[Secure-testing-commits] r58834 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Fri Dec 22 09:10:16 UTC 2017
Author: sectracker
Date: 2017-12-22 09:10:16 +0000 (Fri, 22 Dec 2017)
New Revision: 58834
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-22 08:55:48 UTC (rev 58833)
+++ data/CVE/list 2017-12-22 09:10:16 UTC (rev 58834)
@@ -10387,8 +10387,8 @@
RESERVED
CVE-2017-16728
RESERVED
-CVE-2017-16727
- RESERVED
+CVE-2017-16727 (A Credentials Management issue was discovered in Moxa NPort W2150A ...)
+ TODO: check
CVE-2017-16726
RESERVED
CVE-2017-16725 (A Stack-based Buffer Overflow issue was discovered in Xiongmai ...)
@@ -17343,8 +17343,8 @@
RESERVED
CVE-2017-14364
RESERVED
-CVE-2017-14363
- RESERVED
+CVE-2017-14363 (Cross-Site Scripting (XSS) vulnerability has been identified in Micro ...)
+ TODO: check
CVE-2017-14362 (Cross-Site Request Forgery vulnerability in Micro Focus Project and ...)
NOT-FOR-US: Micro Focus Project and Portfolio Management Center
CVE-2017-14361 (Man-In-The-Middle vulnerability in Micro Focus Project and Portfolio ...)
@@ -20624,6 +20624,7 @@
NOTE: https://github.com/wolfSSL/wolfssl/pull/1229
NOTE: https://robotattack.org/
CVE-2017-13098 (BouncyCastle TLS prior to version 1.0.3, when configured to use the ...)
+ {DSA-4072-1}
- bouncycastle 1.58-1 (bug #884241)
[jessie] - bouncycastle <not-affected> (Vulnerable code introduced in 1.56 with tls API addition)
[wheezy] - bouncycastle <not-affected> (Vulnerable code not present)
More information about the Secure-testing-commits
mailing list