[Secure-testing-commits] r53352 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sun Jul 9 21:10:12 UTC 2017 

Author: sectracker
Date: 2017-07-09 21:10:12 +0000 (Sun, 09 Jul 2017)
New Revision: 53352

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-09 20:47:46 UTC (rev 53351)
+++ data/CVE/list	2017-07-09 21:10:12 UTC (rev 53352)
@@ -41,6 +41,7 @@
 	[jessie] - tcpdump <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1468504
 CVE-2017-11107 (phpLDAPadmin through 1.2.3 has XSS in htdocs/entry_chooser.php via the ...)
+	{DLA-1019-1}
 	- phpldapadmin <unfixed> (bug #867719)
 	NOTE: https://github.com/leenooks/phpLDAPadmin/issues/50
 	NOTE: https://bugs.launchpad.net/ubuntu/+source/phpldapadmin/+bug/1701731
@@ -389,10 +390,12 @@
 	NOTE: Fixed in 7.1.3, 7.0.17
 	NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=0f8cf3b8497dc45c010c44ed9e96518e11e19fc3
 CVE-2017-10972 (Uninitialized data in endianness conversion in the XEvent handling of ...)
+	{DSA-3905-1}
 	- xorg-server 2:1.19.3-2 (bug #867492)
 	NOTE: https://cgit.freedesktop.org/xorg/xserver/commit/?id=05442de962d3dc624f79fc1a00eca3ffc5489ced
 	NOTE: http://www.openwall.com/lists/oss-security/2017/07/06/6
 CVE-2017-10971 (In the X.Org X server before 2017-06-19, a user authenticated to an X ...)
+	{DSA-3905-1}
 	- xorg-server 2:1.19.3-2 (bug #867492)
 	NOTE: https://cgit.freedesktop.org/xorg/xserver/commit/?id=ba336b24052122b136486961c82deac76bbde455
 	NOTE: https://cgit.freedesktop.org/xorg/xserver/commit/?id=8caed4df36b1f802b4992edcfd282cbeeec35d9d
@@ -8065,11 +8068,9 @@
 	RESERVED
 CVE-2017-8004
 	RESERVED
-CVE-2017-8003
-	RESERVED
+CVE-2017-8003 (EMC Data Protection Advisor prior to 6.4 contains a path traversal ...)
 	NOT-FOR-US: EMC Data Protection Advisor
-CVE-2017-8002
-	RESERVED
+CVE-2017-8002 (EMC Data Protection Advisor prior to 6.4 contains multiple blind SQL ...)
 	NOT-FOR-US: EMC Data Protection Advisor
 CVE-2017-8001
 	RESERVED
@@ -18132,8 +18133,8 @@
 	NOT-FOR-US: EMC
 CVE-2017-4977 (EMC RSA Archer Security Operations Management with RSA Unified ...)
 	NOT-FOR-US: EMC
-CVE-2017-4976
-	RESERVED
+CVE-2017-4976 (EMC ESRS Policy Manager prior to 6.8 contains an undocumented account ...)
+	TODO: check
 CVE-2017-4975 (An issue was discovered in Pivotal PCF Tile Generator versions prior to ...)
 	NOT-FOR-US: Pivotal PCF Tile Generator
 CVE-2017-4974 (An issue was discovered in Cloud Foundry Foundation cf-release versions ...)

More information about the Secure-testing-commits mailing list