Firepower Management ...)
TODO: check
-CVE-2016-1430
- RESERVED
-CVE-2016-1429
- RESERVED
+CVE-2016-1430 (Cisco RV180 and RV180W devices allow remote authenticated users to ...)
+ TODO: check
+CVE-2016-1429 (Directory traversal vulnerability in the web interface on Cisco RV180 ...)
+ TODO: check
CVE-2016-1428 (Double free vulnerability in Cisco IOS XE 3.15S, 3.16S, and 3.17S ...)
TODO: check
CVE-2016-1427 (The System Configuration Protocol (SCP) core messaging interface in ...)
@@ -17679,12 +17675,12 @@
RESERVED
CVE-2016-1279
RESERVED
-CVE-2016-1278
- RESERVED
+CVE-2016-1278 (Juniper Junos OS before 12.1X46-D50 on SRX Series devices reverts to ...)
+ TODO: check
CVE-2016-1277
RESERVED
-CVE-2016-1276
- RESERVED
+CVE-2016-1276 (Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D23, ...)
+ TODO: check
CVE-2016-1275
RESERVED
CVE-2016-1274 (Juniper Junos OS 14.1X53 before 14.1X53-D30 on QFX Series switches ...)
@@ -19172,8 +19168,7 @@
NOT-FOR-US: Apache OpenMeetings
CVE-2016-0783 (The sendHashByUser function in Apache OpenMeetings before 3.1.1 ...)
NOT-FOR-US: Apache OpenMeetings
-CVE-2016-0782 [Cross-Site Scripting]
- RESERVED
+CVE-2016-0782 (The administration web console in Apache ActiveMQ 5.x before 5.11.4, ...)
- activemq <not-affected> (Admin console not enabled in the Debian package, see #702670)
NOTE: https://activemq.apache.org/security-advisories.data/CVE-2016-0782-announcement.txt
CVE-2016-0781
@@ -20649,8 +20644,8 @@
RESERVED
CVE-2016-0381 (IBM Cognos TM1 10.2.2 before FP5, when the host/pmhub/pm/admin ...)
TODO: check
-CVE-2016-0380
- RESERVED
+CVE-2016-0380 (IBM Sterling Connect:Direct for Unix 4.1.0 before 4.1.0.4 iFix073 and ...)
+ TODO: check
CVE-2016-0379
RESERVED
CVE-2016-0378
@@ -20687,8 +20682,8 @@
TODO: check
CVE-2016-0362 (IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before ...)
TODO: check
-CVE-2016-0361
- RESERVED
+CVE-2016-0361 (IBM General Parallel File System (GPFS) 3.5 before 3.5.0.29 efix 6 and ...)
+ TODO: check
CVE-2016-0360
RESERVED
CVE-2016-0359 (CRLF injection vulnerability in IBM WebSphere Application Server (WAS) ...)
@@ -20847,10 +20842,10 @@
TODO: check
CVE-2016-0282
RESERVED
-CVE-2016-0281
- RESERVED
-CVE-2016-0280
- RESERVED
+CVE-2016-0281 (The mustendd driver in IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x, ...)
+ TODO: check
+CVE-2016-0280 (Cross-site scripting (XSS) vulnerability in IBM Information Server ...)
+ TODO: check
CVE-2016-0279 (Heap-based buffer overflow in the KeyView PDF filter in IBM Domino ...)
TODO: check
CVE-2016-0278 (Heap-based buffer overflow in the KeyView PDF filter in IBM Domino ...)
@@ -20877,8 +20872,8 @@
RESERVED
CVE-2016-0267 (IBM UrbanCode Deploy 6.0.x before 6.0.1.13, 6.1.x before 6.1.3.3, and ...)
TODO: check
-CVE-2016-0266
- RESERVED
+CVE-2016-0266 (IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x do not default to the ...)
+ TODO: check
CVE-2016-0265
RESERVED
CVE-2016-0264 (Buffer overflow in the Java Virtual Machine (JVM) in IBM SDK, Java ...)
@@ -27596,10 +27591,10 @@
TODO: check
CVE-2015-6398 (Cisco Nexus 9000 Application Centric Infrastructure (ACI) Mode ...)
TODO: check
-CVE-2015-6397
- RESERVED
-CVE-2015-6396
- RESERVED
+CVE-2015-6397 (Cisco RV110W, RV130W, and RV215W devices have an incorrect RBAC ...)
+ TODO: check
+CVE-2015-6396 (The CLI command parser on Cisco RV110W, RV130W, and RV215W devices ...)
+ TODO: check
CVE-2015-6395 (Cisco Prime Service Catalog 10.0, 10.0(R2), 10.1, and 11.0 does not ...)
TODO: check
CVE-2015-6394 (The kernel in Cisco NX-OS 5.2(9)N1(1) on Nexus 5000 devices allows ...)
@@ -34775,8 +34770,8 @@
RESERVED
CVE-2015-3855
RESERVED
-CVE-2015-3854
- RESERVED
+CVE-2015-3854 (packages/SystemUI/src/com/android/systemui/power/PowerNotificationWarnings.java ...)
+ TODO: check
CVE-2015-3853
RESERVED
CVE-2015-3852
@@ -45416,8 +45411,8 @@
RESERVED
CVE-2015-0574
RESERVED
-CVE-2015-0573
- RESERVED
+CVE-2015-0573 (drivers/media/platform/msm/broadcast/tsc.c in the TSC driver for the ...)
+ TODO: check
CVE-2015-0572
RESERVED
CVE-2015-0571 (The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used ...)
@@ -45426,8 +45421,8 @@
TODO: check
CVE-2015-0569 (Heap-based buffer overflow in the private wireless extensions IOCTL ...)
TODO: check
-CVE-2015-0568
- RESERVED
+CVE-2015-0568 (Use-after-free vulnerability in the msm_set_crop function in ...)
+ TODO: check
CVE-2015-0567
RESERVED
CVE-2015-0566
@@ -46663,8 +46658,8 @@
NOT-FOR-US: NetIQ Access Manager
CVE-2014-9411
RESERVED
-CVE-2014-9410
- RESERVED
+CVE-2014-9410 (The vfe31_proc_general function in ...)
+ TODO: check
CVE-2014-9409
RESERVED
CVE-2014-9408 (Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time Location ...)
More information about the Secure-testing-commits
mailing list