[Secure-testing-commits] r43291 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Tue Jul 19 21:10:12 UTC 2016
Author: sectracker
Date: 2016-07-19 21:10:11 +0000 (Tue, 19 Jul 2016)
New Revision: 43291
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-19 19:58:15 UTC (rev 43290)
+++ data/CVE/list 2016-07-19 21:10:11 UTC (rev 43291)
@@ -1,3 +1,9 @@
+CVE-2016-6248
+ RESERVED
+CVE-2016-1000029
+ RESERVED
+CVE-2016-1000028
+ RESERVED
CVE-2016-6247
RESERVED
NOT-FOR-US: OpenBSD kernel
@@ -222,7 +228,7 @@
NOTE: https://launchpad.net/bugs/1597154
NOTE: https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/882
NOTE: http://www.openwall.com/lists/oss-security/2016/07/13/2
-CVE-2015-8947
+CVE-2015-8947 (hb-ot-layout-gpos-table.hh in HarfBuzz before 1.0.5 allows remote ...)
- harfbuzz 1.2.6-1
NOTE: https://cgit.freedesktop.org/harfbuzz/commit/?id=f96664974774bfeb237a7274f512f64aaafb201e (1.0.5)
CVE-2015-8946 [ecryptfs-setup-swap improperly configures encrypted swap when using GPT partitioning]
@@ -2323,8 +2329,7 @@
NOTE: https://www.mail-archive.com/netdev@vger.kernel.org/msg118677.html
CVE-2016-5389
REJECTED
-CVE-2016-5388
- RESERVED
+CVE-2016-5388 (Apache Tomcat through 8.5.4, when the CGI Servlet is enabled, follows ...)
- tomcat9 <itp> (bug #802312)
- tomcat8 <unfixed>
- tomcat7 <unfixed>
@@ -2338,14 +2343,11 @@
CVE-2016-1000104
RESERVED
- libapache2-mod-fcgid <unfixed>
-CVE-2016-5387
- RESERVED
+CVE-2016-5387 (The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 ...)
- apache2 <unfixed>
-CVE-2016-5386
- RESERVED
+CVE-2016-5386 (The net/http package in Go through 1.6 does not attempt to address RFC ...)
- golang <unfixed>
-CVE-2016-5385
- RESERVED
+CVE-2016-5385 (PHP through 7.0.8 does not attempt to address RFC 3875 section 4.1.18 ...)
- php7.0 <unfixed>
- php5 <unfixed>
CVE-2016-5384
More information about the Secure-testing-commits
mailing list