[Secure-testing-commits] r58449 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Mon Dec 11 09:10:18 UTC 2017


Author: sectracker
Date: 2017-12-11 09:10:18 +0000 (Mon, 11 Dec 2017)
New Revision: 58449

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-11 06:45:47 UTC (rev 58448)
+++ data/CVE/list	2017-12-11 09:10:18 UTC (rev 58449)
@@ -1,3 +1,127 @@
+CVE-2018-1350
+	RESERVED
+CVE-2018-1349
+	RESERVED
+CVE-2018-1348
+	RESERVED
+CVE-2018-1347
+	RESERVED
+CVE-2018-1346
+	RESERVED
+CVE-2018-1345
+	RESERVED
+CVE-2018-1344
+	RESERVED
+CVE-2018-1343
+	RESERVED
+CVE-2018-1342
+	RESERVED
+CVE-2018-1341
+	RESERVED
+CVE-2017-17536 (Phabricator before 2017-11-10 does not block the --config and ...)
+	TODO: check
+CVE-2017-17535
+	RESERVED
+CVE-2017-17534
+	RESERVED
+CVE-2017-17533
+	RESERVED
+CVE-2017-17532
+	RESERVED
+CVE-2017-17531
+	RESERVED
+CVE-2017-17530
+	RESERVED
+CVE-2017-17529
+	RESERVED
+CVE-2017-17528
+	RESERVED
+CVE-2017-17527
+	RESERVED
+CVE-2017-17526
+	RESERVED
+CVE-2017-17525
+	RESERVED
+CVE-2017-17524
+	RESERVED
+CVE-2017-17523 (lilypond-invoke-editor in LilyPond 2.19.80 does not validate strings ...)
+	TODO: check
+CVE-2017-17522
+	RESERVED
+CVE-2017-17521
+	RESERVED
+CVE-2017-17520
+	RESERVED
+CVE-2017-17519
+	RESERVED
+CVE-2017-17518
+	RESERVED
+CVE-2017-17517
+	RESERVED
+CVE-2017-17516
+	RESERVED
+CVE-2017-17515
+	RESERVED
+CVE-2017-17514
+	RESERVED
+CVE-2017-17513
+	RESERVED
+CVE-2017-17512 (sensible-browser in sensible-utils before 0.0.11 does not validate ...)
+	TODO: check
+CVE-2017-17511
+	RESERVED
+CVE-2017-17510
+	RESERVED
+CVE-2017-17509 (In HDF5 1.10.1, there is an out of bounds write vulnerability in the ...)
+	TODO: check
+CVE-2017-17508 (In HDF5 1.10.1, there is a divide-by-zero vulnerability in the function ...)
+	TODO: check
+CVE-2017-17507 (In HDF5 1.10.1, there is an out of bounds read vulnerability in the ...)
+	TODO: check
+CVE-2017-17506 (In HDF5 1.10.1, there is an out of bounds read vulnerability in the ...)
+	TODO: check
+CVE-2017-17505 (In HDF5 1.10.1, there is a NULL pointer dereference in the function ...)
+	TODO: check
+CVE-2017-17504 (ImageMagick before 7.0.7-12 has a coders/png.c ...)
+	TODO: check
+CVE-2017-17503 (ReadGRAYImage in coders/gray.c in GraphicsMagick 1.3.26 has a ...)
+	TODO: check
+CVE-2017-17502 (ReadCMYKImage in coders/cmyk.c in GraphicsMagick 1.3.26 has a ...)
+	TODO: check
+CVE-2017-17501 (WriteOnePNGImage in coders/png.c in GraphicsMagick 1.3.26 has a ...)
+	TODO: check
+CVE-2017-17500 (ReadRGBImage in coders/rgb.c in GraphicsMagick 1.3.26 has a ...)
+	TODO: check
+CVE-2017-17499 (ImageMagick before 6.9.9-24 and 7.x before 7.0.7-12 has a ...)
