[Secure-testing-commits] r38786 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Fri Jan 8 21:10:13 UTC 2016
Author: sectracker
Date: 2016-01-08 21:10:13 +0000 (Fri, 08 Jan 2016)
New Revision: 38786
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-08 18:43:34 UTC (rev 38785)
+++ data/CVE/list 2016-01-08 21:10:13 UTC (rev 38786)
@@ -1,3 +1,121 @@
+CVE-2016-1563
+ RESERVED
+CVE-2016-1562
+ RESERVED
+CVE-2016-1561
+ RESERVED
+CVE-2016-1560
+ RESERVED
+CVE-2016-1559
+ RESERVED
+CVE-2016-1558
+ RESERVED
+CVE-2016-1557
+ RESERVED
+CVE-2016-1556
+ RESERVED
+CVE-2016-1555
+ RESERVED
+CVE-2016-1554
+ RESERVED
+CVE-2016-1553
+ RESERVED
+CVE-2016-1552
+ RESERVED
+CVE-2016-1551
+ RESERVED
+CVE-2016-1550
+ RESERVED
+CVE-2016-1549
+ RESERVED
+CVE-2016-1548
+ RESERVED
+CVE-2016-1547
+ RESERVED
+CVE-2016-1546
+ RESERVED
+CVE-2016-1545
+ RESERVED
+CVE-2016-1544
+ RESERVED
+CVE-2016-1543
+ RESERVED
+CVE-2016-1542
+ RESERVED
+CVE-2016-1541
+ RESERVED
+CVE-2016-1540
+ RESERVED
+CVE-2016-1539
+ RESERVED
+CVE-2016-1538
+ RESERVED
+CVE-2016-1537
+ RESERVED
+CVE-2016-1536
+ RESERVED
+CVE-2016-1535
+ RESERVED
+CVE-2016-1534
+ RESERVED
+CVE-2016-1533
+ RESERVED
+CVE-2016-1532
+ RESERVED
+CVE-2016-1531
+ RESERVED
+CVE-2016-1530
+ RESERVED
+CVE-2016-1529
+ RESERVED
+CVE-2016-1528
+ RESERVED
+CVE-2016-1527
+ RESERVED
+CVE-2016-1526
+ RESERVED
+CVE-2016-1525
+ RESERVED
+CVE-2016-1524
+ RESERVED
+CVE-2016-1523
+ RESERVED
+CVE-2016-1522
+ RESERVED
+CVE-2016-1521
+ RESERVED
+CVE-2016-1520
+ RESERVED
+CVE-2016-1519
+ RESERVED
+CVE-2016-1518
+ RESERVED
+CVE-2016-1517
+ RESERVED
+CVE-2016-1516
+ RESERVED
+CVE-2016-1515
+ RESERVED
+CVE-2016-1514
+ RESERVED
+CVE-2016-1513
+ RESERVED
+CVE-2016-1512
+ RESERVED
+CVE-2016-1511
+ RESERVED
+CVE-2016-1510
+ RESERVED
+CVE-2016-1509
+ RESERVED
+CVE-2016-1508
+ RESERVED
+CVE-2016-1507
+ RESERVED
+CVE-2016-1506
+ RESERVED
+CVE-2016-1502
+ RESERVED
CVE-2016-1497
RESERVED
CVE-2016-1496
@@ -16,12 +134,14 @@
NOTE: http://redmine.lighttpd.net/issues/2700
TODO: check older versions, seems to have been introduced in 1.4.38, but confirm
CVE-2016-1503 [heap overflow via malformed dhcp responses in print_option (via dhcp_envoption1) due to incorrect option length values]
+ RESERVED
- dhcpcd5 <unfixed>
- dhcpcd <removed>
NOTE: http://roy.marples.name/projects/dhcpcd/info/76a1609352263bd9def1300d7ba990679571fa30
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/07/3
TODO: check affected versions
CVE-2016-1504 [invalid read/crash via malformed dhcp responses]
+ RESERVED
- dhcpcd5 <unfixed>
- dhcpcd <removed>
NOTE: http://roy.marples.name/projects/dhcpcd/info/595883e2a431f65d8fabf33059aa4689cca17403
@@ -475,17 +595,21 @@
CVE-2016-1284
RESERVED
CVE-2016-1505 [On MS Windows the filesystem backend allows access to the first level of files on a drive.]
+ RESERVED
- radicale <not-affected> (Only an issue on MS Windows)
CVE-2015-8751
+ RESERVED
- jasper <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1294039
TODO: check
CVE-2015-8750
+ RESERVED
- dwarfutils <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1294264
NOTE: https://github.com/tomhughes/libdwarf/commit/11750a2838e52953013e3114ef27b3c7b1780697
TODO: check
CVE-2015-8749 [Xen connection password leak in logs via StorageError]
+ RESERVED
- nova <unfixed>
NOTE: https://launchpad.net/bugs/1516765
NOTE: Affects: >= 2014.2 <= 2015.1.2, ==12.0.0
@@ -1093,8 +1217,8 @@
RESERVED
CVE-2016-1132
RESERVED
-CVE-2016-1131
- RESERVED
+CVE-2016-1131 (Buffer overflow in the CL_vsprintf function in Takumi Yamada DX ...)
+ TODO: check
CVE-2015-8698
RESERVED
CVE-2015-8696
@@ -4724,8 +4848,8 @@
TODO: check
CVE-2015-8262 (Buffalo WZR-600DHP2 devices with firmware 2.09, 2.13, and 2.16 use an ...)
TODO: check
-CVE-2015-8261
- RESERVED
+CVE-2015-8261 (The DroneDeleteOldMeasurements implementation in Ipswitch WhatsUp Gold ...)
+ TODO: check
CVE-2015-8260
RESERVED
CVE-2015-8259
@@ -6773,6 +6897,7 @@
RESERVED
CVE-2015-7575 [MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature]
RESERVED
+ {DSA-3436-1}
- iceweasel 43.0.2-1
[squeeze] - iceweasel <end-of-life>
- nss 2:3.21-1
@@ -8551,8 +8676,7 @@
RESERVED
CVE-2015-6863
RESERVED
-CVE-2015-6862
- RESERVED
+CVE-2015-6862 (HPE UCMDB Browser before 4.02 allows remote attackers to obtain ...)
NOT-FOR-US: HPE UCMDB Browser
CVE-2015-6861 (HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated ...)
TODO: check
@@ -9796,10 +9920,10 @@
RESERVED
CVE-2015-6435
RESERVED
-CVE-2015-6434
- RESERVED
-CVE-2015-6433
- RESERVED
+CVE-2015-6434 (Cisco Prime Infrastructure does not properly restrict use of IFRAME ...)
+ TODO: check
+CVE-2015-6433 (SQL injection vulnerability in Cisco Unified Communications Manager ...)
+ TODO: check
CVE-2015-6432 (Cisco IOS XR 4.2.0, 4.3.0, 5.0.0, 5.1.0, 5.2.0, 5.2.2, 5.2.4, 5.3.0, ...)
TODO: check
CVE-2015-6431 (Cisco IOS XE 16.1.1 allows remote attackers to cause a denial of ...)
More information about the Secure-testing-commits
mailing list