[Secure-testing-commits] r58774 - data/CVE
Raphael Geissert
geissert at moszumanska.debian.org
Thu Dec 21 11:40:21 UTC 2017
Author: geissert
Date: 2017-12-21 11:40:21 +0000 (Thu, 21 Dec 2017)
New Revision: 58774
Modified:
data/CVE/list
Log:
nasm, piwigo, git-lfs, and some NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-21 10:02:34 UTC (rev 58773)
+++ data/CVE/list 2017-12-21 11:40:21 UTC (rev 58774)
@@ -1,49 +1,66 @@
CVE-2017-17831 (GitHub Git LFS before 2.1.1 allows remote attackers to execute ...)
+ - git-lfs <unfixed>
TODO: check
CVE-2017-17830 (Bus Booking Script has CSRF via admin/new_master.php. ...)
- TODO: check
+ NOT-FOR-US: Bus Booking Script
CVE-2017-17829 (Bus Booking Script has SQL Injection via the admin/view_seatseller.php ...)
- TODO: check
+ NOT-FOR-US: Bus Booking Script
CVE-2017-17828 (Bus Booking Script has XSS via the results.php datepicker parameter or ...)
- TODO: check
+ NOT-FOR-US: Bus Booking Script
CVE-2017-17827 (Piwigo 2.9.2 is vulnerable to Cross-Site Request Forgery via ...)
TODO: check
CVE-2017-17826 (The Configuration component of Piwigo 2.9.2 is vulnerable to Persistent ...)
+ - piwigo <unfixed>
TODO: check
CVE-2017-17825 (The Batch Manager component of Piwigo 2.9.2 is vulnerable to Persistent ...)
+ - piwigo <unfixed>
TODO: check
CVE-2017-17824 (The Batch Manager component of Piwigo 2.9.2 is vulnerable to SQL ...)
+ - piwigo <unfixed>
TODO: check
CVE-2017-17823 (The Configuration component of Piwigo 2.9.2 is vulnerable to SQL ...)
+ - piwigo <unfixed>
TODO: check
CVE-2017-17822 (The List Users API of Piwigo 2.9.2 is vulnerable to SQL Injection via ...)
+ - piwigo <unfixed>
TODO: check
CVE-2017-17821 (WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology ...)
TODO: check
CVE-2017-17820 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17819 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17818 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17817 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17816 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17815 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17814 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17813 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in the ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17812 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17811 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17810 (In Netwide Assembler (NASM) 2.14rc0, there is a "SEGV on unknown ...)
+ - nasm <unfixed>
TODO: check
CVE-2017-17809 (In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the vyprvpnservice ...)
- TODO: check
+ NOT-FOR-US: Golden Frog VyprVPN
CVE-2017-17808
RESERVED
CVE-2018-3599
More information about the Secure-testing-commits
mailing list