[Secure-testing-commits] r45043 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Tue Oct 4 21:10:12 UTC 2016
Author: sectracker
Date: 2016-10-04 21:10:12 +0000 (Tue, 04 Oct 2016)
New Revision: 45043
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-04 20:34:36 UTC (rev 45042)
+++ data/CVE/list 2016-10-04 21:10:12 UTC (rev 45043)
@@ -1,3 +1,13 @@
+CVE-2015-8964
+ RESERVED
+CVE-2015-8963
+ RESERVED
+CVE-2015-8962
+ RESERVED
+CVE-2015-8961
+ RESERVED
+CVE-2014-9908
+ RESERVED
CVE-2016-XXXX [mpg123 memory overread]
- mpg123 1.23.8-1 (low; bug #838960)
[jessie] - mpg123 <no-dsa> (Minor issue)
@@ -309,16 +319,16 @@
NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=53c30545fb34c43c84d62ea1c2b0dc6b53303c34 (v2.2.0-rc0)
NOTE: http://www.openwall.com/lists/oss-security/2016/09/19/8
TODO: check if older versions are affected even due to lack of usb_xhci_exit
-CVE-2016-8280
- RESERVED
+CVE-2016-8280 (Directory traversal vulnerability in Huawei eSight before ...)
+ TODO: check
CVE-2016-8279 (The video driver in Huawei Mate S smartphones with software CRR-TL00 ...)
NOT-FOR-US: Huawei
-CVE-2016-8278
- RESERVED
-CVE-2016-8277
- RESERVED
-CVE-2016-8276
- RESERVED
+CVE-2016-8278 (Huawei USG9520, USG9560, and USG9580 unified security gateways with ...)
+ TODO: check
+CVE-2016-8277 (Huawei USG9520, USG9560, and USG9580 unified security gateways with ...)
+ TODO: check
+CVE-2016-8276 (Buffer overflow in the Point-to-Point Protocol over Ethernet (PPPoE) ...)
+ TODO: check
CVE-2016-8275
RESERVED
CVE-2016-8274
@@ -2440,14 +2450,11 @@
RESERVED
CVE-2016-7573
RESERVED
-CVE-2016-7572
- RESERVED
+CVE-2016-7572 (The system.temporary route in Drupal 8.x before 8.1.10 does not ...)
- drupal7 <not-affected> (Only affects Drupal 8)
-CVE-2016-7571
- RESERVED
+CVE-2016-7571 (Cross-site scripting (XSS) vulnerability in Drupal 8.x before 8.1.10 ...)
- drupal7 <not-affected> (Only affects Drupal 8)
-CVE-2016-7570
- RESERVED
+CVE-2016-7570 (Drupal 8.x before 8.1.10 does not properly check for "Administer ...)
- drupal7 <not-affected> (Only affects Drupal 8)
CVE-2016-7569
RESERVED
@@ -2710,15 +2717,14 @@
NOTE: For the http://www.graphicsmagick.org/NEWS.html#september-5-2016 case
NOTE: which remained present in the 1.3.24 release (and was not fixed until 1.3.25)
NOTE: Fixed by http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/6071b5820215
-CVE-2016-7445 [openjpeg null ptr dereference]
- RESERVED
+CVE-2016-7445 (convert.c in OpenJPEG before 2.1.2 allows remote attackers to cause a ...)
- openjpeg2 2.1.2-1 (bug #838690)
NOTE: https://github.com/uclouvain/openjpeg/issues/843
NOTE: PoC: https://github.com/STARLABSEC/pocs/raw/master/openjpeg-nullptr-github-issue-842.ppm
CVE-2016-7443
RESERVED
-CVE-2016-7442
- RESERVED
+CVE-2016-7442 (The Frontend component in Sophos UTM with firmware 9.405-5 and earlier ...)
+ TODO: check
CVE-2016-7441
RESERVED
CVE-2016-7440
@@ -2757,6 +2763,7 @@
NOTE: http://marc.info/?l=linux-scsi&m=147394713328707&w=2
CVE-2016-7424 [NULL pointer dereference in put_no_rnd_pixels8_xy2_mmx (rnd_template.c)]
RESERVED
+ {DSA-3685-1}
- libav <removed>
- ffmpeg <not-affected> (Fixed before introduction into the archive)
NOTE: Fixed by: https://git.libav.org/?p=libav.git;a=commit;h=136f55207521f0b03194ef5b55ba70f1635d6aee
@@ -2865,8 +2872,7 @@
RESERVED
CVE-2016-7402
RESERVED
-CVE-2016-7401
- RESERVED
+CVE-2016-7401 (The cookie parsing code in Django before 1.8.15 and 1.9.x before ...)
