[Secure-testing-commits] r49431 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Mon Mar 6 09:10:13 UTC 2017


Author: sectracker
Date: 2017-03-06 09:10:13 +0000 (Mon, 06 Mar 2017)
New Revision: 49431

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-03-06 08:59:22 UTC (rev 49430)
+++ data/CVE/list	2017-03-06 09:10:13 UTC (rev 49431)
@@ -1,4 +1,43 @@
+CVE-2017-6496
+	RESERVED
+CVE-2017-6495
+	RESERVED
+CVE-2017-6494
+	RESERVED
+CVE-2017-6493
+	RESERVED
+CVE-2017-6492 (SQL Injection was discovered in ...)
+	TODO: check
+CVE-2017-6491 (Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI ...)
+	TODO: check
+CVE-2017-6490 (Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI ...)
+	TODO: check
+CVE-2017-6489 (Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI ...)
+	TODO: check
+CVE-2017-6488 (Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI ...)
+	TODO: check
+CVE-2017-6487 (Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI ...)
+	TODO: check
+CVE-2017-6486 (A Cross-Site Scripting (XSS) issue was discovered in reasoncms before ...)
+	TODO: check
+CVE-2017-6485 (A Cross-Site Scripting (XSS) issue was discovered in php-calendar ...)
+	TODO: check
+CVE-2017-6484 (Multiple Cross-Site Scripting (XSS) issues were discovered in ...)
+	TODO: check
+CVE-2017-6483 (Multiple Cross-Site Scripting (XSS) issues were discovered in ATutor ...)
+	TODO: check
+CVE-2017-6482 (Multiple Cross-Site Scripting (XSS) issues were discovered in OpenEMR ...)
+	TODO: check
+CVE-2017-6481 (Multiple Cross-Site Scripting (XSS) issues were discovered in phpipam ...)
+	TODO: check
+CVE-2017-6480 (groovel/cmsgroovel before 3.3.7-beta is vulnerable to a reflected XSS ...)
+	TODO: check
+CVE-2017-6479 (FenixHosting/fenix-open-source before 2017-03-04 is vulnerable to a ...)
+	TODO: check
+CVE-2017-6478 (paintballrefjosh/MaNGOSWebV4 before 4.0.8 is vulnerable to a reflected ...)
+	TODO: check
 CVE-2016-10243 [arbitrary code execution]
+	RESERVED
 	- texlive-bin <unfixed> (unimportant)
 	- texlive-base 2016.20161130-1
 	NOTE: https://scumjr.github.io/2016/11/28/pwning-coworkers-thanks-to-latex/
@@ -89,10 +128,10 @@
 	RESERVED
 CVE-2017-6447
 	RESERVED
-CVE-2017-6446
-	RESERVED
-CVE-2017-6445
-	RESERVED
+CVE-2017-6446 (XSS was discovered in Dotclear v2.11.2, affecting admin/blogs.php and ...)
+	TODO: check
+CVE-2017-6445 (The auto-update feature of Open Embedded Linux Entertainment Center ...)
+	TODO: check
 CVE-2017-6444
 	RESERVED
 CVE-2017-6443
@@ -3978,6 +4017,7 @@
 	[jessie] - w3m <no-dsa> (Minor issues)
 	[wheezy] - w3m <no-dsa> (Minor issues)
 CVE-2016-10134 (SQL injection vulnerability in Zabbix before 2.2.14 and 3.0 before ...)
+	{DSA-3802-1}
 	- zabbix 1:3.0.4+dfsg-1 (bug #850936)
 	NOTE: https://support.zabbix.com/browse/ZBX-11023
 	NOTE: http://www.openwall.com/lists/oss-security/2017/01/12/4




More information about the Secure-testing-commits mailing list