[Secure-testing-commits] r49800 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Mar 19 18:06:55 UTC 2017
Author: jmm
Date: 2017-03-19 18:06:55 +0000 (Sun, 19 Mar 2017)
New Revision: 49800
Modified:
data/CVE/list
Log:
new android-platform-system-core
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-19 18:01:26 UTC (rev 49799)
+++ data/CVE/list 2017-03-19 18:06:55 UTC (rev 49800)
@@ -37099,7 +37099,7 @@
CVE-2016-3886 (systemui/statusbar/phone/QuickStatusBarHeader.java in the System UI ...)
NOT-FOR-US: Android
CVE-2016-3885 (debuggerd/debuggerd.cpp in Debuggerd in Android 5.0.x before 5.0.2, ...)
- TODO: check
+ - android-platform-system-core <unfixed> (bug #858177)
CVE-2016-3884 (server/notification/NotificationManagerService.java in the ...)
NOT-FOR-US: Android
CVE-2016-3883 (internal/telephony/SMSDispatcher.java in Telephony in Android 4.x ...)
@@ -37110,13 +37110,13 @@
- libvpx 1.6.1-1
NOTE: probably fixed earlier, but this was the version checked
CVE-2016-3880 (Multiple buffer overflows in rtsp/ASessionDescription.cpp in ...)
- TODO: check
+ NOT-FOR-US: libstagefright
CVE-2016-3879 (arm-wt-22k/lib_src/eas_mdls.c in mediaserver in Android 4.x before ...)
NOT-FOR-US: Android Mediaserver
CVE-2016-3878 (decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-09-01 ...)
NOT-FOR-US: Android Mediaserver
CVE-2016-3877 (Unspecified vulnerability in Android before 2016-09-01 has unknown ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2016-3876 (providers/settings/SettingsProvider.java in Android 6.x before ...)
NOT-FOR-US: Android
CVE-2016-3875 (server/wm/WindowManagerService.java in Android 6.x before 2016-09-01 ...)
@@ -55322,7 +55322,7 @@
CVE-2015-6607 (SQLite before 3.8.9, as used in Android before 5.1.1 LMY48T, allows ...)
TODO: check
CVE-2015-6606 (The Secure Element Evaluation Kit (aka SEEK or SmartCard API) plugin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2015-6605 (mediaserver in Android before 5.1.1 LMY48T allows attackers to cause a ...)
NOT-FOR-US: mediaserver in Android
CVE-2015-6604 (libstagefright in Android before 5.1.1 LMY48T allows remote attackers ...)
More information about the Secure-testing-commits
mailing list