{DSA-3678-1}
- python-django 1:1.10-1 (low)
NOTE: https://www.djangoproject.com/weblog/2016/sep/26/security-releases/
@@ -2877,8 +2883,8 @@
RESERVED
CVE-2016-7398
RESERVED
-CVE-2016-7397
- RESERVED
+CVE-2016-7397 (The Frontend component in Sophos UTM with firmware 9.405-5 and earlier ...)
+ TODO: check
CVE-2016-7396
RESERVED
CVE-2016-7395 (SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on ...)
@@ -3466,8 +3472,7 @@
RESERVED
CVE-2016-7158
RESERVED
-CVE-2016-7405 [incorrect quoting may allow SQL injection]
- RESERVED
+CVE-2016-7405 (The qstr method in the PDO driver in the ADOdb Library for PHP before ...)
{DLA-620-1}
- libphp-adodb 5.20.6-1 (bug #837211)
[jessie] - libphp-adodb <no-dsa> (Minor issue, can be fixed via point release)
@@ -3576,8 +3581,7 @@
CVE-2016-7135
RESERVED
NOT-FOR-US: Plone
-CVE-2016-7141 [Incorrect reuse of client certificates]
- RESERVED
+CVE-2016-7141 (curl and libcurl before 7.50.2, when built with NSS and the ...)
{DLA-616-1}
- curl <unfixed> (bug #836918)
[jessie] - curl <no-dsa> (Minor issue, can be fixed in point release or next DSA; affects only NSS backend)
@@ -3911,8 +3915,7 @@
RESERVED
CVE-2016-7047
RESERVED
-CVE-2016-7046 [Long URL proxy request lead to java.nio.BufferOverflowException and DoS]
- RESERVED
+CVE-2016-7046 (Red Hat JBoss Enterprise Application Platform (EAP) 7, when operating ...)
- undertow 1.4.3-1 (bug #838600)
NOTE: https://github.com/undertow-io/undertow/commit/c518b5a1784061d807efedcef0a03fcd35a53de2
CVE-2016-7045 (The format_send_to_gui function in the format parsing code in Irssi ...)
@@ -3950,8 +3953,7 @@
NOT-FOR-US: JBoss BPMS
CVE-2016-7032
RESERVED
-CVE-2016-7031 [rgw: Anonymous user is able to read bucket with authenticated read ACL]
- RESERVED
+CVE-2016-7031 (The RGW code in Ceph before 10.0.1, when authenticated-read ACL is ...)
- ceph <unfixed> (bug #838026)
[jessie] - ceph <no-dsa> (Minor issue)
NOTE: http://tracker.ceph.com/issues/13207
@@ -5652,8 +5654,7 @@
CVE-2016-6486 (Siemens SINEMA Server uses weak permissions for the application ...)
NOT-FOR-US: Siemens Sinema Server
NOTE: http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-321174.pdf
-CVE-2016-6494 [world-readable .dbshell history file]
- RESERVED
+CVE-2016-6494 (The client in MongoDB uses world-readable permissions on .dbshell ...)
{DLA-588-1}
- mongodb 1:2.6.12-3 (bug #832908)
NOTE: http://www.openwall.com/lists/oss-security/2016/07/29/4
@@ -6956,8 +6957,7 @@
RESERVED
CVE-2016-1000010
RESERVED
-CVE-2016-6905 [Out-Of-Bounds Read in function read_image_tga of gd_tga.c]
- RESERVED
+CVE-2016-6905 (The read_image_tga function in gd_tga.c in the GD Graphics Library ...)
{DSA-3619-1}
- libgd2 2.2.2-29-g3c2b605-1
[wheezy] - libgd2 <not-affected> (Vulnerable code not present)
@@ -6967,8 +6967,7 @@
NOTE: Fixed by: https://github.com/libgd/libgd/commit/3c2b605d72e8b080dace1d98a6e50b46c1d12186
NOTE: followed by: https://github.com/libgd/libgd/commit/01c61f8ab110a77ae64b5ca67c244c728c506f03
NOTE: http://www.openwall.com/lists/oss-security/2016/07/12/4
-CVE-2016-6352 [Write out-of-bounds]
- RESERVED
+CVE-2016-6352 (The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows ...)
