[Secure-testing-commits] r40417 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Mar 16 17:48:52 UTC 2016
Author: jmm
Date: 2016-03-16 17:48:52 +0000 (Wed, 16 Mar 2016)
New Revision: 40417
Modified:
data/CVE/list
Log:
add older chromium issue
spring no-dsa
clean up some TODOs
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-16 13:28:06 UTC (rev 40416)
+++ data/CVE/list 2016-03-16 17:48:52 UTC (rev 40417)
@@ -53,7 +53,6 @@
CVE-2016-3156 [ipv4: Don't do expensive useless work during inetdev destroy]
- linux <unfixed>
NOTE: http://www.openwall.com/lists/oss-security/2016/03/15/3
- TODO: check
CVE-2016-XXXX [opam: does not verify certificate]
- opam <unfixed> (bug #818081)
NOTE: https://github.com/ocaml/opam/commit/3d43295df3bb9e67e60801d319bf82c2c8a84d24
@@ -199,15 +198,16 @@
CVE-2016-XXXX [Out-Of-Bounds Read in sycc422_to_rgb function]
- openjpeg2 <unfixed>
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/14/14
- TODO: check
+ NOTE: https://github.com/uclouvain/openjpeg/issues/726
CVE-2016-XXXX [Heap Corruption in opj_free function]
- openjpeg2 <unfixed>
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/14/13
+ NOTE: https://github.com/uclouvain/openjpeg/issues/725
TODO: check, possibly as well src:openjpeg
CVE-2016-XXXX [Out-Of-Bounds Read in opj_tcd_free_tile function]
- openjpeg2 <unfixed>
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/14/12
- TODO: check
+ NOTE: https://github.com/uclouvain/openjpeg/issues/724
CVE-2016-XXXX [An invalid off by one read can happen in the function pr_fs_dircat()]
- proftpd-dfsg <undetermined>
NOTE: http://bugs.proftpd.org/show_bug.cgi?id=4194
@@ -708,14 +708,13 @@
NOTE: http://marc.info/?l=netfilter-devel&m=145757134822741&w=2
NOTE: http://www.openwall.com/lists/oss-security/2016/03/10/4
NOTE: http://www.openwall.com/lists/oss-security/2016/03/10/7
- TODO: check
+ NOTE: Non-privileged user namespaces disabled by default, only vulnerable with sysctl kernel.unprivileged_userns_clone=1
CVE-2016-3135 [unsigned integer overflow on 32bit kernels]
RESERVED
- linux <unfixed>
NOTE: http://marc.info/?l=netfilter-devel&m=145757136822750&w=2
NOTE: https://patchwork.ozlabs.org/patch/595576/
NOTE: http://www.openwall.com/lists/oss-security/2016/03/10/7
- TODO: check
CVE-2015-8833 [Heap use after free in Pidgin-OTR plugin]
RESERVED
- pidgin-otr 4.0.2-1
@@ -1520,7 +1519,6 @@
NOTE: https://github.com/moment/moment/pull/2939
NOTE: https://nodesecurity.io/advisories/55
NOTE: nodejs not covered by security support
- TODO: File bug
CVE-2016-2782
RESERVED
- linux 4.4.2-1
@@ -2220,7 +2218,6 @@
NOTE: https://github.com/pillarjs/send/pull/70
NOTE: https://github.com/expressjs/serve-static/blob/master/HISTORY.md#181--2015-01-20
NOTE: https://nodesecurity.io/advisories/56
- TODO: File bug
NOTE: nodejs not covered by security support
CVE-2015-XXXX [handlebars: quoteless attributes in templates can lead to content injection]
- libjs-handlebars <unfixed>
@@ -2977,26 +2974,23 @@
RESERVED
CVE-2016-2186 [Kernel panic on invalid USB device descriptor (powermate driver)]
RESERVED
- - linux <unfixed>
+ - linux <unfixed> (low)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1317015
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1283384
NOTE: http://seclists.org/bugtraq/2016/Mar/85
NOTE: http://marc.info/?l=linux-usb&m=145796479528669&w=2
- TODO: check
CVE-2016-2185 [Kernel panic on invalid USB device descriptor (ati_remote2 driver)]
RESERVED
- - linux <unfixed>
+ - linux <unfixed> (low)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1317014
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1283362
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1283363
- TODO: check
CVE-2016-2184 [Kernel panic on invalid USB device descriptor (snd_usb_audio driver)]
RESERVED
- - linux <unfixed>
+ - linux <unfixed> (low)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1317012
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1283355
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1283358
- TODO: check
CVE-2016-2183
RESERVED
CVE-2016-2182
@@ -4117,10 +4111,8 @@
NOTE: Non-free not supported
CVE-2016-1924 (The opj_tgt_reset function in OpenJpeg 2016.1.18 allows remote ...)
