[Secure-testing-commits] r48431 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jan 26 19:56:55 UTC 2017
Author: carnil
Date: 2017-01-26 19:56:55 +0000 (Thu, 26 Jan 2017)
New Revision: 48431
Modified:
data/CVE/list
Log:
Add more tcpdump issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-26 19:45:08 UTC (rev 48430)
+++ data/CVE/list 2017-01-26 19:56:55 UTC (rev 48431)
@@ -403,16 +403,21 @@
NOTE: http://git.savannah.gnu.org/cgit/quagga.git/commit/?id=7d66284a5817a1613b1e4d64a0775ec04fdf8c01
CVE-2017-5494 (Multiple cross-site scripting (XSS) vulnerabilities in the file types ...)
- b2evolution <removed>
-CVE-2017-5486
+CVE-2017-5486 [buffer overflow in print-isoclns.c:clnp_print()]
RESERVED
-CVE-2017-5485
+ - tcpdump 4.9.0-1
+CVE-2017-5485 [buffer overflow in addrtoname.c:lookup_nsap()]
RESERVED
-CVE-2017-5484
+ - tcpdump 4.9.0-1
+CVE-2017-5484 [buffer overflow in print-atm.c:sig_print()]
RESERVED
-CVE-2017-5483
+ - tcpdump 4.9.0-1
+CVE-2017-5483 [buffer overflow in print-snmp.c:asn1_parse()]
RESERVED
-CVE-2017-5482
+ - tcpdump 4.9.0-1
+CVE-2017-5482 [buffer overflow in print-fr.c:q933_print()]
RESERVED
+ - tcpdump 4.9.0-1
CVE-2017-5481
RESERVED
CVE-2017-5480 (Directory traversal vulnerability in inc/files/files.ctrl.php in ...)
@@ -930,10 +935,12 @@
RESERVED
CVE-2017-5343
RESERVED
-CVE-2017-5342
+CVE-2017-5342 [bug in multiple protocol parsers could cause buffer overflow in print-ether.c:ether_print()]
RESERVED
-CVE-2017-5341
+ - tcpdump 4.9.0-1
+CVE-2017-5341 [buffer overflow in print-otv.c:otv_print()]
RESERVED
+ - tcpdump 4.9.0-1
CVE-2016-10141 (An integer overflow vulnerability was observed in the regemit function ...)
NOT-FOR-US: MuJS
CVE-2016-10133
@@ -1198,14 +1205,18 @@
[jessie] - libplist <no-dsa> (Minor issue)
NOTE: Upstream bug: https://github.com/libimobiledevice/libplist/issues/84
NOTE: https://github.com/libimobiledevice/libplist/commit/3a55ddd3c4c11ce75a86afbefd085d8d397ff957
-CVE-2017-5205
+CVE-2017-5205 [buffer overflow in print-isakmp.c:ikev2_e_print()]
RESERVED
-CVE-2017-5204
+ - tcpdump 4.9.0-1
+CVE-2017-5204 [buffer overflow in print-ip6.c:ip6_print()]
RESERVED
-CVE-2017-5203
+ - tcpdump 4.9.0-1
+CVE-2017-5203 [buffer overflow in print-bootp.c:bootp_print()]
RESERVED
-CVE-2017-5202
+ - tcpdump 4.9.0-1
+CVE-2017-5202 [buffer overflow in print-isoclns.c:clnp_print()]
RESERVED
+ - tcpdump 4.9.0-1
CVE-2017-5201
RESERVED
CVE-2017-5200
@@ -16739,10 +16750,12 @@
- golang-github-appc-docker2aci 0.12.3+dfsg-2 (bug #840711)
NOTE: https://github.com/appc/docker2aci/issues/203
NOTE: https://github.com/lucab/docker2aci/commit/54331ec7020e102935c31096f336d31f6400064f
-CVE-2016-8575
+CVE-2016-8575 [buffer overflow in print-fr.c:q933_print()]
RESERVED
-CVE-2016-8574
+ - tcpdump 4.9.0-1
+CVE-2016-8574 [buffer overflow in print-fr.c:frf15_print()]
RESERVED
+ - tcpdump 4.9.0-1
CVE-2016-8573
RESERVED
CVE-2016-8572
@@ -18903,10 +18916,12 @@
[wheezy] - qemu <not-affected> (Vulnerable code introduced in 2.4.0-rc0)
- qemu-kvm <not-affected> (Vulnerable code introduced in 2.4.0-rc0)
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg04129.html
-CVE-2016-7993
+CVE-2016-7993 [buffer overflow in multiple protocol parsers]
RESERVED
-CVE-2016-7992
+ - tcpdump 4.9.0-1
+CVE-2016-7992 [buffer overflow in print-cip.c:cip_if_print()]
RESERVED
+ - tcpdump 4.9.0-1
CVE-2016-7991 (On Samsung Galaxy S4 through S7 devices, the "omacp" app ignores ...)
