[Secure-testing-commits] r54061 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Sat Jul 29 21:10:16 UTC 2017
Author: sectracker
Date: 2017-07-29 21:10:16 +0000 (Sat, 29 Jul 2017)
New Revision: 54061
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-29 17:08:12 UTC (rev 54060)
+++ data/CVE/list 2017-07-29 21:10:16 UTC (rev 54061)
@@ -1,3 +1,17 @@
+CVE-2017-11741
+ RESERVED
+CVE-2017-11740
+ RESERVED
+CVE-2017-11739
+ RESERVED
+CVE-2017-11738
+ RESERVED
+CVE-2017-11737 (interface/js/app/history.js in WebUI in Rspamd before 1.6.3 allows XSS ...)
+ TODO: check
+CVE-2017-11736 (SQL injection vulnerability in ...)
+ TODO: check
+CVE-2017-11735
+ RESERVED
CVE-2017-11734 (A heap-based buffer over-read was found in the function ...)
- ming <removed>
NOTE: https://github.com/libming/libming/issues/83
@@ -35053,7 +35067,7 @@
CVE-2016-8744
RESERVED
CVE-2016-8743 (Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was ...)
- {DSA-3796-1 DLA-841-1}
+ {DSA-3796-1 DLA-841-2 DLA-841-1}
- apache2 2.4.25-1
NOTE: https://lists.apache.org/thread.html/139862b41c0dfd5e6e00ad89c00119f9faf0dd41a2f927da9c9a4076@%3Cannounce.httpd.apache.org%3E
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
@@ -90703,6 +90717,7 @@
[wheezy] - jakarta-taglibs-standard <no-dsa> (Minor issue)
NOTE: https://bz.apache.org/bugzilla/show_bug.cgi?id=57560
CVE-2015-0253 (The read_request_line function in server/protocol.c in the Apache HTTP ...)
+ {DLA-841-2}
- apache2 <not-affected> (Vulnerable version 2.4.11 never in Debian)
CVE-2015-0252 (internal/XMLReader.cpp in Apache Xerces-C before 3.1.2 allows remote ...)
{DSA-3199-1 DLA-181-1}
More information about the Secure-testing-commits
mailing list