[Secure-testing-commits] r54668 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sat Aug 12 09:10:21 UTC 2017 

Author: sectracker
Date: 2017-08-12 09:10:21 +0000 (Sat, 12 Aug 2017)
New Revision: 54668

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-12 07:37:02 UTC (rev 54667)
+++ data/CVE/list	2017-08-12 09:10:21 UTC (rev 54668)
@@ -6375,8 +6375,7 @@
 	RESERVED
 CVE-2017-9801 (When a call-site passes a subject for an email that contains ...)
 	NOT-FOR-US: Apache commons email
-CVE-2017-9800 [Arbitrary code execution on clients through malicious svn+ssh URLs in svn:externals and svn:sync-from-url]
-	RESERVED
+CVE-2017-9800 (A maliciously constructed svn+ssh:// URL would cause Subversion ...)
 	{DSA-3932-1 DLA-1052-1}
 	- subversion 1.9.7-1
 	NOTE: Fixed by: http://svn.apache.org/viewvc?view=revision&sortby=rev&revision=1804691
@@ -13678,7 +13677,7 @@
 	RESERVED
 CVE-2017-7809
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7808
@@ -13686,7 +13685,7 @@
 	- firefox 55.0-1
 CVE-2017-7807
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7806
@@ -13700,22 +13699,22 @@
 	- firefox-esr <not-affected> (Windows-specific)
 CVE-2017-7803
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7802
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7801
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7800
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7799
@@ -13723,7 +13722,7 @@
 	- firefox 55.0-1
 CVE-2017-7798
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7797
@@ -13741,12 +13740,12 @@
 	RESERVED
 CVE-2017-7792
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7791
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7790
@@ -13761,22 +13760,22 @@
 	- firefox 55.0-1
 CVE-2017-7787
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7786
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7785
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7784
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7783
@@ -13794,7 +13793,7 @@
 	- firefox 55.0-1
 CVE-2017-7779
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7778
@@ -13978,7 +13977,7 @@
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2017-17/#CVE-2017-7754
 CVE-2017-7753
 	RESERVED
-	{DSA-3928-1}
+	{DSA-3928-1 DLA-1053-1}
 	- firefox 55.0-1
 	- firefox-esr 52.3.0esr-1
 CVE-2017-7752
@@ -29163,10 +29162,12 @@
 	RESERVED
 CVE-2017-2825
 	RESERVED
+	{DSA-3937-1}
 	- zabbix 1:3.0.7+dfsg-3 (bug #863584)
 	NOTE: http://www.talosintelligence.com/reports/TALOS-2017-0326/
 	NOTE: https://support.zabbix.com/browse/ZBX-12075
 CVE-2017-2824 (An exploitable code execution vulnerability exists in the trapper ...)
+	{DSA-3937-1}
 	- zabbix 1:3.0.7+dfsg-3 (bug #863584)
 	NOTE: http://www.talosintelligence.com/reports/TALOS-2017-0325/
 	NOTE: https://support.zabbix.com/browse/ZBX-12075
@@ -80941,12 +80942,12 @@
 	RESERVED
 CVE-2015-3617
 	RESERVED
-CVE-2015-3616
-	RESERVED
-CVE-2015-3615
-	RESERVED
-CVE-2015-3614
-	RESERVED
+CVE-2015-3616 (SQL injection vulnerability in Fortinet FortiManager 5.0.x before ...)
+	TODO: check
+CVE-2015-3615 (Cross-site scripting (XSS) vulnerability in Fortinet FortiManager ...)
+	TODO: check
+CVE-2015-3614 (Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows ...)
+	TODO: check
 CVE-2015-3613
 	RESERVED
 CVE-2015-3612
@@ -82412,8 +82413,7 @@
 	NOT-FOR-US: PicketLink
 CVE-2015-3157
 	REJECTED
-CVE-2015-3156 [multiple insecure /tmp file usage issues]
-	RESERVED
+CVE-2015-3156 (The _write_config function in ...)
 	- openstack-trove <unfixed> (unimportant; bug #787654)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1216073#c1
 	NOTE: partially fixed already in 2015.1~rc2-1, cf. #787654
@@ -86613,8 +86613,7 @@
 	RESERVED
 CVE-2015-1784
 	RESERVED
-CVE-2015-1783 [use of uninitialized value leading to a crash]
-	RESERVED
+CVE-2015-1783 (The prefex variable in the get_or_define_ns function in Lasso before ...)
 	- lasso 2.4.1-1
 	[wheezy] - lasso <not-affected> (Vulnerable code introduced later)
 	[squeeze] - lasso <not-affected> (Vulnerable code introduced later)

More information about the Secure-testing-commits mailing list