[Secure-testing-commits] r45907 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Wed Nov 2 21:10:12 UTC 2016
Author: sectracker
Date: 2016-11-02 21:10:12 +0000 (Wed, 02 Nov 2016)
New Revision: 45907
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-02 20:59:38 UTC (rev 45906)
+++ data/CVE/list 2016-11-02 21:10:12 UTC (rev 45907)
@@ -1,3 +1,15 @@
+CVE-2016-9146
+ RESERVED
+CVE-2016-9145
+ RESERVED
+CVE-2016-9144
+ RESERVED
+CVE-2016-9143
+ RESERVED
+CVE-2016-9142
+ RESERVED
+CVE-2016-9141
+ RESERVED
CVE-2016-XXXX [Image-Info: XXE in SVG files]
- libimage-info-perl <unfixed> (bug #842891)
NOTE: https://rt.cpan.org/Public/Bug/Display.html?id=118099
@@ -42,10 +54,12 @@
CVE-2016-9121
RESERVED
CVE-2016-9140 [RCE]
+ RESERVED
- zabbix <unfixed>
NOTE: https://www.exploit-db.com/exploits/39937/
TODO: check
CVE-2016-9139 [An attacker could trick an authenticated agent or customer into opening a malicious attachment which could lead to the execution of JavaScript in OTRS context]
+ RESERVED
- otrs2 <unfixed>
NOTE: https://www.otrs.com/security-advisory-2016-02-security-update-otrs/
NOTE: http://www.openwall.com/lists/oss-security/2016/11/01/5
@@ -564,6 +578,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/10/25/3
CVE-2016-9011 [memory allocation failure in wmf_malloc (api.c)]
RESERVED
+ {DLA-694-1}
- libwmf <unfixed> (bug #842090)
[jessie] - libwmf <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2016/10/18/9
@@ -1088,11 +1103,13 @@
NOTE: https://github.com/torproject/tor/commit/3cea86eb2fbb65949673eb4ba8ebb695c87a57ce
NOTE: http://www.openwall.com/lists/oss-security/2016/10/18/11
CVE-2016-9138 [Issues from Upstream bug #73147 still unfixed in 5.6.27 and 7.0.12]
+ RESERVED
- php7.0 <unfixed>
- php5 <unfixed>
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73147
NOTE: http://www.openwall.com/lists/oss-security/2016/11/01/7
CVE-2016-9137 [Use After Free in unserialize()]
+ RESERVED
{DSA-3698-1}
- php7.0 7.0.12-1
- php5 <unfixed>
@@ -2219,6 +2236,7 @@
NOTE: http://www.talosintelligence.com/reports/TALOS-2016-0193/
NOTE: https://github.com/uclouvain/openjpeg/pull/820
CVE-2016-8331 (An exploitable remote code execution vulnerability exists in the ...)
+ {DLA-693-1}
- tiff <unfixed>
- tiff3 <removed>
[wheezy] - tiff3 <not-affected> (Does not ship libtiff tools)
@@ -3615,6 +3633,7 @@
RESERVED
CVE-2016-7999 [Server Side Request Forgery]
RESERVED
+ {DLA-695-1}
- spip 3.1.3-1
NOTE: http://seclists.org/fulldisclosure/2016/Oct/78
NOTE: https://core.spip.net/projects/spip/repository/revisions/23180 (master)
@@ -3623,6 +3642,7 @@
NOTE: reproducible in Wheezy (2.1.17-1+deb7u5) and Jessie (3.0.17-2+deb8u2)
CVE-2016-7998 [Template Compiler/Composer PHP Code Execution]
RESERVED
+ {DLA-695-1}
- spip 3.1.3-1
NOTE: http://seclists.org/fulldisclosure/2016/Oct/76
NOTE: https://core.spip.net/projects/spip/repository/revisions/23186 (master)
@@ -3686,6 +3706,7 @@
RESERVED
CVE-2016-7982 [File Enumeration / Path Traversal]
RESERVED
+ {DLA-695-1}
- spip 3.1.3-1
NOTE: http://seclists.org/fulldisclosure/2016/Oct/73
NOTE: https://core.spip.net/projects/spip/repository/revisions/23180 (master)
@@ -3706,6 +3727,7 @@
NOTE: reproducible in Wheezy (2.1.17-1+deb7u5) and Jessie (3.0.17-2+deb8u2)
CVE-2016-7981 [Reflected Cross-Site Scripting]
RESERVED
+ {DLA-695-1}
- spip 3.1.3-1
NOTE: http://seclists.org/fulldisclosure/2016/Oct/68
NOTE: https://core.spip.net/projects/spip/repository/revisions/23200 (master)
@@ -3714,6 +3736,7 @@
NOTE: reproducible in Wheezy (2.1.17-1+deb7u5) and Jessie (3.0.17-2+deb8u2)
CVE-2016-7980 [Cross-Site Request Forgery]
RESERVED
+ {DLA-695-1}
- spip 3.1.3-1
NOTE: http://seclists.org/fulldisclosure/2016/Oct/67
NOTE: https://core.spip.net/projects/spip/repository/revisions/23200 (master)
@@ -4075,8 +4098,7 @@
RESERVED
CVE-2016-7856
RESERVED
-CVE-2016-7855
- RESERVED
+CVE-2016-7855 (Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 ...)
