[Secure-testing-commits] r50771 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Tue Apr 18 21:10:14 UTC 2017
Author: sectracker
Date: 2017-04-18 21:10:14 +0000 (Tue, 18 Apr 2017)
New Revision: 50771
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-18 21:09:45 UTC (rev 50770)
+++ data/CVE/list 2017-04-18 21:10:14 UTC (rev 50771)
@@ -1,3 +1,231 @@
+CVE-2017-7946 (The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 ...)
+ TODO: check
+CVE-2017-7945
+ RESERVED
+CVE-2017-7944
+ RESERVED
+CVE-2017-7943 (The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote ...)
+ TODO: check
+CVE-2017-7942 (The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote ...)
+ TODO: check
+CVE-2017-7941 (The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote ...)
+ TODO: check
+CVE-2017-7940 (The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ...)
+ TODO: check
+CVE-2017-7939 (The read_next_pam_token function in imagew-pnm.c in libimageworsener.a ...)
+ TODO: check
+CVE-2017-7938
+ RESERVED
+CVE-2017-7937
+ RESERVED
+CVE-2017-7936
+ RESERVED
+CVE-2017-7935
+ RESERVED
+CVE-2017-7934
+ RESERVED
+CVE-2017-7933
+ RESERVED
+CVE-2017-7932
+ RESERVED
+CVE-2017-7931
+ RESERVED
+CVE-2017-7930
+ RESERVED
+CVE-2017-7929
+ RESERVED
+CVE-2017-7928
+ RESERVED
+CVE-2017-7927
+ RESERVED
+CVE-2017-7926
+ RESERVED
+CVE-2017-7925
+ RESERVED
+CVE-2017-7924
+ RESERVED
+CVE-2017-7923
+ RESERVED
+CVE-2017-7922
+ RESERVED
+CVE-2017-7921
+ RESERVED
+CVE-2017-7920
+ RESERVED
+CVE-2017-7919
+ RESERVED
+CVE-2017-7918
+ RESERVED
+CVE-2017-7917
+ RESERVED
+CVE-2017-7916
+ RESERVED
+CVE-2017-7915
+ RESERVED
+CVE-2017-7914
+ RESERVED
+CVE-2017-7913
+ RESERVED
+CVE-2017-7912
+ RESERVED
+CVE-2017-7911
+ RESERVED
+CVE-2017-7910
+ RESERVED
+CVE-2017-7909
+ RESERVED
+CVE-2017-7908
+ RESERVED
+CVE-2017-7907
+ RESERVED
+CVE-2017-7906
+ RESERVED
+CVE-2017-7905
+ RESERVED
+CVE-2017-7904
+ RESERVED
+CVE-2017-7903
+ RESERVED
+CVE-2017-7902
+ RESERVED
+CVE-2017-7901
+ RESERVED
+CVE-2017-7900
+ RESERVED
+CVE-2017-7899
+ RESERVED
+CVE-2017-7898
+ RESERVED
+CVE-2017-7897 (A cross-site scripting (XSS) vulnerability in the MantisBT (2.3.x ...)
+ TODO: check
+CVE-2017-7896 (Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) 9.1 ...)
+ TODO: check
+CVE-2017-7895
+ RESERVED
+CVE-2016-10345 (In Phusion Passenger before 5.1.0, a known /tmp filename was used ...)
