[Secure-testing-commits] r49627 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Mon Mar 13 09:10:13 UTC 2017 

Author: sectracker
Date: 2017-03-13 09:10:12 +0000 (Mon, 13 Mar 2017)
New Revision: 49627

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-03-13 08:13:41 UTC (rev 49626)
+++ data/CVE/list	2017-03-13 09:10:12 UTC (rev 49627)
@@ -1,3 +1,69 @@
+CVE-2017-6853
+	RESERVED
+CVE-2017-6852
+	RESERVED
+CVE-2017-6851
+	RESERVED
+CVE-2017-6850
+	RESERVED
+CVE-2017-6849
+	RESERVED
+CVE-2017-6848
+	RESERVED
+CVE-2017-6847
+	RESERVED
+CVE-2017-6846
+	RESERVED
+CVE-2017-6845
+	RESERVED
+CVE-2017-6844
+	RESERVED
+CVE-2017-6843
+	RESERVED
+CVE-2017-6842
+	RESERVED
+CVE-2017-6841
+	RESERVED
+CVE-2017-6840
+	RESERVED
+CVE-2017-6839
+	RESERVED
+CVE-2017-6838
+	RESERVED
+CVE-2017-6837
+	RESERVED
+CVE-2017-6836
+	RESERVED
+CVE-2017-6835
+	RESERVED
+CVE-2017-6834
+	RESERVED
+CVE-2017-6833
+	RESERVED
+CVE-2017-6832
+	RESERVED
+CVE-2017-6831
+	RESERVED
+CVE-2017-6830
+	RESERVED
+CVE-2017-6829
+	RESERVED
+CVE-2017-6828
+	RESERVED
+CVE-2017-6827
+	RESERVED
+CVE-2016-10251
+	RESERVED
+CVE-2016-10250
+	RESERVED
+CVE-2016-10249
+	RESERVED
+CVE-2016-10248
+	RESERVED
+CVE-2016-10247
+	RESERVED
+CVE-2016-10246
+	RESERVED
 CVE-2017-XXXX [Server certificates are not verified]
 	- profanity <unfixed> (bug #857546)
 	NOTE: https://github.com/boothj5/profanity/issues/280
@@ -1682,8 +1748,8 @@
 	RESERVED
 CVE-2017-6181
 	RESERVED
-CVE-2017-6180
-	RESERVED
+CVE-2017-6180 (Keekoon KK002 devices 1.8.12 HD have a Cross Site Request Forgery ...)
+	TODO: check
 CVE-2017-6179
 	RESERVED
 CVE-2017-6178
@@ -1887,10 +1953,10 @@
 	RESERVED
 CVE-2017-6082
 	RESERVED
-CVE-2017-6081
-	RESERVED
-CVE-2017-6080
-	RESERVED
+CVE-2017-6081 (A CSRF issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, ...)
+	TODO: check
+CVE-2017-6080 (An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and ...)
+	TODO: check
 CVE-2017-6079
 	RESERVED
 CVE-2017-6078 (FastStone MaxView 3.0 and 3.1 allows user-assisted attackers to cause a ...)
@@ -2364,8 +2430,8 @@
 	[jessie] - postfixadmin <not-affected> (Vulnerable code not present)
 	[wheezy] - postfixadmin <not-affected> (Vulnerable code not present)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/02/07/6
-CVE-2017-5929
-	RESERVED
+CVE-2017-5929 (QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting ...)
+	TODO: check
 CVE-2017-5928 (The W3C High Resolution Time API, as implemented in various web ...)
 	NOT-FOR-US: Design limitation of W3C High Resolution Time API
 CVE-2017-5927 (Page table walks conducted by the MMU during virtual to physical ...)
@@ -3130,10 +3196,10 @@
 	NOT-FOR-US: Revive Adserver
 CVE-2017-5830 (Revive Adserver before 4.0.1 allows remote attackers to execute ...)
 	NOT-FOR-US: Revive Adserver
-CVE-2017-5675
-	RESERVED
-CVE-2017-5674
-	RESERVED
+CVE-2017-5675 (A command-injection vulnerability exists in a web application on a ...)
+	TODO: check
+CVE-2017-5674 (A vulnerability in a custom-built GoAhead web server used on Foscam, ...)
+	TODO: check
 CVE-2017-5673
 	RESERVED
 CVE-2017-5672
@@ -3243,12 +3309,12 @@
 	RESERVED
 CVE-2017-5622
 	RESERVED
-CVE-2017-5621
-	RESERVED
-CVE-2017-5620
-	RESERVED
-CVE-2017-5619
-	RESERVED
+CVE-2017-5621 (An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and ...)
+	TODO: check
+CVE-2017-5620 (An XSS issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, ...)
+	TODO: check
+CVE-2017-5619 (An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and ...)
+	TODO: check
 CVE-2017-5609 (SQL injection vulnerability in include/functions_entries.inc.php in ...)
 	- serendipity <removed>
 CVE-2017-5607
@@ -54350,8 +54416,8 @@
 	NOT-FOR-US: Siemens RUGGEDCOM ROS
 CVE-2015-6672 (Cross-site scripting (XSS) vulnerability in the Administrative Web ...)
 	NOT-FOR-US: Citrix
-CVE-2015-6671
-	RESERVED
+CVE-2015-6671 (Open edX edx-platform before 2015-08-25 requires use of the database ...)
+	TODO: check
 CVE-2015-6670 (ownCloud Server before 7.0.8, 8.0.x before 8.0.6, and 8.1.x before ...)
 	{DSA-3373-1}
 	- owncloud 7.0.8~dfsg-1
@@ -60642,12 +60708,12 @@
 	NOT-FOR-US: WordPress plugin se-html5-album-audio-player
 CVE-2015-4413 (Cross-site scripting (XSS) vulnerability in the new_fb_sign_button ...)
 	NOT-FOR-US: WordPress plugin nextend-facebook-connect
-CVE-2015-4409
-	RESERVED
-CVE-2015-4408
-	RESERVED
-CVE-2015-4407
-	RESERVED
+CVE-2015-4409 (Buffer overflow on Hikvision NVR DS-76xxNI-E1/2 and DS-77xxxNI-E4 ...)
+	TODO: check
+CVE-2015-4408 (Buffer overflow on Hikvision NVR DS-76xxNI-E1/2 and DS-77xxxNI-E4 ...)
+	TODO: check
+CVE-2015-4407 (Buffer overflow on Hikvision NVR DS-76xxNI-E1/2 and DS-77xxxNI-E4 ...)
+	TODO: check
 CVE-2015-4406
 	RESERVED
 CVE-2015-4405

More information about the Secure-testing-commits mailing list