[Secure-testing-commits] r38904 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Thu Jan 14 09:10:11 UTC 2016 

Author: sectracker
Date: 2016-01-14 09:10:11 +0000 (Thu, 14 Jan 2016)
New Revision: 38904

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-01-14 09:03:54 UTC (rev 38903)
+++ data/CVE/list	2016-01-14 09:10:11 UTC (rev 38904)
@@ -502,6 +502,7 @@
 	RESERVED
 CVE-2016-1564 [cross-site scripting vulnerability]
 	RESERVED
+	{DSA-3444-1}
 	- wordpress 4.4.1+dfsg-1 (bug #810325)
 	[squeeze] - wordpress <not-affected> (Vulnerable code not present)
 	NOTE: https://wordpress.org/news/2016/01/wordpress-4-4-1-security-and-maintenance-release/
@@ -1374,6 +1375,7 @@
 	NOT-FOR-US: ZTE router
 CVE-2015-8702 [DoS caused by PTR lookup of connecting users]
 	RESERVED
+	{DLA-384-1}
 	- inspircd 2.0.20-1
 	NOTE: https://github.com/inspircd/inspircd/commit/6058483d9fbc1b904d5ae7cfea47bfcde5c5b559
 	NOTE: http://www.inspircd.org/2015/04/16/v2019-released.html
@@ -2485,6 +2487,7 @@
 	RESERVED
 CVE-2015-8605 [UDP payload length not properly checked]
 	RESERVED
+	{DSA-3442-1}
 	- isc-dhcp <unfixed> (bug #810875)
 	NOTE: https://kb.isc.org/article/AA-01334
 CVE-2015-8603 (Cross-site scripting (XSS) vulnerability in Serendipity before 2.0.3 ...)
@@ -3066,7 +3069,7 @@
 	NOTE: Upstream commit: http://git.qemu.org/?p=qemu.git;a=commit;h=156a2e4dbffa85997636a7a39ef12da6f1b40254
 	NOTE: http://www.openwall.com/lists/oss-security/2015/12/14/9
 CVE-2015-8557 (The FontManager._get_nix_font_path function in formatters/img.py in ...)
-	{DLA-369-1}
+	{DSA-3445-1 DLA-369-1}
 	- pygments 2.0.1+dfsg-2 (bug #802828)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1276321
 	NOTE: https://bitbucket.org/birkenfeld/pygments-main/commits/0036ab1c99e256298094505e5e92f
@@ -3731,7 +3734,7 @@
 	RESERVED
 CVE-2015-8540 [underflow read in png_check_keyword in pngwutil.c]
 	RESERVED
-	{DLA-375-1}
+	{DSA-3443-1 DLA-375-1}
 	- libpng <unfixed> (bug #807694)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/12/10/6
 	NOTE: https://sourceforge.net/p/libpng/bugs/244/
@@ -5719,7 +5722,7 @@
 	NOTE: Rendered non-exploitable by toolchain hardening
 CVE-2015-8472 [Incomplete fix for CVE-2015-8126]
 	RESERVED
-	{DLA-375-1}
+	{DSA-3443-1 DLA-375-1}
 	- libpng <unfixed> (bug #807112)
 	NOTE: Fixed in 1.6.20, 1.5.25, 1.4.18, 1.2.55, and 1.0.65
 	NOTE: https://github.com/glennrp/libpng/commit/7e1ca9ceba4e64259863efdd98bab9b55bdc0b9c

More information about the Secure-testing-commits mailing list