[Secure-testing-commits] r39467 - data/CVE

Thu Feb 4 21:10:50 UTC 2016

Author: sectracker
Date: 2016-02-04 21:10:50 +0000 (Thu, 04 Feb 2016)
New Revision: 39467

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2016-02-04 20:31:58 UTC (rev 39466)
+++ data/CVE/list	2016-02-04 21:10:50 UTC (rev 39467)
@@ -3298,6 +3298,7 @@
 	RESERVED
 CVE-2015-8631 [Memory leak caused by supplying a null principal name in request]
 	RESERVED
+	{DSA-3466-1}
 	- krb5 <unfixed> (bug #813126)
 	NOTE: Fixed by: https://github.com/krb5/krb5/commit/83ed75feba32e46f736fcce0d96a0445f29b96c2
 CVE-2015-8630 [krb5 doesn't check for null policy when KADM5_POLICY is set in the mask]
@@ -3310,6 +3311,7 @@
 	NOTE: Introduced by: https://github.com/krb5/krb5/commit/0780e46fc13dbafa177525164997cd204cc50b51 (krb5-1.12-alpha1)
 CVE-2015-8629 [xdr_nullstring() doesn't check for terminating null character]
 	RESERVED
+	{DSA-3466-1}
 	- krb5 <unfixed> (bug #813296)
 	NOTE: Fixed by: https://github.com/krb5/krb5/commit/df17a1224a3406f57477bcd372c61e04c0e5a5bb
 CVE-2015-8620
@@ -5232,7 +5234,7 @@
 	[wheezy] - virtualbox <end-of-life> (DSA 3454)
 	NOTE: http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html#AppendixOVIR
 CVE-2016-0494 (Unspecified vulnerability in the Java SE and Java SE Embedded ...)
-	{DSA-3465-1 DSA-3458-1}
+	{DSA-3465-1 DSA-3458-1 DLA-410-1}
 	- openjdk-8 8u72-b15-1
 	- openjdk-7 7u95-2.6.4-1
 	- openjdk-6 <removed>
@@ -5263,7 +5265,7 @@
 CVE-2016-0484 (Unspecified vulnerability in the Oracle Application Testing Suite ...)
 	TODO: check
 CVE-2016-0483 (Unspecified vulnerability in the Java SE, Java SE Embedded, and ...)
-	{DSA-3465-1 DSA-3458-1}
+	{DSA-3465-1 DSA-3458-1 DLA-410-1}
 	- openjdk-8 8u72-b15-1
 	- openjdk-7 7u95-2.6.4-1
 	- openjdk-6 <removed>
@@ -5301,7 +5303,7 @@
 CVE-2016-0467 (Unspecified vulnerability in the Security component in Oracle Database ...)
 	TODO: check
 CVE-2016-0466 (Unspecified vulnerability in the Java SE, Java SE Embedded, and ...)
-	{DSA-3465-1 DSA-3458-1}
+	{DSA-3465-1 DSA-3458-1 DLA-410-1}
 	- openjdk-8 8u72-b15-1
 	- openjdk-7 7u95-2.6.4-1
 	- openjdk-6 <unfixed>
@@ -5341,7 +5343,7 @@
 CVE-2016-0449 (Unspecified vulnerability in the Enterprise Manager Base Platform ...)
 	TODO: check
 CVE-2016-0448 (Unspecified vulnerability in the Java SE and Java SE Embedded ...)
-	{DSA-3465-1 DSA-3458-1}
+	{DSA-3465-1 DSA-3458-1 DLA-410-1}
 	- openjdk-8 8u72-b15-1
 	- openjdk-7 7u95-2.6.4-1
 	- openjdk-6 <removed>
@@ -5437,7 +5439,7 @@
 CVE-2016-0403 (Unspecified vulnerability in Oracle Sun Solaris 11 allows remote ...)
 	TODO: check
 CVE-2016-0402 (Unspecified vulnerability in the Java SE and Java SE Embedded ...)
-	{DSA-3465-1 DSA-3458-1}
+	{DSA-3465-1 DSA-3458-1 DLA-410-1}
 	- openjdk-8 8u72-b15-1
 	- openjdk-7 7u95-2.6.4-1
 	- openjdk-6 <removed>
@@ -7465,14 +7467,14 @@
 	NOTE: latex2rtf compiled with -D_FORTIFY_SOURCE=2
 	NOTE: Rendered non-exploitable by toolchain hardening
 CVE-2015-8472 (Buffer overflow in the png_set_PLTE function in libpng before 1.0.65, ...)
-	{DSA-3443-1 DLA-375-1}
+	{DSA-3443-1 DLA-410-1 DLA-375-1}
 	- libpng <unfixed> (bug #807112)
 	NOTE: Fixed in 1.6.20, 1.5.25, 1.4.18, 1.2.55, and 1.0.65
 	NOTE: https://github.com/glennrp/libpng/commit/7e1ca9ceba4e64259863efdd98bab9b55bdc0b9c
 	NOTE: https://github.com/glennrp/libpng/commit/4488a96126bbefda51d07835411d8e847a88b2b7
 	NOTE: https://github.com/glennrp/libpng/commit/ad224c6907e8a274f2679eae4c2e3085fdc7e8c8
 CVE-2015-8126 (Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE ...)
-	{DSA-3399-1 DLA-343-1}
+	{DSA-3399-1 DLA-410-1 DLA-343-1}
 	- libpng 1.2.54-1 (bug #805113)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/11/12/2
 	NOTE: Fixed in 1.6.19, 1.5.24, 1.4.17, 1.2.54, and 1.0.64
@@ -9184,7 +9186,7 @@
 	- ruby-activesupport-2.3 <removed>
 	TODO: check
 CVE-2015-7575 (Mozilla Network Security Services (NSS) before 3.20.2, as used in ...)
-	{DSA-3465-1 DSA-3458-1 DSA-3457-1 DSA-3437-1 DSA-3436-1}
+	{DSA-3465-1 DSA-3458-1 DSA-3457-1 DSA-3437-1 DSA-3436-1 DLA-410-1}
 	- iceweasel 43.0.2-1
 	[squeeze] - iceweasel <end-of-life>
 	- nss 2:3.21-1


