[Secure-testing-commits] r46163 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Nov 13 18:05:29 UTC 2016
Author: jmm
Date: 2016-11-13 18:05:29 +0000 (Sun, 13 Nov 2016)
New Revision: 46163
Modified:
data/CVE/list
Log:
new botan issue n/a
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-13 17:49:53 UTC (rev 46162)
+++ data/CVE/list 2016-11-13 18:05:29 UTC (rev 46163)
@@ -300,9 +300,10 @@
CVE-2016-9147
RESERVED
CVE-2015-8969 (git-fastclone before 1.0.5 passes user modifiable strings directly to a ...)
- TODO: check
+ RESERVED
+ NOT-FOR-US: git-fastclone
CVE-2015-8968 (git-fastclone before 1.0.1 permits arbitrary shell command execution ...)
- TODO: check
+ NOT-FOR-US: git-fastclone
CVE-2015-8970 [crypto: GPF in lrw_crypt caused by null-deref]
RESERVED
- linux 4.4.2-1
@@ -365,11 +366,11 @@
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1379553
NOTE: http://www.openwall.com/lists/oss-security/2016/11/02/1
CVE-2016-9136 (Artifex Software, Inc. MuJS before ...)
- TODO: check
+ NOT-FOR-US: MuJS
CVE-2016-9135 (Exponent CMS 2.3.9 suffers from a SQL injection vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Exponent CMS
CVE-2016-9134 (Exponent CMS 2.3.9 suffers from a SQL injection vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Exponent CMS
CVE-2016-9133
RESERVED
CVE-2016-9132
@@ -434,7 +435,7 @@
- openjpeg2 <unfixed>
NOTE: https://github.com/uclouvain/openjpeg/issues/855
CVE-2016-9111 (Incorrect access control mechanisms in Citrix Receiver Desktop Lock 4.5 ...)
- TODO: check
+ NOT-FOR-US: Citrix
CVE-2016-9110
RESERVED
CVE-2016-9100
@@ -689,7 +690,7 @@
CVE-2016-9029
RESERVED
CVE-2016-9028 (Unauthorized redirect vulnerability in Citrix NetScaler ADC before 10.1 ...)
- TODO: check
+ NOT-FOR-US: Citrix
CVE-2016-9027
RESERVED
CVE-2016-9026
@@ -711,7 +712,7 @@
RESERVED
NOT-FOR-US: Exponent CMS
CVE-2016-9018 (Improper handling of a repeating VRAT chunk in qcpfformat.dll allows ...)
- TODO: check
+ NOT-FOR-US: RealPlayer
CVE-2016-9017 (Artifex Software, Inc. MuJS before ...)
NOT-FOR-US: MuJS
CVE-2016-9015 [certificate verification failure]
@@ -1005,7 +1006,7 @@
CVE-2016-8872
RESERVED
CVE-2016-8871 (In Botan 1.11.29 through 1.11.32, RSA decryption with certain padding ...)
- TODO: check
+ - botan1.10 <not-affected> (Only affects 1.11.29 through 1.11.32)
CVE-2016-8870 (The register method in the UsersModelRegistration class in ...)
TODO: check
CVE-2016-8869 (The register method in the UsersModelRegistration class in ...)
More information about the Secure-testing-commits
mailing list