- gdk-pixbuf <unfixed> (bug #832496)
[jessie] - gdk-pixbuf <no-dsa> (Minor issue, can be fixed along in a future DSA)
[wheezy] - gdk-pixbuf <not-affected> (Fails with ENOMEM, no crash)
@@ -8444,8 +8443,8 @@
{DSA-3627-1}
- phpmyadmin 4:4.6.3-1
[wheezy] - phpmyadmin <no-dsa> (Minor issue)
-CVE-2016-5700
- RESERVED
+CVE-2016-5700 (Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, ...)
+ TODO: check
CVE-2016-5698
RESERVED
CVE-2016-5697 [signature wrapping attack vulnerability]
@@ -9056,8 +9055,7 @@
CVE-2016-5434
RESERVED
NOT-FOR-US: libalpm (Arch Linux Package Management (ALPM) library)
-CVE-2016-5432
- RESERVED
+CVE-2016-5432 (The ovirt-engine-provisiondb utility in Red Hat Enterprise ...)
NOT-FOR-US: ovirt-engine
CVE-2016-5431
RESERVED
@@ -9218,8 +9216,7 @@
NOTE: CVE is assigned for the issue in PHP in adequate error handling in the
NOTE: bzread() function. Disputed by PHP upstream, which considers that the
NOTE: underlying bzip2 library is at fault.
-CVE-2016-5398
- RESERVED
+CVE-2016-5398 (Cross-site scripting (XSS) vulnerability in Business Process Editor in ...)
NOT-FOR-US: JBoss BPMS
CVE-2016-5397
RESERVED
@@ -10335,8 +10332,7 @@
RESERVED
CVE-2016-5181
RESERVED
-CVE-2016-5180 [c-ares: OOB write in ares_create_query and ares_mkquery]
- RESERVED
+CVE-2016-5180 (Heap-based buffer overflow in the ares_create_query function in c-ares ...)
{DSA-3682-1}
- c-ares 1.12.0-1 (medium; bug #839151)
NOTE: https://c-ares.haxx.se/adv_20160929.html
@@ -10898,8 +10894,7 @@
NOT-FOR-US: BIG-IP
CVE-2016-5020 (F5 BIG-IP before 12.0.0 HF3 allows remote authenticated users to ...)
NOT-FOR-US: BIG-IP
-CVE-2016-5019
- RESERVED
+CVE-2016-5019 (CoreResponseStateManager in Apache MyFaces Trinidad 1.0.0 through ...)
NOT-FOR-US: Apache MyFaces Trinidad
CVE-2016-5018
RESERVED
@@ -12926,8 +12921,7 @@
CVE-2016-4437 (Apache Shiro before 1.2.5, when a cipher key has not been configured ...)
- shiro 1.2.5-1 (bug #826653)
[jessie] - shiro <no-dsa> (Minor issue)
-CVE-2016-4436
- RESERVED
+CVE-2016-4436 (Apache Struts 2 before 2.3.29 and 2.5.x before 2.5.1 allow attackers ...)
- libstruts1.2-java <not-affected> (Only affects 2.0.0 to 2.3.28.1)
NOTE: https://struts.apache.org/docs/s2-035.html
CVE-2016-4435
@@ -15145,8 +15139,7 @@
[jessie] - cacti 0.8.8b+dfsg-8+deb8u5
NOTE: http://bugs.cacti.net/view.php?id=2673
NOTE: Requires authenticated user
-CVE-2016-3658 [Illegal read occurs in the TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c when using tiffset command]
- RESERVED
+CVE-2016-3658 (The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in ...)
- tiff <unfixed> (low)
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
@@ -15200,8 +15193,7 @@
RESERVED
CVE-2016-3635
RESERVED
-CVE-2016-3634 [Illegal read occurs in the tagCompare function in tif_dirinfo.c when using thumbnail command]
- RESERVED
+CVE-2016-3634 (The tagCompare function in tif_dirinfo.c in the thumbnail tool in ...)
- tiff <unfixed>
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
@@ -15210,8 +15202,7 @@
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2547
NOTE: Upstream will remove thumbnail from 4.0.7 release
NOTE: No patch available. Issue marked as wontfix by upstream.