+	TODO: check
+CVE-2017-17498 (WritePNMImage in coders/pnm.c in GraphicsMagick 1.3.26 allows remote ...)
+	TODO: check
+CVE-2017-17497 (In Tidy 5.7.0, the prvTidyTidyMetaCharset function in clean.c allows ...)
+	TODO: check
+CVE-2017-17496 (The socket_create function in socket.c in idevicerestore through ...)
+	TODO: check
+CVE-2017-17495
+	RESERVED
+CVE-2017-17494
+	RESERVED
+CVE-2017-17493
+	RESERVED
+CVE-2017-17492
+	RESERVED
+CVE-2017-17491
+	RESERVED
+CVE-2017-17490
+	RESERVED
+CVE-2017-17489
+	RESERVED
+CVE-2017-17488
+	RESERVED
+CVE-2017-17487
+	RESERVED
+CVE-2017-17486
+	RESERVED
+CVE-2017-17485
+	RESERVED
 CVE-2017-17484 (The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp in International ...)
 	[experimental] - icu 60.2-1
 	- icu <unfixed>
@@ -4721,8 +4845,8 @@
 	RESERVED
 CVE-2017-16790
 	RESERVED
-CVE-2017-16789
-	RESERVED
+CVE-2017-16789 (Cross-site scripting (XSS) vulnerability in Integration Matters nJAMS ...)
+	TODO: check
 CVE-2017-16788
 	RESERVED
 CVE-2017-16787
@@ -20221,8 +20345,8 @@
 	NOTE: Non-issue since ACPI tables are trusted
 CVE-2017-11466 (Arbitrary file upload vulnerability in ...)
 	NOT-FOR-US: dotCMS
-CVE-2017-11463
-	RESERVED
+CVE-2017-11463 (In LANDESK Management Suite 2016.4 and 2017.x, an Unrestricted Direct ...)
+	TODO: check
 CVE-2017-11462 (Double free vulnerability in MIT Kerberos 5 (aka krb5) allows ...)
 	- krb5 1.15.2-1 (low; bug #873563)
 	[stretch] - krb5 <ignored> (Minor issue, might lead to behaviour changes)
@@ -30975,7 +31099,7 @@
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2017-27/#CVE-2017-7844
 CVE-2017-7843
 	RESERVED
-	{DLA-1202-1}
+	{DSA-4062-1 DLA-1202-1}
 	- firefox 57.0.1-1
 	- firefox-esr 52.5.2esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2017-27/#CVE-2017-7843
@@ -31029,7 +31153,7 @@
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2017-24/#CVE-2017-7831
 CVE-2017-7830
 	RESERVED
-	{DSA-4035-1 DLA-1199-1 DLA-1172-1}
+	{DSA-4061-1 DSA-4035-1 DLA-1199-1 DLA-1172-1}
 	- firefox 57.0-1
 	- firefox-esr 52.5.0esr-1
 	- thunderbird 1:52.5.0-1
@@ -31040,7 +31164,7 @@
 	RESERVED
 CVE-2017-7828
 	RESERVED
-	{DSA-4035-1 DLA-1199-1 DLA-1172-1}
+	{DSA-4061-1 DSA-4035-1 DLA-1199-1 DLA-1172-1}
 	- firefox 57.0-1
 	- firefox-esr 52.5.0esr-1
 	- thunderbird 1:52.5.0-1
@@ -31053,7 +31177,7 @@
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2017-24/#CVE-2017-7827
 CVE-2017-7826
 	RESERVED
-	{DSA-4035-1 DLA-1199-1 DLA-1172-1}
+	{DSA-4061-1 DSA-4035-1 DLA-1199-1 DLA-1172-1}
 	- firefox 57.0-1
 	- firefox-esr 52.5.0esr-1
 	- thunderbird 1:52.5.0-1




More information about the Secure-testing-commits mailing list