NOT-FOR-US: Adobe Flash
CVE-2016-7854 (Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC ...)
TODO: check
@@ -9353,7 +9375,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/07/13/5
CVE-2016-6223 [tiff: information leak in libtiff/tif_read.c]
RESERVED
- {DLA-610-1}
+ {DLA-693-1 DLA-610-1}
- tiff 4.0.6-2 (bug #842270)
- tiff3 <removed>
NOTE: http://www.openwall.com/lists/oss-security/2016/07/13/3
@@ -10879,6 +10901,7 @@
NOT-FOR-US: Misys
CVE-2016-5652 [heap based buffer overflow in LibTIFFs TIFF2PDF tool]
RESERVED
+ {DLA-693-1}
- tiff <unfixed> (bug #842361)
- tiff3 <removed>
[wheezy] - tiff3 <not-affected> (Does not ship libtiff tools)
@@ -12455,6 +12478,7 @@
RESERVED
CVE-2016-5319 [libtiff: PackBitsEncode heap buffer overflow]
RESERVED
+ {DLA-693-1}
- tiff <unfixed> (bug #842046)
- tiff3 <removed>
[wheezy] - tiff3 <not-affected> (tools like bmp2tiff not shipped by tiff3 source package)
@@ -12465,6 +12489,7 @@
NOTE: bmp2tiff was removed in 4.0.6-3, but the affected function is still present
CVE-2016-5318 [libtiff: stack buffer overflow in _TIFFVGetField function]
RESERVED
+ {DLA-693-1 DLA-692-1}
- tiff <unfixed> (bug #842043)
- tiff3 <removed>
NOTE: _TIFFVGetField isn't specific to thumbnail tool
@@ -13269,6 +13294,7 @@
TODO: probably not affected since orig.tar.gz of src:mplayer does not include libavcodec, ffmpeg/libav affected?
CVE-2016-5102 [gif2tiff: buffer overflow in readgifimage()]
RESERVED
+ {DLA-693-1}
- tiff 4.0.6-3
[jessie] - tiff <no-dsa> (Minor issue)
- tiff3 <removed> (unimportant)
@@ -17633,6 +17659,7 @@
CVE-2016-3635 (SAP Netweaver 7.4 allows remote authenticated users to bypass an ...)
TODO: check
CVE-2016-3634 (The tagCompare function in tif_dirinfo.c in the thumbnail tool in ...)
+ {DLA-693-1}
- tiff <unfixed>
[jessie] - tiff <no-dsa> (Minor issue)
- tiff3 <removed> (unimportant)
@@ -17642,6 +17669,7 @@
NOTE: Upstream will remove thumbnail from 4.0.7 release
NOTE: No patch available. Issue marked as wontfix by upstream.
CVE-2016-3633 (The setrow function in the thumbnail tool in LibTIFF 4.0.6 and earlier ...)
+ {DLA-693-1}
- tiff 4.0.6-3 (bug #842046)
[jessie] - tiff <no-dsa> (Minor issue)
- tiff3 <removed> (unimportant)
@@ -17652,6 +17680,7 @@
NOTE: No patch available. Issue marked as wontfix by upstream.
NOTE: thumbnail(1) removed in 4.0.6-3
CVE-2016-3632 (The _TIFFVGetField function in tif_dirinfo.c in LibTIFF 4.0.6 and ...)