-CVE-2016-3633 [Illegal read occurs in the _ setrow function in thumbnail]
- RESERVED
+CVE-2016-3633 (The setrow function in the thumbnail tool in LibTIFF 4.0.6 and earlier ...)
- tiff <unfixed>
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
@@ -15229,8 +15220,7 @@
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2549
NOTE: Upstream will remove thumbnail from 4.0.7 release
NOTE: No patch available. Issue marked as wontfix by upstream.
-CVE-2016-3631 [Illegal read in the cpStrips and cpTiles function]
- RESERVED
+CVE-2016-3631 (The (1) cpStrips and (2) cpTiles functions in the thumbmail tool in ...)
- tiff <unfixed> (bug #820366)
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
@@ -15249,39 +15239,34 @@
NOT-FOR-US: TIBCO
CVE-2016-3626
RESERVED
-CVE-2016-3625 [Out-of-bounds Read occurred in tif_read.c:545 or tif_read.c:402 or tif_read.c:560 in tiff2bw]
- RESERVED
+CVE-2016-3625 (tif_read.c in the tiff2bw tool in LibTIFF 4.0.6 and earlier allows ...)
- tiff <unfixed>
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
- tiff3 <removed>
[wheezy] - tiff3 <no-dsa> (Minor issue)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2566
-CVE-2016-3624 [Out-of-bounds Write occurred in function cvtClump in rgb2ycbcr]
- RESERVED
+CVE-2016-3624 (The cvtClump function in the rgb2ycbcr tool in LibTIFF 4.0.6 and ...)
- tiff <unfixed>
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
- tiff3 <not-affected> (tiff tools not built)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2568
NOTE: Upstream marked this duplicate of bug 2569
-CVE-2016-3623 [Divide By Zero in the rgb2ycbcr tool]
- RESERVED
+CVE-2016-3623 (The rgb2ycbcr tool in LibTIFF 4.0.6 and earlier allows remote ...)
{DLA-610-1}
- tiff <unfixed>
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
- tiff3 <removed>
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2569
-CVE-2016-3622 [Division by zero in fpAcc function]
- RESERVED
+CVE-2016-3622 (The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF ...)
- tiff <unfixed> (low; bug #820365)
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
- tiff3 <not-affected> (tiff tools not built)
NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/5
-CVE-2016-3621 [Out-of-bounds Read in the bmp2tiff tool]
- RESERVED
+CVE-2016-3621 (The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF ...)
- tiff <unfixed> (low; bug #820364)
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
@@ -15289,8 +15274,7 @@
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2565
NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/3
NOTE: Utility bmp2tiff has been removed from upstream LibTIFF
-CVE-2016-3620 [Out-of-bound read in ZIPEncode]
- RESERVED
+CVE-2016-3620 (The ZIPEncode function in tif_zip.c in the bmp2tiff tool in LibTIFF ...)
- tiff <unfixed> (low; bug #820363)
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
@@ -15298,8 +15282,7 @@
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2570
NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/2
NOTE: Utility bmp2tiff has been removed from upstream LibTIFF
-CVE-2016-3619 [Memory corruption in DumpModeEncode triggered by crafted bmp file]
- RESERVED
+CVE-2016-3619 (The DumpModeEncode function in tif_dumpmode.c in the bmp2tiff tool in ...)
- tiff <unfixed> (low; bug #820362)
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
@@ -22717,15 +22700,13 @@
TODO: check
CVE-2016-1373 (The gadgets-integration API in Cisco Finesse 8.5(1) through 8.5(5), ...)
TODO: check
-CVE-2016-1372
- RESERVED
+CVE-2016-1372 (ClamAV (aka Clam AntiVirus) before 0.99.2 allows remote attackers to ...)
{DLA-546-1}
- clamav 0.99.2+dfsg-1
[jessie] - clamav 0.99.2+dfsg-0+deb8u1
NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11514
NOTE: https://foxglovesecurity.com/2016/06/13/finding-pearls-fuzzing-clamav/
-CVE-2016-1371
- RESERVED
+CVE-2016-1371 (ClamAV (aka Clam AntiVirus) before 0.99.2 allows remote attackers to ...)
{DLA-546-1}
- clamav 0.99.2+dfsg-1
[jessie] - clamav 0.99.2+dfsg-0+deb8u1
@@ -23412,12 +23393,10 @@
NOTE: https://github.com/perl5-dbi/DBD-mysql/commit/7c164a0c86cec6ee95df1d141e67b0e85dfdefd2 (4.037)
CVE-2016-1245
RESERVED
-CVE-2016-1244 [execution of unsanitized input]
- RESERVED
+CVE-2016-1244 (The extractTree function in unADF allows remote attackers to execute ...)
