[Secure-testing-commits] r53021 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Thu Jun 29 21:10:13 UTC 2017 

Author: sectracker
Date: 2017-06-29 21:10:13 +0000 (Thu, 29 Jun 2017)
New Revision: 53021

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-29 19:57:32 UTC (rev 53020)
+++ data/CVE/list	2017-06-29 21:10:13 UTC (rev 53021)
@@ -1,3 +1,19 @@
+CVE-2017-10677
+	RESERVED
+CVE-2017-10676
+	RESERVED
+CVE-2017-10675
+	RESERVED
+CVE-2017-10674
+	RESERVED
+CVE-2015-9105
+	RESERVED
+CVE-2015-9104
+	RESERVED
+CVE-2015-9103
+	RESERVED
+CVE-2015-9102
+	RESERVED
 CVE-2017-10673 (admin/profile.php in GetSimple CMS 3.x has XSS in a name field. ...)
 	NOT-FOR-US: GetSimple CMS
 CVE-2017-10672 (Use-after-free in the XML-LibXML module through 2.0129 for Perl allows ...)
@@ -2854,6 +2870,7 @@
 CVE-2017-9448 (Cross-site scripting (XSS) vulnerabilities in BigTree CMS through ...)
 	NOT-FOR-US: BigTree CMS
 CVE-2017-9462 (In Mercurial before 4.1.3, "hg serve --stdio" allows remote ...)
+	{DLA-1005-1}
 	- mercurial <unfixed> (bug #861243)
 	[stretch] - mercurial <no-dsa> (Minor issue)
 	[jessie] - mercurial <no-dsa> (Minor issue)
@@ -5351,8 +5368,8 @@
 	RESERVED
 CVE-2017-8614
 	RESERVED
-CVE-2017-8613
-	RESERVED
+CVE-2017-8613 (Azure AD Connect Password writeback, if misconfigured during ...)
+	TODO: check
 CVE-2017-8612
 	RESERVED
 CVE-2017-8611
@@ -5419,16 +5436,16 @@
 	RESERVED
 CVE-2017-8580
 	RESERVED
-CVE-2017-8579
-	RESERVED
+CVE-2017-8579 (The DirectX component in Microsoft Windows 10 Gold, 1511, 1607, 1703, ...)
+	TODO: check
 CVE-2017-8578
 	RESERVED
 CVE-2017-8577
 	RESERVED
-CVE-2017-8576
-	RESERVED
-CVE-2017-8575
-	RESERVED
+CVE-2017-8576 (The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, ...)
+	TODO: check
+CVE-2017-8575 (The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows ...)
+	TODO: check
 CVE-2017-8574
 	RESERVED
 CVE-2017-8573
@@ -5461,16 +5478,16 @@
 	RESERVED
 CVE-2017-8559
 	RESERVED
-CVE-2017-8558
-	RESERVED
+CVE-2017-8558 (The Microsoft Malware Protection Engine running on Microsoft Forefront ...)
+	TODO: check
 CVE-2017-8557
 	RESERVED
 CVE-2017-8556
 	RESERVED
 CVE-2017-8555 (Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to ...)
 	NOT-FOR-US: Microsoft
-CVE-2017-8554
-	RESERVED
+CVE-2017-8554 (The kernel in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 ...)
+	TODO: check
 CVE-2017-8553 (An information disclosure vulnerability exists in Microsoft Windows ...)
 	NOT-FOR-US: Microsoft
 CVE-2017-8552 (A kernel-mode driver in Microsoft Windows XP SP3, Windows XP x64 XP2, ...)
@@ -14786,10 +14803,10 @@
 	RESERVED
 CVE-2017-5530
 	RESERVED
-CVE-2017-5529
-	RESERVED
-CVE-2017-5528
-	RESERVED
+CVE-2017-5529 (JasperReports library components contain an information disclosure ...)
+	TODO: check