- openjpeg2 <unfixed>
- TODO: check
CVE-2016-1923 (Heap-based buffer overflow in the opj_j2k_update_image_data function ...)
- openjpeg2 <unfixed>
- TODO: check
CVE-2016-1920 [VPN Man-in-the-Middle due to shared certificate store on KNOX 1.0 / Android 4.3]
RESERVED
NOT-FOR-US: KNOX 1.0 / Android 4.3
@@ -4507,7 +4499,7 @@
CVE-2016-1732
RESERVED
CVE-2016-1731 (Apple Software Update before 2.2 on Windows does not use HTTPS, which ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2016-1730 (WebSheet in Apple iOS before 9.2.1 allows remote attackers to read or ...)
NOT-FOR-US: Apple iOS
CVE-2016-1729 (Untrusted search path vulnerability in OSA Scripts in Apple OS X ...)
@@ -5106,7 +5098,7 @@
CVE-2016-1563
RESERVED
CVE-2016-1562 (The REST API in the DTE Energy Insight application before 1.7.8 for ...)
- TODO: check
+ NOT-FOR-US: DTE Energy Insight
CVE-2016-1561
RESERVED
CVE-2016-1560
@@ -5587,9 +5579,9 @@
CVE-2016-1362
RESERVED
CVE-2016-1361 (Cisco IOS XR through 4.3.2 on Gigabit Switch Router (GSR) 12000 ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-1360 (Cisco Prime LAN Management Solution (LMS) through 4.2.5 uses the same ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-1359 (Cisco Prime Infrastructure 3.0 allows remote authenticated users to ...)
NOT-FOR-US: Cisco
CVE-2016-1358 (Cisco Prime Infrastructure 2.2, 3.0, and 3.1(0.0) allows remote ...)
@@ -5633,7 +5625,7 @@
CVE-2016-1339
RESERVED
CVE-2016-1338 (Cisco TelePresence Video Communication Server (VCS) X8.5.1 and X8.5.2 ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-1337
RESERVED
CVE-2016-1336
@@ -5657,9 +5649,9 @@
CVE-2016-1327 (Buffer overflow in the web server on Cisco DPC2203 and EPC2203 devices ...)
NOT-FOR-US: Cisco
CVE-2016-1326 (The administration interface on Cisco DPQ3925 devices with firmware r1 ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-1325 (The administration interface on Cisco DPC3939B and DPC3941 devices ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-1324 (The REST interface in Cisco Spark 2015-06 allows remote attackers to ...)
NOT-FOR-US: Cisco Spark
CVE-2016-1323 (The REST interface in Cisco Spark 2015-06 allows remote authenticated ...)
@@ -5685,7 +5677,7 @@
CVE-2016-1313
RESERVED
CVE-2016-1312 (The HTTPS inspection engine in the Content Security and Control ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2016-1311 (Cross-site scripting (XSS) vulnerability in the management interface ...)
NOT-FOR-US: Cisco
CVE-2016-1310 (Cross-site scripting (XSS) vulnerability in Cisco Unity Connection ...)
@@ -6554,7 +6546,9 @@
CVE-2015-8667
RESERVED
CVE-2015-8664 (Integer overflow in the WebCursor::Deserialize function in ...)
- TODO: check
+ - chromium-browser 47.0.2526.111-1
+ [wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
+ [squeeze] - chromium-browser <end-of-life> (Not supported in Squeeze LTS)
CVE-2015-8663 (The ff_get_buffer function in libavcodec/utils.c in FFmpeg before ...)
- ffmpeg 7:2.8.4-1
[squeeze] - ffmpeg <end-of-life> (Not supported in Squeeze LTS)
@@ -6919,7 +6913,7 @@
CVE-2016-1011
RESERVED
CVE-2016-1010 (Integer overflow in Adobe Flash Player before 18.0.0.333 and 19.x ...)
- TODO: check
+ NOT-FOR-US: Adobe Flash
CVE-2016-1009 (Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Reader DC ...)
NOT-FOR-US: Adobe
CVE-2016-1008 (Untrusted search path vulnerability in Adobe Reader and Acrobat before ...)
@@ -25132,7 +25126,9 @@
NOTE: https://www.openssl.org/news/secadv/20151203.txt
CVE-2015-3192
RESERVED
- - libspring-java <unfixed> (bug #796137)
+ - libspring-java <unfixed> (low; bug #796137)
+ [wheezy] - libspring-java <no-dsa> (Minor issue)
+ [jessie] - libspring-java <no-dsa> (Minor issue)
NOTE: https://pivotal.io/security/cve-2015-3192
NOTE: https://jira.spring.io/browse/SPR-13136
CVE-2015-3191
More information about the Secure-testing-commits
mailing list