{DSA-3676-1 DLA-631-1}
- unadf 0.7.11a-4 (bug #838248)
-CVE-2016-1243 [stack buffer overflow caused by blindly trusting on pathname lengths of archived files]
- RESERVED
+CVE-2016-1243 (Stack-based buffer overflow in the extractTree function in unADF ...)
{DSA-3676-1 DLA-631-1}
- unadf 0.7.11a-4 (bug #838248)
CVE-2016-1242 (file_open in Tryton before 3.2.17, 3.4.x before 3.4.14, 3.6.x before ...)
@@ -23427,8 +23406,7 @@
{DSA-3656-1}
- tryton-server 4.0.4-1
[wheezy] - tryton-server <not-affected> (password_hash field introduced in 3.2 series)
-CVE-2016-1240
- RESERVED
+CVE-2016-1240 (The Tomcat init script in the tomcat7 package before 7.0.56-3+deb8u4 ...)
{DSA-3670-1 DSA-3669-1 DLA-623-1 DLA-622-1}
- tomcat8 8.0.36-3
- tomcat7 7.0.70-3
@@ -28421,10 +28399,10 @@
NOT-FOR-US: Huawei
CVE-2015-8087 (Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software before ...)
NOT-FOR-US: Huawei
-CVE-2015-8086
- RESERVED
-CVE-2015-8085
- RESERVED
+CVE-2015-8086 (Huawei AR routers with software before V200R007C00SPC100; Quidway ...)
+ TODO: check
+CVE-2015-8085 (Huawei AR routers with software before V200R007C00SPC100; Quidway ...)
+ TODO: check
CVE-2015-8084 (Huawei USG5500, USG2100, USG2200, and USG5100 unified security ...)
NOT-FOR-US: Huawei
CVE-2015-8083 (An unspecified module in Huawei eSpace U1910, U1911, U1930, U1960, ...)
@@ -46683,8 +46661,8 @@
{DSA-3298-1}
- jackrabbit 2.10.1-1 (bug #787316)
NOTE: https://issues.apache.org/jira/browse/JCR-3883
-CVE-2015-1832
- RESERVED
+CVE-2015-1832 (XML external entity (XXE) vulnerability in the SqlXmlUtil code in ...)
+ TODO: check
CVE-2015-1831 (The default exclude patterns (excludeParams) in Apache Struts 2.3.20 ...)
- libstruts1.2-java <not-affected> (Affects only 2.3.20)
NOTE: https://struts.apache.org/docs/s2-024.html
@@ -60847,7 +60825,7 @@
NOT-FOR-US: Oracle E-Business Suite
CVE-2014-6470 (Unspecified vulnerability in Oracle Sun Solaris 11 allows local users ...)
NOT-FOR-US: Oracle Sun Solaris 11
-CVE-2014-6469 (Unspecified vulnerability in Oracle MySQL Server 5.5.39 and eariler ...)
+CVE-2014-6469 (Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier ...)
{DSA-3054-1}
- mysql-5.5 5.5.40-1
- mariadb-5.5 <removed>
@@ -86371,13 +86349,11 @@
CVE-2013-4120
RESERVED
NOT-FOR-US: Katello
-CVE-2013-4119
- RESERVED
+CVE-2013-4119 (FreeRDP before 1.1.0-beta+2013071101 allows remote attackers to cause ...)
- freerdp <not-affected> (The server part is not build)
NOTE: https://github.com/FreeRDP/FreeRDP/commit/0773bb9303d24473fe1185d85a424dfe159aff53
NOTE: Server disabled: option(WITH_SERVER "Build server binaries" OFF) in CMakeLists.txt
-CVE-2013-4118
- RESERVED
+CVE-2013-4118 (FreeRDP before 1.1.0-beta1 allows remote attackers to cause a denial ...)
- freerdp <not-affected> (The server part is not build)
NOTE: https://github.com/FreeRDP/FreeRDP/commit/7d58aac24fe20ffaad7bd9b40c9ddf457c1b06e7
NOTE: Server disabled: option(WITH_SERVER "Build server binaries" OFF) in CMakeLists.txt
More information about the Secure-testing-commits
mailing list