+CVE-2017-5528 (Multiple JasperReports Server components contain vulnerabilities ...)
+	TODO: check
 CVE-2017-5527 (TIBCO Spotfire Server 7.0.X before 7.0.2, 7.5.x before 7.5.1, 7.6.x ...)
 	NOT-FOR-US: TIBCO Spotfire Server
 CVE-2016-10162 (The php_wddx_pop_element function in ext/wddx/wddx.c in PHP 7.0.x ...)
@@ -16919,8 +16936,8 @@
 	RESERVED
 CVE-2017-4998
 	RESERVED
-CVE-2017-4997
-	RESERVED
+CVE-2017-4997 (EMC VASA Provider Virtual Appliance versions 8.3.x and prior has an ...)
+	TODO: check
 CVE-2017-4996
 	RESERVED
 CVE-2017-4995
@@ -19633,14 +19650,14 @@
 	RESERVED
 CVE-2017-3751
 	RESERVED
-CVE-2017-3750
-	RESERVED
-CVE-2017-3749
-	RESERVED
-CVE-2017-3748
-	RESERVED
-CVE-2017-3747
-	RESERVED
+CVE-2017-3750 (On Lenovo VIBE mobile phones, the Lenovo Security Android application ...)
+	TODO: check
+CVE-2017-3749 (On Lenovo VIBE mobile phones, the Idea Friend Android application ...)
+	TODO: check
+CVE-2017-3748 (On Lenovo VIBE mobile phones, improper access controls on the ...)
+	TODO: check
+CVE-2017-3747 (Privilege escalation vulnerability in Lenovo Nerve Center for Windows ...)
+	TODO: check
 CVE-2017-3746
 	RESERVED
 CVE-2017-3745 (In Lenovo XClarity Administrator (LXCA) before 1.3.0, if service data ...)
@@ -22627,22 +22644,22 @@
 	RESERVED
 CVE-2017-2852
 	RESERVED
-CVE-2017-2851
-	RESERVED
-CVE-2017-2850
-	RESERVED
-CVE-2017-2849
-	RESERVED
-CVE-2017-2848
-	RESERVED
-CVE-2017-2847
-	RESERVED
-CVE-2017-2846
-	RESERVED
-CVE-2017-2845
-	RESERVED
-CVE-2017-2844
-	RESERVED
+CVE-2017-2851 (In the web management interface in Foscam C1 Indoor HD cameras with ...)
+	TODO: check
+CVE-2017-2850 (In the web management interface in Foscam C1 Indoor HD cameras with ...)
+	TODO: check
+CVE-2017-2849 (In the web management interface in Foscam C1 Indoor HD cameras with ...)
+	TODO: check
+CVE-2017-2848 (In the web management interface in Foscam C1 Indoor HD cameras with ...)
+	TODO: check
+CVE-2017-2847 (In the web management interface in Foscam C1 Indoor HD cameras with ...)
+	TODO: check
+CVE-2017-2846 (In the web management interface in Foscam C1 Indoor HD cameras with ...)
+	TODO: check
+CVE-2017-2845 (An exploitable command injection vulnerability exists in the web ...)
+	TODO: check
+CVE-2017-2844 (In the web management interface in Foscam C1 Indoor HD cameras with ...)
+	TODO: check
 CVE-2017-2843 (In the web management interface in Foscam C1 Indoor HD Camera running ...)
 	NOT-FOR-US: Foscam C1 Indoor HD Camera
 CVE-2017-2842 (In the web management interface in Foscam C1 Indoor HD Camera running ...)
@@ -26014,8 +26031,8 @@
 	RESERVED
 CVE-2017-1311
 	RESERVED
-CVE-2017-1310
-	RESERVED
+CVE-2017-1310 (IBM Informix Dynamic Server 12.1 could allow an authenticated user to ...)
+	TODO: check
 CVE-2017-1309
 	RESERVED
 CVE-2017-1308

More information about the Secure-testing-commits mailing list