[Secure-testing-commits] r58716 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Wed Dec 20 09:10:13 UTC 2017
Author: sectracker
Date: 2017-12-20 09:10:13 +0000 (Wed, 20 Dec 2017)
New Revision: 58716
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-20 05:56:12 UTC (rev 58715)
+++ data/CVE/list 2017-12-20 09:10:13 UTC (rev 58716)
@@ -1,3 +1,159 @@
+CVE-2018-3599
+ RESERVED
+CVE-2018-3598
+ RESERVED
+CVE-2018-3597
+ RESERVED
+CVE-2018-3596
+ RESERVED
+CVE-2018-3595
+ RESERVED
+CVE-2018-3594
+ RESERVED
+CVE-2018-3593
+ RESERVED
+CVE-2018-3592
+ RESERVED
+CVE-2018-3591
+ RESERVED
+CVE-2018-3590
+ RESERVED
+CVE-2018-3589
+ RESERVED
+CVE-2018-3588
+ RESERVED
+CVE-2018-3587
+ RESERVED
+CVE-2018-3586
+ RESERVED
+CVE-2018-3585
+ RESERVED
+CVE-2018-3584
+ RESERVED
+CVE-2018-3583
+ RESERVED
+CVE-2018-3582
+ RESERVED
+CVE-2018-3581
+ RESERVED
+CVE-2018-3580
+ RESERVED
+CVE-2018-3579
+ RESERVED
+CVE-2018-3578
+ RESERVED
+CVE-2018-3577
+ RESERVED
+CVE-2018-3576
+ RESERVED
+CVE-2018-3575
+ RESERVED
+CVE-2018-3574
+ RESERVED
+CVE-2018-3573
+ RESERVED
+CVE-2018-3572
+ RESERVED
+CVE-2018-3571
+ RESERVED
+CVE-2018-3570
+ RESERVED
+CVE-2018-3569
+ RESERVED
+CVE-2018-3568
+ RESERVED
+CVE-2018-3567
+ RESERVED
+CVE-2018-3566
+ RESERVED
+CVE-2018-3565
+ RESERVED
+CVE-2018-3564
+ RESERVED
+CVE-2018-3563
+ RESERVED
+CVE-2018-3562
+ RESERVED
+CVE-2018-3561
+ RESERVED
+CVE-2018-3560
+ RESERVED
+CVE-2017-17804
+ RESERVED
+CVE-2017-17803
+ RESERVED
+CVE-2017-17802
+ RESERVED
+CVE-2017-17801
+ RESERVED
+CVE-2017-17800
+ RESERVED
+CVE-2017-17799
+ RESERVED
+CVE-2017-17798
+ RESERVED
+CVE-2017-17797
+ RESERVED
+CVE-2017-17796
+ RESERVED
+CVE-2017-17795
+ RESERVED
+CVE-2017-17794
+ RESERVED
+CVE-2017-17793
+ RESERVED
+CVE-2017-17792
+ RESERVED
+CVE-2017-17791
+ RESERVED
+CVE-2017-17790
+ RESERVED
+CVE-2017-17783
+ RESERVED
+CVE-2017-17782
+ RESERVED
+CVE-2017-17781
+ RESERVED
+CVE-2017-17780 (The Clockwork SMS clockwork-test-message.php component has XSS via a ...)
+ TODO: check
+CVE-2017-17779 (Paid To Read Script 2.0.5 has SQL injection via the referrals.php id ...)
+ TODO: check
+CVE-2017-17778 (Paid To Read Script 2.0.5 has XSS via the referrals.php tier parameter ...)
+ TODO: check
+CVE-2017-17777 (Paid To Read Script 2.0.5 has authentication bypass in the admin panel ...)
+ TODO: check
+CVE-2017-17776 (Paid To Read Script 2.0.5 has full path disclosure via an invalid ...)
+ TODO: check
+CVE-2017-17775 (Piwigo 2.9.2 has XSS via the name parameter in an ...)
+ TODO: check
+CVE-2017-17774 (admin/configuration.php in Piwigo 2.9.2 has CSRF. ...)
+ TODO: check
+CVE-2017-17773
+ RESERVED
+CVE-2017-17772
+ RESERVED
+CVE-2017-17771
+ RESERVED
+CVE-2017-17770
+ RESERVED
+CVE-2017-17769
+ RESERVED
+CVE-2017-17768
+ RESERVED
+CVE-2017-17767
+ RESERVED
+CVE-2017-17766
+ RESERVED
+CVE-2017-17765
+ RESERVED
+CVE-2017-17764
+ RESERVED
+CVE-2017-17763 (SuperBeam through 4.1.3, when using the LAN or WiFi Direct Share ...)
+ TODO: check
+CVE-2017-17762
+ RESERVED
+CVE-2017-17761 (An issue was discovered on Ichano AtHome IP Camera devices. The device ...)
+ TODO: check
CVE-2017-17476 [OSA-2017-10: Session hijacking]
RESERVED
- otrs2 <unfixed> (bug #884801)
@@ -6,24 +162,30 @@
NOTE: OTRS-5: https://github.com/OTRS/otrs/commit/720c73fbf53e476ca7dfdf2ae1d4d3d2aad2b953
NOTE: OTRS-4: https://github.com/OTRS/otrs/commit/26707eaaa791648e6c7ad6aeaa27efd70e7c66eb
CVE-2017-17785 [gimp: Heap overflow in FLI import]
+ RESERVED
- gimp <unfixed>
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=739133
CVE-2017-17786 [gimp: OOB read in TGA]
+ RESERVED
- gimp <unfixed> (unimportant)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=739134
NOTE: Crash in desktop tool, no/negligable security impact
CVE-2017-17788 [gimp: OOB read in XCF]
+ RESERVED
- gimp <unfixed> (unimportant)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790783
NOTE: Crash in desktop tool, no/negligable security impact
CVE-2017-17784 [gimp: OOB read in GBR]
+ RESERVED
- gimp <unfixed> (unimportant)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790784
NOTE: Crash in desktop tool, no/negligable security impact
CVE-2017-17789 [gimp: Heap overflow in PSP]
+ RESERVED
- gimp <unfixed>
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790849
CVE-2017-17787 [gimp: OOB read in PSP]
+ RESERVED
- gimp <unfixed> (unimportant)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790853
NOTE: Crash in desktop tool, no/negligable security impact
@@ -12278,7 +12440,7 @@
RESERVED
CVE-2014-10064
RESERVED
-CVE-2017-15994 (rsync 3.1.3-development before 2017-10-24, as used in the xlucas svfs ...)
+CVE-2017-15994 (rsync 3.1.3-development before 2017-10-24 mishandles archaic ...)
- rsync <not-affected> (Problematic code to allow checksum choice only introduced after 3.1.2 release)
NOTE: https://git.samba.org/?p=rsync.git;a=commit;h=7b8a4ecd6ff9cdf4e5d3850ebf822f1e989255b3
NOTE: https://git.samba.org/?p=rsync.git;a=commit;h=9a480deec4d20277d8e20bc55515ef0640ca1e55
More information about the Secure-testing-commits
mailing list