+ TODO: check
+CVE-2016-10344
+ RESERVED
+CVE-2016-10343
+ RESERVED
+CVE-2016-10342
+ RESERVED
+CVE-2016-10341
+ RESERVED
+CVE-2016-10340
+ RESERVED
+CVE-2016-10339
+ RESERVED
+CVE-2016-10338
+ RESERVED
+CVE-2016-10337
+ RESERVED
+CVE-2016-10336
+ RESERVED
+CVE-2016-10335
+ RESERVED
+CVE-2016-10334
+ RESERVED
+CVE-2016-10333
+ RESERVED
+CVE-2016-10332
+ RESERVED
+CVE-2016-10331
+ RESERVED
+CVE-2016-10330
+ RESERVED
+CVE-2016-10329
+ RESERVED
+CVE-2015-9054
+ RESERVED
+CVE-2015-9053
+ RESERVED
+CVE-2015-9052
+ RESERVED
+CVE-2015-9051
+ RESERVED
+CVE-2015-9050
+ RESERVED
+CVE-2015-9049
+ RESERVED
+CVE-2015-9048
+ RESERVED
+CVE-2015-9047
+ RESERVED
+CVE-2015-9046
+ RESERVED
+CVE-2015-9045
+ RESERVED
+CVE-2015-9044
+ RESERVED
+CVE-2015-9043
+ RESERVED
+CVE-2015-9042
+ RESERVED
+CVE-2015-9041
+ RESERVED
+CVE-2015-9040
+ RESERVED
+CVE-2015-9039
+ RESERVED
+CVE-2015-9038
+ RESERVED
+CVE-2015-9037
+ RESERVED
+CVE-2015-9036
+ RESERVED
+CVE-2015-9035
+ RESERVED
+CVE-2015-9034
+ RESERVED
+CVE-2015-9033
+ RESERVED
+CVE-2015-9032
+ RESERVED
+CVE-2015-9031
+ RESERVED
+CVE-2015-9030
+ RESERVED
+CVE-2015-9029
+ RESERVED
+CVE-2015-9028
+ RESERVED
+CVE-2015-9027
+ RESERVED
+CVE-2015-9026
+ RESERVED
+CVE-2015-9025
+ RESERVED
+CVE-2015-9024
+ RESERVED
+CVE-2015-9023
+ RESERVED
+CVE-2015-9022
+ RESERVED
+CVE-2015-9021
+ RESERVED
+CVE-2015-9020
+ RESERVED
+CVE-2014-9969
+ RESERVED
+CVE-2014-9968
+ RESERVED
+CVE-2014-9967
+ RESERVED
+CVE-2014-9966
+ RESERVED
+CVE-2014-9965
+ RESERVED
+CVE-2014-9964
+ RESERVED
+CVE-2014-9963
+ RESERVED
+CVE-2014-9962
+ RESERVED
+CVE-2014-9961
+ RESERVED
+CVE-2014-9960
+ RESERVED
CVE-2017-7894
RESERVED
CVE-2017-7893
@@ -628,8 +856,8 @@
NOT-FOR-US: SolarWinds
CVE-2017-7646 (SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4 allows an ...)
NOT-FOR-US: SolarWinds
-CVE-2017-7645
- RESERVED
+CVE-2017-7645 (The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel ...)
+ TODO: check
CVE-2017-7644
RESERVED
CVE-2017-7643 (Proxifier for Mac before 2.19 allows local users to gain privileges ...)
@@ -809,10 +1037,12 @@
[wheezy] - asterisk <not-affected> (Vulnerable code not present)
NOTE: http://downloads.asterisk.org/pub/security/AST-2017-001.html
CVE-2017-7619 (In ImageMagick 7.0.4-9, an infinite loop can occur because of a ...)
+ {DLA-902-1}
- imagemagick 8:6.9.7.4+dfsg-4 (bug #859769)
NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31506
NOTE: Fixed by: http://git.imagemagick.org/repos/ImageMagick/commit/63757068c803f692bd70304b06ce3406e0b67c7f
CVE-2017-7606 (coders/rle.c in ImageMagick 7.0.5-4 has an "outside the range of ...)
+ {DLA-902-1}
- imagemagick 8:6.9.7.4+dfsg-4 (bug #859771)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/415
NOTE: https://blogs.gentoo.org/ago/2017/04/02/imagemagick-undefined-behavior-in-codersrle-c/
@@ -6336,12 +6566,10 @@
RESERVED
CVE-2017-5663
RESERVED
-CVE-2017-5662 [information disclosure vulnerability]
- RESERVED
+CVE-2017-5662 (In Apache Batik before 1.9, files lying on the filesystem of the ...)
- batik <unfixed> (bug #860566)
NOTE: http://www.openwall.com/lists/oss-security/2017/04/18/1
-CVE-2017-5661 [information disclosure vulnerability]
- RESERVED
+CVE-2017-5661 (In Apache FOP before 2.2, files lying on the filesystem of the server ...)
- fop <unfixed> (bug #860567)
NOTE: http://www.openwall.com/lists/oss-security/2017/04/18/2
CVE-2017-5660
@@ -6354,15 +6582,13 @@
RESERVED
CVE-2017-5657
RESERVED
-CVE-2017-5656
- RESERVED
+CVE-2017-5656 (Apache CXF's STSClient before 3.1.11 and 3.0.13 uses a flawed way of ...)
NOT-FOR-US: Apache CXF
CVE-2017-5655
RESERVED
CVE-2017-5654
RESERVED
-CVE-2017-5653
- RESERVED
+CVE-2017-5653 (JAX-RS XML Security streaming clients in Apache CXF before 3.1.11 and ...)
NOT-FOR-US: Apache CXF
CVE-2017-5652
RESERVED
More information about the Secure-testing-commits
mailing list