NOT-FOR-US: Samsung
CVE-2016-7990 (On Samsung Galaxy S4 through S7 devices, an integer overflow condition ...)
@@ -18917,14 +18932,18 @@
NOT-FOR-US: Samsung
CVE-2016-7987
RESERVED
-CVE-2016-7986
+CVE-2016-7986 [buffer overflow in print-geonet.c, multiple functions]
RESERVED
-CVE-2016-7985
+ - tcpdump 4.9.0-1
+CVE-2016-7985 [buffer overflow in print-calm-fast.c:calm_fast_print()]
RESERVED
-CVE-2016-7984
+ - tcpdump 4.9.0-1
+CVE-2016-7984 [buffer overflow in print-tftp.c:tftp_print()]
RESERVED
-CVE-2016-7983
+ - tcpdump 4.9.0-1
+CVE-2016-7983 [buffer overflow in print-bootp.c:bootp_print()]
RESERVED
+ - tcpdump 4.9.0-1
CVE-2016-7982 (Directory traversal vulnerability in ecrire/exec/valider_xml.php in ...)
{DLA-695-1}
- spip 3.1.3-1
@@ -18961,12 +18980,15 @@
NOTE: https://core.spip.net/projects/spip/repository/revisions/23201 (3.1)
NOTE: https://core.spip.net/projects/spip/repository/revisions/23202 (3.0)
NOTE: reproducible in Wheezy (2.1.17-1+deb7u5) and Jessie (3.0.17-2+deb8u2)
-CVE-2016-7975
+CVE-2016-7975 [buffer overflow in print-tcp.c:tcp_print()]
RESERVED
-CVE-2016-7974
+ - tcpdump 4.9.0-1
+CVE-2016-7974 [buffer overflow in print-ip.c, multiple functions]
RESERVED
-CVE-2016-7973
+ - tcpdump 4.9.0-1
+CVE-2016-7973 [buffer overflow in print-atalk.c, multiple functions]
RESERVED
+ - tcpdump 4.9.0-1
CVE-2016-7972
RESERVED
{DLA-668-1}
@@ -19120,22 +19142,30 @@
NOTE: https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8ea762f94f4c942d898fdeb590a1630c83235c17
CVE-2016-7941
RESERVED
-CVE-2016-7940
+CVE-2016-7940 [buffer overflow in print-stp.c, multiple functions]
RESERVED
-CVE-2016-7939
+ - tcpdump 4.9.0-1
+CVE-2016-7939 [buffer overflow in print-gre.c, multiple functions]
RESERVED
-CVE-2016-7938
+ - tcpdump 4.9.0-1
+CVE-2016-7938 [integer overflow in print-zeromq.c:zmtp1_print_frame()]
RESERVED
-CVE-2016-7937
+ - tcpdump 4.9.0-1
+CVE-2016-7937 [buffer overflow in print-udp.c:vat_print()]
RESERVED
-CVE-2016-7936
+ - tcpdump 4.9.0-1
+CVE-2016-7936 [buffer overflow in print-udp.c:udp_print()]
RESERVED
-CVE-2016-7935
+ - tcpdump 4.9.0-1
+CVE-2016-7935 [buffer overflow in print-udp.c:rtp_print()]
RESERVED
-CVE-2016-7934
+ - tcpdump 4.9.0-1
+CVE-2016-7934 [buffer overflow in print-udp.c:rtcp_print()]
RESERVED
-CVE-2016-7933
+ - tcpdump 4.9.0-1
+CVE-2016-7933 [buffer overflow in print-ppp.c:ppp_hdlc_if_print()]
RESERVED
+ - tcpdump 4.9.0-1
CVE-2016-7932 [buffer overflow in print-pim.c:pimv2_check_checksum()]
RESERVED
- tcpdump 4.9.0-1
More information about the Secure-testing-commits
mailing list