[Secure-testing-commits] r52503 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon Jun 12 09:10:16 UTC 2017
Author: sectracker
Date: 2017-06-12 09:10:16 +0000 (Mon, 12 Jun 2017)
New Revision: 52503
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-12 06:27:36 UTC (rev 52502)
+++ data/CVE/list 2017-06-12 09:10:16 UTC (rev 52503)
@@ -1,3 +1,33 @@
+CVE-2017-9551
+ RESERVED
+CVE-2017-9550
+ RESERVED
+CVE-2017-9549
+ RESERVED
+CVE-2017-9548 (admin.php in BigTree through 4.2.18 has a Cross-site Scripting (XSS) ...)
+ TODO: check
+CVE-2017-9547 (admin.php in BigTree through 4.2.18 has a Cross-site Scripting (XSS) ...)
+ TODO: check
+CVE-2017-9546 (admin.php in BigTree through 4.2.18 allows remote authenticated users ...)
+ TODO: check
+CVE-2017-9545
+ RESERVED
+CVE-2017-9544 (There is a remote stack-based buffer overflow (SEH) in register.ghp in ...)
+ TODO: check
+CVE-2017-9543 (register.ghp in EFS Software Easy Chat Server versions 2.0 to 3.1 ...)
+ TODO: check
+CVE-2017-9542 (D-Link DIR-615 Wireless N 300 Router allows authentication bypass via a ...)
+ TODO: check
+CVE-2017-9541
+ RESERVED
+CVE-2017-9540
+ RESERVED
+CVE-2017-9539
+ RESERVED
+CVE-2017-9538
+ RESERVED
+CVE-2017-9537
+ RESERVED
CVE-2017-9536
RESERVED
CVE-2017-9535
@@ -589,8 +619,7 @@
[jessie] - qemu <no-dsa> (Minor issue)
- qemu-kvm <removed>
NOTE: http://git.qemu.org/?p=qemu.git;a=commitdiff;h=26f670a244982335cc08943fb1ec099a2c81e42d
-CVE-2017-9324
- RESERVED
+CVE-2017-9324 (In Open Ticket Request System (OTRS) 3.3.x through 3.3.16, 4.x through ...)
{DSA-3876-1}
- otrs2 5.0.20-1 (bug #864319)
[stretch] - otrs2 5.0.16-1+deb9u1
@@ -1312,20 +1341,20 @@
RESERVED
CVE-2017-9129
RESERVED
-CVE-2017-9128
- RESERVED
-CVE-2017-9127
- RESERVED
-CVE-2017-9126
- RESERVED
-CVE-2017-9125
- RESERVED
-CVE-2017-9124
- RESERVED
-CVE-2017-9123
- RESERVED
-CVE-2017-9122
- RESERVED
+CVE-2017-9128 (The quicktime_video_width function in lqt_quicktime.c in libquicktime ...)
+ TODO: check
+CVE-2017-9127 (The quicktime_user_atoms_read_atom function in useratoms.c in ...)
+ TODO: check
+CVE-2017-9126 (The quicktime_read_dref_table function in dref.c in libquicktime 1.2.4 ...)
+ TODO: check
+CVE-2017-9125 (The lqt_frame_duration function in lqt_quicktime.c in libquicktime ...)
+ TODO: check
+CVE-2017-9124 (The quicktime_match_32 function in util.c in libquicktime 1.2.4 allows ...)
+ TODO: check
+CVE-2017-9123 (The lqt_frame_duration function in lqt_quicktime.c in libquicktime ...)
+ TODO: check
+CVE-2017-9122 (The quicktime_read_moov function in moov.c in libquicktime 1.2.4 allows ...)
+ TODO: check
CVE-2017-9121
RESERVED
CVE-2017-9120
@@ -2021,8 +2050,8 @@
[jessie] - libxml2 <no-dsa> (Minor issue)
[wheezy] - libxml2 <no-dsa> (Minor issue)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=775200
-CVE-2017-8871
- RESERVED
+CVE-2017-8871 (The cr_parser_parse_selector_core function in cr-parser.c in libcroco ...)
+ TODO: check
CVE-2017-8870
RESERVED
CVE-2017-8869
@@ -2141,8 +2170,8 @@
- lxterminal 0.3.0-2 (low; bug #862098)
[jessie] - lxterminal <no-dsa> (Minor issue)
NOTE: Fixed by: https://git.lxde.org/gitweb/?p=lxde/lxterminal.git;a=commit;h=f99163c6ff8b2f57c5f37b1ce5d62cf7450d4648
-CVE-2017-8834
- RESERVED
+CVE-2017-8834 (The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 ...)
+ TODO: check
CVE-2017-8833 (Zen Cart 1.6.0 has XSS in the main_page parameter to index.php. NOTE: ...)
NOT-FOR-US: Zen Cart
CVE-2017-8832 (Allen Disk 1.6 has XSS in the id parameter to downfile.php. ...)
More information about the Secure-testing-commits
mailing list