[Secure-testing-commits] r44938 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Thu Sep 29 21:10:13 UTC 2016
Author: sectracker
Date: 2016-09-29 21:10:13 +0000 (Thu, 29 Sep 2016)
New Revision: 44938
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-29 19:36:12 UTC (rev 44937)
+++ data/CVE/list 2016-09-29 21:10:13 UTC (rev 44938)
@@ -1,3 +1,83 @@
+CVE-2016-8380
+ RESERVED
+CVE-2016-8379
+ RESERVED
+CVE-2016-8378
+ RESERVED
+CVE-2016-8377
+ RESERVED
+CVE-2016-8376
+ RESERVED
+CVE-2016-8375
+ RESERVED
+CVE-2016-8374
+ RESERVED
+CVE-2016-8373
+ RESERVED
+CVE-2016-8372
+ RESERVED
+CVE-2016-8371
+ RESERVED
+CVE-2016-8370
+ RESERVED
+CVE-2016-8369
+ RESERVED
+CVE-2016-8368
+ RESERVED
+CVE-2016-8367
+ RESERVED
+CVE-2016-8366
+ RESERVED
+CVE-2016-8365
+ RESERVED
+CVE-2016-8364
+ RESERVED
+CVE-2016-8363
+ RESERVED
+CVE-2016-8362
+ RESERVED
+CVE-2016-8361
+ RESERVED
+CVE-2016-8360
+ RESERVED
+CVE-2016-8359
+ RESERVED
+CVE-2016-8358
+ RESERVED
+CVE-2016-8357
+ RESERVED
+CVE-2016-8356
+ RESERVED
+CVE-2016-8355
+ RESERVED
+CVE-2016-8354
+ RESERVED
+CVE-2016-8353
+ RESERVED
+CVE-2016-8352
+ RESERVED
+CVE-2016-8351
+ RESERVED
+CVE-2016-8350
+ RESERVED
+CVE-2016-8349
+ RESERVED
+CVE-2016-8348
+ RESERVED
+CVE-2016-8347
+ RESERVED
+CVE-2016-8346
+ RESERVED
+CVE-2016-8345
+ RESERVED
+CVE-2016-8344
+ RESERVED
+CVE-2016-8343
+ RESERVED
+CVE-2016-8342
+ RESERVED
+CVE-2016-8341
+ RESERVED
CVE-2016-8340
RESERVED
CVE-2016-8339
@@ -2246,8 +2326,8 @@
RESERVED
CVE-2016-7569
RESERVED
-CVE-2016-7568
- RESERVED
+CVE-2016-7568 (Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD ...)
+ TODO: check
CVE-2016-7567
RESERVED
CVE-2016-7566
@@ -3069,8 +3149,8 @@
RESERVED
CVE-2016-7192
RESERVED
-CVE-2016-7191
- RESERVED
+CVE-2016-7191 (The Microsoft Azure Active Directory Passport (aka Passport-Azure-AD) ...)
+ TODO: check
CVE-2016-7190
RESERVED
CVE-2016-7189
@@ -3209,14 +3289,14 @@
NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=167d97a3def77ee2dbf6e908b0ecbfe2103977db
CVE-2016-7169 [a path traversal vulnerability in the upgrade package uploader]
RESERVED
- {DLA-633-1}
+ {DSA-3681-1 DLA-633-1}
- wordpress 4.6.1+dfsg-1
NOTE: https://wordpress.org/news/2016/09/wordpress-4-6-1-security-and-maintenance-release/
NOTE: Fixed in 4.6.1 release upstream
NOTE: Fixed by: https://core.trac.wordpress.org/changeset/38524
CVE-2016-7168 [a cross-site scripting vulnerability via image filename]
RESERVED
- {DLA-633-1}
+ {DSA-3681-1 DLA-633-1}
- wordpress 4.6.1+dfsg-1
NOTE: https://wordpress.org/news/2016/09/wordpress-4-6-1-security-and-maintenance-release/
NOTE: Fixed in 4.6.1 release upstream
@@ -3582,8 +3662,8 @@
{DSA-3663-1 DLA-614-1}
- xen <unfixed>
NOTE: http://xenbits.xen.org/xsa/advisory-185.html
-CVE-2016-7090
- RESERVED
+CVE-2016-7090 (The integrated web server on Siemens SCALANCE M-800 and S615 modules ...)
+ TODO: check
CVE-2016-7098 (Race condition in wget 1.17 and earlier, when used in recursive or ...)
- wget <unfixed> (low; bug #836503)
[jessie] - wget <no-dsa> (Minor issue)
@@ -4733,12 +4813,12 @@
RESERVED
- matrixssl <removed>
CVE-2016-6635 (Cross-site request forgery (CSRF) vulnerability in the ...)
- {DLA-633-1}
+ {DSA-3681-1 DLA-633-1}
- wordpress 4.5+dfsg-1
NOTE: https://github.com/WordPress/WordPress/commit/9b7a7754133c50b82bd9d976fb5b24094f658aab
NOTE: Fixed by: https://core.trac.wordpress.org/changeset/37143
CVE-2016-6634 (Cross-site scripting (XSS) vulnerability in the network settings page ...)
- {DLA-633-1}
+ {DSA-3681-1 DLA-633-1}
- wordpress 4.5+dfsg-1
NOTE: http://codex.wordpress.org/Version_4.5
NOTE: Fixed by: https://core.trac.wordpress.org/changeset/37124
@@ -10124,8 +10204,8 @@
RESERVED
CVE-2016-5177
RESERVED
-CVE-2016-5176
- RESERVED
+CVE-2016-5176 (Google Chrome before 53.0.2785.113 allows remote attackers to bypass ...)
+ TODO: check
CVE-2016-5175 (Multiple unspecified vulnerabilities in Google Chrome before ...)
{DSA-3667-1}
- chromium-browser 53.0.2785.113-1
@@ -10614,10 +10694,10 @@
RESERVED
CVE-2016-5063
RESERVED
-CVE-2016-5062
- RESERVED
-CVE-2016-5061
- RESERVED
+CVE-2016-5062 (The web server in Aternity 9 and earlier does not require ...)
+ TODO: check
+CVE-2016-5061 (Multiple cross-site scripting (XSS) vulnerabilities in the web server ...)
+ TODO: check
CVE-2016-5060
RESERVED
CVE-2016-5059
@@ -13784,7 +13864,7 @@
CVE-2016-4030
RESERVED
CVE-2016-4029 (WordPress before 4.5 does not consider octal and hexadecimal IP ...)
- {DLA-633-1}
+ {DSA-3681-1 DLA-633-1}
- wordpress 4.5+dfsg-1
NOTE: Fixed by: https://core.trac.wordpress.org/changeset/37115
NOTE: Fixed by: https://github.com/WordPress/WordPress/commit/af9f0520875eda686fd13a427fd3914d7aded049
More information about the Secure-testing-commits
mailing list