[Secure-testing-commits] r52897 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sun Jun 25 09:10:12 UTC 2017 

Author: sectracker
Date: 2017-06-25 09:10:12 +0000 (Sun, 25 Jun 2017)
New Revision: 52897

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-25 09:06:49 UTC (rev 52896)
+++ data/CVE/list	2017-06-25 09:10:12 UTC (rev 52897)
@@ -1,3 +1,35 @@
+CVE-2017-9864
+	RESERVED
+CVE-2017-9863
+	RESERVED
+CVE-2017-9862
+	RESERVED
+CVE-2017-9861
+	RESERVED
+CVE-2017-9860
+	RESERVED
+CVE-2017-9859
+	RESERVED
+CVE-2017-9858
+	RESERVED
+CVE-2017-9857
+	RESERVED
+CVE-2017-9856
+	RESERVED
+CVE-2017-9855
+	RESERVED
+CVE-2017-9854
+	RESERVED
+CVE-2017-9853
+	RESERVED
+CVE-2017-9852
+	RESERVED
+CVE-2017-9851
+	RESERVED
+CVE-2017-9850
+	RESERVED
+CVE-2017-9849
+	RESERVED
 CVE-2017-9848 (SQL injection vulnerability in C_InfoService.asmx in WebServices in ...)
 	NOT-FOR-US: Easysite
 CVE-2017-9847 (The bdecode function in bdecode.cpp in libtorrent 1.1.3 allows remote ...)
@@ -1503,7 +1535,7 @@
 	- eglibc <removed>
 	NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
 CVE-2017-1000369 (Exim supports the use of multiple "-p" command line arguments which ...)
-	{DSA-3888-1}
+	{DSA-3888-1 DLA-1001-1}
 	- exim4 4.89-3
 	NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
 CVE-2017-1000370 (The offset2lib patch as used in the Linux Kernel contains a ...)
@@ -2188,12 +2220,14 @@
 CVE-2017-9502 (In curl before 7.54.1 on Windows and DOS, libcurl's default protocol ...)
 	- curl <not-affected> (Windows only)
 CVE-2017-9501 (In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the ...)
+	{DLA-1000-1}
 	- imagemagick <unfixed> (low)
 	[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/491
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/01843366d6a7b96e22ad7bb67f3df7d9fd4d5d74
 CVE-2017-9500 (In ImageMagick 7.0.5-8 Q16, an assertion failure was found in the ...)
+	{DLA-1000-1}
 	- imagemagick <unfixed> (low)
 	[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
@@ -2357,6 +2391,7 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/462
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/c2be129c25763680afeca59f4de5d6d4240ca2cf
 CVE-2017-9439 (In ImageMagick 7.0.5-5, a memory leak was found in the function ...)
+	{DLA-1000-1}
 	- imagemagick <unfixed> (low; bug #864274)
 	[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
@@ -2441,6 +2476,7 @@
 CVE-2017-9410
 	RESERVED
 CVE-2017-9409 (In ImageMagick 7.0.5-5, the ReadMPCImage function in mpc.c allows ...)
+	{DLA-1000-1}
 	- imagemagick 8:6.9.7.4+dfsg-11 (low; bug #864090)
 	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/458
@@ -2452,6 +2488,7 @@
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=100776
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=b21b041f7948680c03109f0c404400a9dbc4544c
 CVE-2017-9407 (In ImageMagick 7.0.5-5, the ReadPALMImage function in palm.c allows ...)
+	{DLA-1000-1}
 	- imagemagick 8:6.9.7.4+dfsg-11 (low; bug #864089)
 	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/459
@@ -2463,6 +2500,7 @@
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=100775
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=278439531b13b0b047dbe3a75aa3f1b3407c8bd4
 CVE-2017-9405 (In ImageMagick 7.0.5-5, the ReadICONImage function in icon.c:452 allows ...)
+	{DLA-1000-1}
 	- imagemagick 8:6.9.7.4+dfsg-11 (low; bug #864087)
 	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/457
@@ -3008,11 +3046,13 @@
 	[wheezy] - openvswitch <not-affected> (No controllers implemented, cf. #863655)
 	NOTE: https://mail.openvswitch.org/pipermail/ovs-dev/2017-May/332966.html
 CVE-2017-9262 (In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c ...)
+	{DLA-1000-1}
 	- imagemagick 8:6.9.7.4+dfsg-10 (low; bug #863834)
 	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/475
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/4649578df8dcbfb2b08d8623d52486dc124da3a8
 CVE-2017-9261 (In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c ...)
+	{DLA-1000-1}
 	- imagemagick 8:6.9.7.4+dfsg-10 (low; bug #863833)
 	[jessie] - imagemagick <no-dsa> (Minor issue)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/476

More information about the Secure-testing-commits mailing list