+ {DLA-693-1}
- tiff <unfixed>
[jessie] - tiff <no-dsa> (Minor issue)
- tiff3 <removed> (unimportant)
@@ -17662,6 +17691,7 @@
NOTE: No patch available. Issue marked as wontfix by upstream.
NOTE: thumbnail(1) removed in 4.0.6-3, but vulnerable library code still present
CVE-2016-3631 (The (1) cpStrips and (2) cpTiles functions in the thumbnail tool in ...)
+ {DLA-693-1}
- tiff 4.0.6-3 (bug #820366)
[jessie] - tiff <no-dsa> (Minor issue)
- tiff3 <removed> (unimportant)
@@ -17709,6 +17739,7 @@
- tiff3 <not-affected> (tiff tools not built)
NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/5
CVE-2016-3621 (The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF ...)
+ {DLA-693-1}
- tiff <unfixed> (low; bug #820364)
[jessie] - tiff <no-dsa> (Minor issue)
- tiff3 <not-affected> (tiff tools not built)
@@ -17717,6 +17748,7 @@
NOTE: Utility bmp2tiff has been removed from upstream LibTIFF
NOTE: bmp2tiff was removed in 4.0.6-3, but the affected function is still present
CVE-2016-3620 (The ZIPEncode function in tif_zip.c in the bmp2tiff tool in LibTIFF ...)
+ {DLA-693-1}
- tiff <unfixed> (low; bug #820363)
[jessie] - tiff <no-dsa> (Minor issue)
- tiff3 <not-affected> (tiff tools not built)
@@ -17725,6 +17757,7 @@
NOTE: Utility bmp2tiff has been removed from upstream LibTIFF
NOTE: bmp2tiff was removed in 4.0.6-3, but the affected function is still present
CVE-2016-3619 (The DumpModeEncode function in tif_dumpmode.c in the bmp2tiff tool in ...)
+ {DLA-693-1}
- tiff <unfixed> (low; bug #820362)
[jessie] - tiff <no-dsa> (Minor issue)
- tiff3 <not-affected> (tiff tools not built)
@@ -18716,7 +18749,7 @@
CVE-2016-3187 (The Prepopulate module 7.x-2.x before 7.x-2.1 for Drupal allows remote ...)
NOT-FOR-US: Prepopulate module for Drupal
CVE-2016-3186 (Buffer overflow in the readextension function in gif2tiff.c in LibTIFF ...)
- {DLA-610-1}
+ {DLA-693-1 DLA-610-1}
- tiff 4.0.6-3 (bug #819972)
[jessie] - tiff <no-dsa> (Minor issue)
- tiff3 <removed> (unimportant)
@@ -26278,6 +26311,7 @@
NOTE: https://www.phpmyadmin.net/security/PMASA-2015-6/
NOTE: non-issue for Debian-packaged version
CVE-2015-8668 (Heap-based buffer overflow in the PackBitsPreEncode function in ...)
+ {DLA-693-1}
- tiff <unfixed> (bug #842046)
- tiff3 <removed>
[wheezy] - tiff3 <not-affected> (Does not ship libtiff tools)
@@ -32592,6 +32626,7 @@
[wheezy] - giflib 4.1.6-10+deb7u1
NOTE: Upstream fix http://sourceforge.net/p/giflib/code/ci/179510be300bf11115e37528d79619b53c884a63
CVE-2015-7554 (The _TIFFVGetField function in tif_dir.c in libtiff 4.0.6 allows ...)
+ {DLA-693-1 DLA-692-1}
- tiff <unfixed> (bug #809066; bug #842043)
- tiff3 <removed>
NOTE: http://www.openwall.com/lists/oss-security/2015/12/26/7
@@ -59253,7 +59288,7 @@
NOTE: The tiff3 source package doesn't build the TIFF tools, but most of these bugs are in the library
CVE-2014-8128 [out-of-bounds write]
RESERVED
- {DSA-3273-1 DLA-610-1 DLA-221-1}
+ {DSA-3273-1 DLA-693-1 DLA-610-1 DLA-221-1}
- tiff 4.0.3-12.3 (bug #776185)
- tiff3 <removed>
NOTE: Advisory: http://www.conostix.com/pub/adv/CVE-2014-8128-LibTIFF-Out-of-bounds_Writes.txt
More information about the Secure-testing-commits
mailing list