[Secure-testing-commits] r49094 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Tue Feb 21 09:10:12 UTC 2017
Author: sectracker
Date: 2017-02-21 09:10:12 +0000 (Tue, 21 Feb 2017)
New Revision: 49094
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-21 07:12:41 UTC (rev 49093)
+++ data/CVE/list 2017-02-21 09:10:12 UTC (rev 49094)
@@ -9,14 +9,14 @@
RESERVED
CVE-2017-6099
RESERVED
-CVE-2017-6098
- RESERVED
-CVE-2017-6097
- RESERVED
-CVE-2017-6096
- RESERVED
-CVE-2017-6095
- RESERVED
+CVE-2017-6098 (A SQL injection issue was discovered in the Mail Masta (aka mail-masta) ...)
+ TODO: check
+CVE-2017-6097 (A SQL injection issue was discovered in the Mail Masta (aka mail-masta) ...)
+ TODO: check
+CVE-2017-6096 (A SQL injection issue was discovered in the Mail Masta (aka mail-masta) ...)
+ TODO: check
+CVE-2017-6095 (A SQL injection issue was discovered in the Mail Masta (aka mail-masta) ...)
+ TODO: check
CVE-2017-6094
RESERVED
CVE-2017-6093
@@ -49,12 +49,12 @@
RESERVED
CVE-2017-6079
RESERVED
-CVE-2017-6078
- RESERVED
+CVE-2017-6078 (FastStone MaxView 3.0 and 3.1 allows user-assisted attackers to cause a ...)
+ TODO: check
CVE-2017-6077
RESERVED
-CVE-2016-10227
- RESERVED
+CVE-2016-10227 (Zyxel USG50 Security Appliance and NWA3560-N Access Point allow remote ...)
+ TODO: check
CVE-2017-6076
RESERVED
CVE-2017-6075
@@ -64,12 +64,12 @@
NOTE: Fixed by: https://git.kernel.org/linus/5edabca9d4cff7f1f2b68f0bac55ef99d9798ba4
CVE-2017-6073
RESERVED
-CVE-2017-6072
- RESERVED
-CVE-2017-6071
- RESERVED
-CVE-2017-6070
- RESERVED
+CVE-2017-6072 (CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows ...)
+ TODO: check
+CVE-2017-6071 (CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows ...)
+ TODO: check
+CVE-2017-6070 (CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows ...)
+ TODO: check
CVE-2017-6069
RESERVED
CVE-2017-6068
@@ -379,8 +379,8 @@
NOT-FOR-US: ionize
CVE-2017-5960 (An issue was discovered in Phalcon Eye through 0.4.1. The vulnerability ...)
NOT-FOR-US: Phalcon Eye
-CVE-2017-5959
- RESERVED
+CVE-2017-5959 (CSRF token bypass in GeniXCMS before 1.0.2 could result in escalation ...)
+ TODO: check
CVE-2017-5958
RESERVED
CVE-2017-5957
@@ -608,8 +608,8 @@
RESERVED
CVE-2017-5882 (Cross-site scripting (XSS) vulnerability in index.asp in SANADATA ...)
NOT-FOR-US: SanaCMS
-CVE-2017-5881
- RESERVED
+CVE-2017-5881 (GOM Player 2.3.10.5266 allows remote attackers to cause a denial of ...)
+ TODO: check
CVE-2017-5880 (Splunk Web in Splunk Enterprise versions 6.5.x before 6.5.2, 6.4.x ...)
NOT-FOR-US: Splunk
CVE-2017-5879 (An issue was discovered in Exponent CMS 2.4.1. This is a blind SQL ...)
@@ -16080,12 +16080,12 @@
- libgd2 2.2.4-1
NOTE: https://github.com/libgd/libgd/commit/6944ea10cb730d5071620439c6c2e823e6caeff1
NOTE: https://github.com/libgd/libgd/issues/340
-CVE-2016-9316
- RESERVED
-CVE-2016-9315
- RESERVED
-CVE-2016-9314
- RESERVED
+CVE-2016-9316 (Multiple stored Cross-Site-Scripting (XSS) vulnerabilities in ...)
+ TODO: check
+CVE-2016-9315 (Privilege Escalation Vulnerability in ...)
+ TODO: check
+CVE-2016-9314 (Sensitive Information Disclosure in ...)
+ TODO: check
CVE-2016-9313 (security/keys/big_key.c in the Linux kernel before 4.8.7 mishandles ...)
- linux 4.8.7-1
[jessie] - linux <not-affected> (Vulnerable code introduced later)
@@ -16164,8 +16164,8 @@
RESERVED
CVE-2016-9270
RESERVED
-CVE-2016-9269
- RESERVED
+CVE-2016-9269 (Remote Command Execution in com.trend.iwss.gui.servlet.ManagePatches in ...)
+ TODO: check
CVE-2016-9268 (Unrestricted file upload vulnerability in the Blog appearance in the ...)
- dotclear <removed>
NOTE: http://dev.dotclear.org/2.0/changeset/445e9ff79a1fa81033591761d6a340e219d159b2
More information about the Secure-testing-commits
mailing list