[Secure-testing-commits] r54415 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Tue Aug 8 09:10:14 UTC 2017 

Author: sectracker
Date: 2017-08-08 09:10:14 +0000 (Tue, 08 Aug 2017)
New Revision: 54415

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-08 06:31:38 UTC (rev 54414)
+++ data/CVE/list	2017-08-08 09:10:14 UTC (rev 54415)
@@ -1,3 +1,37 @@
+CVE-2017-12678 (In TagLib 1.11.1, the rebuildAggregateFrames function in ...)
+	TODO: check
+CVE-2017-12677 (IdentityServer3 2.4.x, 2.5.x, and 2.6.x before 2.6.1 has XSS in an ...)
+	TODO: check
+CVE-2017-12676 (In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the ...)
+	TODO: check
+CVE-2017-12675 (In ImageMagick 7.0.6-3, a missing check for multidimensional data was ...)
+	TODO: check
+CVE-2017-12674 (In ImageMagick 7.0.6-2, a CPU exhaustion vulnerability was found in the ...)
+	TODO: check
+CVE-2017-12673 (In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the ...)
+	TODO: check
+CVE-2017-12672 (In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the ...)
+	TODO: check
+CVE-2017-12671 (In ImageMagick 7.0.6-3, a missing NULL assignment was found in ...)
+	TODO: check
+CVE-2017-12670 (In ImageMagick 7.0.6-3, missing validation was found in coders/mat.c, ...)
+	TODO: check
+CVE-2017-12669 (ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteCALSImage ...)
+	TODO: check
+CVE-2017-12668 (ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePCXImage in ...)
+	TODO: check
+CVE-2017-12667 (ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMATImage in ...)
+	TODO: check
+CVE-2017-12666 (ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteINLINEImage ...)
+	TODO: check
+CVE-2017-12665 (ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePICTImage ...)
+	TODO: check
+CVE-2017-12664 (ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePALMImage ...)
+	TODO: check
+CVE-2017-12663 (ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMAPImage in ...)
+	TODO: check
+CVE-2017-12662 (ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePDFImage in ...)
+	TODO: check
 CVE-2017-12661
 	RESERVED
 CVE-2017-12660
@@ -1987,7 +2021,7 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/596
 CVE-2017-XXXX [out-of-bounds read with the MNG CLIP chunk]
 	- imagemagick 8:6.9.7.4+dfsg-15 (bug #870109)
-CVE-2017-12643 [memory exhaustion in ReadOneJNGImage in png.c]
+CVE-2017-12643 (ImageMagick 7.0.6-1 has a memory exhaustion vulnerability in ...)
 	- imagemagick 8:6.9.7.4+dfsg-15 (bug #870107)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/549
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/9eedb5660f1704cde8e8cd784c5c2a09dd2fd60f
@@ -5474,16 +5508,16 @@
 	RESERVED
 CVE-2017-9943
 	RESERVED
-CVE-2017-9942
-	RESERVED
-CVE-2017-9941
-	RESERVED
-CVE-2017-9940
-	RESERVED
-CVE-2017-9939
-	RESERVED
-CVE-2017-9938
-	RESERVED
+CVE-2017-9942 (A vulnerability was discovered in Siemens SiPass integrated (All ...)
+	TODO: check
+CVE-2017-9941 (A vulnerability was discovered in Siemens SiPass integrated (All ...)
+	TODO: check
+CVE-2017-9940 (A vulnerability was discovered in Siemens SiPass integrated (All ...)
+	TODO: check
+CVE-2017-9939 (A vulnerability was discovered in Siemens SiPass integrated (All ...)
+	TODO: check
+CVE-2017-9938 (A vulnerability was discovered in Siemens SIMATIC Logon (All versions ...)
+	TODO: check
 CVE-2017-9937 (In LibTIFF 4.0.8, there is a memory malloc failure in tif_jbig.c. A ...)
 	- jbigkit <unfixed> (bug #869708)
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2707
@@ -16283,22 +16317,22 @@
 	[jessie] - linux <not-affected> (Vulnerable code introduced later)
 	[wheezy] - linux <not-affected> (Vulnerable code introduced later)
 	NOTE: Fixed by: https://git.kernel.org/linus/040757f738e13caaa9c5078bca79aa97e11dde88
-CVE-2017-6873
-	RESERVED
-CVE-2017-6872
-	RESERVED
-CVE-2017-6871
-	RESERVED
-CVE-2017-6870
-	RESERVED
-CVE-2017-6869
-	RESERVED
+CVE-2017-6873 (A vulnerability was discovered in Siemens OZW672 (all versions) and ...)
+	TODO: check
+CVE-2017-6872 (A vulnerability was discovered in Siemens OZW672 (all versions) and ...)
+	TODO: check
+CVE-2017-6871 (A vulnerability was discovered in Siemens SIMATIC WinCC Sm at rtClient for ...)
+	TODO: check
+CVE-2017-6870 (A vulnerability was discovered in Siemens SIMATIC WinCC Sm at rtClient for ...)
+	TODO: check
+CVE-2017-6869 (A vulnerability was discovered in Siemens ViewPort for Web Office ...)
+	TODO: check
 CVE-2017-6868 (An Improper Authentication issue was discovered in Siemens SIMATIC CP ...)
 	NOT-FOR-US: Siemens
 CVE-2017-6867 (A vulnerability was discovered in Siemens SIMATIC WinCC (V7.3 before ...)
 	NOT-FOR-US: Siemens
-CVE-2017-6866
-	RESERVED
+CVE-2017-6866 (A vulnerability was discovered in Siemens XHQ server 4 and 5 (4 before ...)
+	TODO: check
 CVE-2017-6865 (Siemens SIMATIC WinCC (TIA Portal) (V13 all versions before SP2 and ...)
 	NOT-FOR-US: Siemens
 CVE-2017-6864 (The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at ...)

More information about the Secure-testing-commits mailing list