[Secure-testing-commits] r54757 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Tue Aug 15 09:10:14 UTC 2017 

Author: sectracker
Date: 2017-08-15 09:10:14 +0000 (Tue, 15 Aug 2017)
New Revision: 54757

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-15 08:12:22 UTC (rev 54756)
+++ data/CVE/list	2017-08-15 09:10:14 UTC (rev 54757)
@@ -1049,8 +1049,7 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/636
 	NOTE: ImageMagick-7: https://github.com/ImageMagick/ImageMagick/commit/e793eb203e5e0f91f5037aed6585e81b1e27395b
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/841f7b27dc88c685c61252d59b7e20e94c982456
-CVE-2017-12426 [Remote Command Execution in git client]
-	RESERVED
+CVE-2017-12426 (GitLab Community Edition (CE) and Enterprise Edition (EE) before ...)
 	- gitlab <unfixed> (bug #872190)
 	NOTE: https://gitlab.com/gitlab-org/gitlab-ce/issues/35212
 CVE-2017-12424 (In shadow before 4.5, the newusers tool could be made to manipulate ...)
@@ -22421,7 +22420,7 @@
 	NOT-FOR-US: Rapid7
 CVE-2017-5231 (All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 ...)
 	NOT-FOR-US: Rapid7
-CVE-2017-5230 (The Java keystore in all versions and editions of Rapid7 Nexpose is ...)
+CVE-2017-5230 (The Java keystore in all versions and editions of Rapid7 Nexpose prior ...)
 	NOT-FOR-US: Rapid7
 CVE-2017-5229 (All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 ...)
 	NOT-FOR-US: Rapid7
@@ -32270,8 +32269,8 @@
 	RESERVED
 CVE-2017-1470
 	RESERVED
-CVE-2017-1469
-	RESERVED
+CVE-2017-1469 (IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a ...)
+	TODO: check
 CVE-2017-1468 (IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a ...)
 	NOT-FOR-US: IBM
 CVE-2017-1467 (A network layer security vulnerability in InfoSphere Information ...)
@@ -32828,8 +32827,8 @@
 	NOT-FOR-US: IBM
 CVE-2017-1191
 	RESERVED
-CVE-2017-1190
-	RESERVED
+CVE-2017-1190 (IBM Emptoris Strategic Supply Management Platform 10.x and 10.1 could ...)
+	TODO: check
 CVE-2017-1189
 	RESERVED
 CVE-2017-1188
@@ -47278,8 +47277,8 @@
 	NOT-FOR-US: IBM
 CVE-2016-6030 (IBM Jazz Foundation is vulnerable to cross-site scripting. This ...)
 	NOT-FOR-US: IBM
-CVE-2016-6029
-	RESERVED
+CVE-2016-6029 (IBM Emptoris Strategic Supply Management Platform 10.0 and 10.1 could ...)
+	TODO: check
 CVE-2016-6028 (IBM Jazz technology based products might allow an attacker to view ...)
 	NOT-FOR-US: IBM
 CVE-2016-6027 (The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 ...)
@@ -47294,8 +47293,8 @@
 	NOT-FOR-US: IBM
 CVE-2016-6022 (IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 are vulnerable to ...)
 	NOT-FOR-US: IBM
-CVE-2016-6021
-	RESERVED
+CVE-2016-6021 (IBM Emptoris Strategic Supply Management Platform 10.0 and 10.1 is ...)
+	TODO: check
 CVE-2016-6020 (IBM Sterling B2B Integrator Standard Edition could allow a remote ...)
 	NOT-FOR-US: IBM
 CVE-2016-6019 (IBM Emptoris Strategic Supply Management Platform 10.0.0.x through ...)

More information about the Secure-testing-commits mailing list