[Secure-testing-commits] r46846 - data/CVE

Wed Dec 7 07:57:24 UTC 2016

Author: carnil
Date: 2016-12-07 07:57:24 +0000 (Wed, 07 Dec 2016)
New Revision: 46846

Modified:
   data/CVE/list
Log:
Update more allocated CVEs for phpmyadmin

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2016-12-07 07:53:27 UTC (rev 46845)
+++ data/CVE/list	2016-12-07 07:57:24 UTC (rev 46846)
@@ -163,28 +163,6 @@
 	NOTE: https://blog.ripstech.com/2016/roundcube-command-execution-via-email/
 	NOTE: Fixed by: https://github.com/roundcube/roundcubemail/commit/f84233785ddeed01445fc855f3ae1e8a62f167e1
 	NOTE: CVE has been already requested by discoverer of the issue and will be published "shortly"
-CVE-2016-9857
-	RESERVED
-CVE-2016-9856
-	RESERVED
-CVE-2016-9855
-	RESERVED
-CVE-2016-9854
-	RESERVED
-CVE-2016-9853
-	RESERVED
-CVE-2016-9852
-	RESERVED
-CVE-2016-9851
-	RESERVED
-CVE-2016-9850
-	RESERVED
-CVE-2016-9849
-	RESERVED
-CVE-2016-9848
-	RESERVED
-CVE-2016-9847
-	RESERVED
 CVE-2016-XXXX [cross-site scripting vulnerability]
 	- html5lib 0.999999999-1
 	[jessie] - html5lib <no-dsa> (Minor issue)
@@ -6712,32 +6690,47 @@
 	- phpmyadmin 4:4.1.7-1
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-57/
 	NOTE: may affect wheezy only.
-CVE-2016-XXXX [phpMyAdmin PMASA-2016-58]
+CVE-2016-9847 [phpMyAdmin PMASA-2016-58]
 	- phpmyadmin 4:4.6.5.1-1 (unimportant)
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-58/
 	NOTE: Debian packaging generates blowfish secret
-CVE-2016-XXXX [phpMyAdmin PMASA-2016-59]
+CVE-2016-9848 [phpMyAdmin PMASA-2016-59]
 	- phpmyadmin 4:4.6.5.1-1 (unimportant)
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-59/
 	NOTE: disabled by default, debugging setting required
-CVE-2016-XXXX [phpMyAdmin PMASA-2016-60]
+CVE-2016-9849 [phpMyAdmin PMASA-2016-60]
 	- phpmyadmin 4:4.6.5.1-1
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-60/
-CVE-2016-XXXX [phpMyAdmin PMASA-2016-61]
+CVE-2016-9850 [phpMyAdmin PMASA-2016-61]
 	- phpmyadmin 4:4.6.5.1-1 (low)
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-61/
-CVE-2016-XXXX [phpMyAdmin PMASA-2016-62]
+CVE-2016-9851 [phpMyAdmin PMASA-2016-62]
 	- phpmyadmin 4:4.6.5.1-1 (unimportant)
 	[jessie] - phpmyadmin <not-affected> (Vulnerable code not present)
 	[wheezy] - phpmyadmin <not-affected> (Vulnerable code not present)
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-62/
-CVE-2016-XXXX [phpMyAdmin PMASA-2016-63]
+CVE-2016-9852 [phpMyAdmin PMASA-2016-63]
 	- phpmyadmin 4:4.6.5.1-1 (unimportant)
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-63/
 	NOTE: path disclosure not relevant in Debian
-CVE-2016-XXXX [phpMyAdmin PMASA-2016-64]
+CVE-2016-9853 [phpMyAdmin PMASA-2016-63]
 	- phpmyadmin 4:4.6.5.1-1 (unimportant)
+	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-63/
+	NOTE: path disclosure not relevant in Debian
+CVE-2016-9854 [phpMyAdmin PMASA-2016-63]
+	- phpmyadmin 4:4.6.5.1-1 (unimportant)
+	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-63/
+	NOTE: path disclosure not relevant in Debian
+CVE-2016-9855 [phpMyAdmin PMASA-2016-63]
+	- phpmyadmin 4:4.6.5.1-1 (unimportant)
+	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-63/
+	NOTE: path disclosure not relevant in Debian
+CVE-2016-9856 [phpMyAdmin PMASA-2016-64]
+	- phpmyadmin 4:4.6.5.1-1 (unimportant)
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-64/
+CVE-2016-9857 [phpMyAdmin PMASA-2016-64]
+	- phpmyadmin 4:4.6.5.1-1 (unimportant)
+	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-64/
 CVE-2016-9858 [phpMyAdmin PMASA-2016-65]
 	- phpmyadmin 4:4.6.5.1-1 (unimportant)
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2016-65/


