[Secure-testing-commits] r54368 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Sun Aug 6 21:10:15 UTC 2017
Author: sectracker
Date: 2017-08-06 21:10:15 +0000 (Sun, 06 Aug 2017)
New Revision: 54368
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-06 19:18:37 UTC (rev 54367)
+++ data/CVE/list 2017-08-06 21:10:15 UTC (rev 54368)
@@ -1,4 +1,18 @@
-CVE-2017-12587 [avoid unbounded loop in pwp coder]
+CVE-2017-12594
+ RESERVED
+CVE-2017-12593
+ RESERVED
+CVE-2017-12592
+ RESERVED
+CVE-2017-12591
+ RESERVED
+CVE-2017-12590
+ RESERVED
+CVE-2017-12589
+ RESERVED
+CVE-2017-12588 (The zmq3 input and output modules in rsyslog before 8.28.0 interpreted ...)
+ TODO: check
+CVE-2017-12587 (ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage ...)
- imagemagick 8:6.9.7.4+dfsg-16 (bug #870526)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/535
NOTE: https://github.com/ImageMagick/ImageMagick/commit/bb5b16c512977e8134701063e0adb05a4a342add
@@ -4951,8 +4965,8 @@
- piwigo <removed>
CVE-2017-10678 (Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 ...)
- piwigo <removed>
-CVE-2017-10677
- RESERVED
+CVE-2017-10677 (Cross-Site Request Forgery (CSRF) exists on Linksys EA4500 devices with ...)
+ TODO: check
CVE-2017-10676 (On D-Link DIR-600M devices before C1_v3.05ENB01_beta_20170306, XSS was ...)
NOT-FOR-US: D-Link
CVE-2017-10675
More information about the Secure-testing-commits
mailing list