[Secure-testing-commits] r49868 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Tue Mar 21 09:10:19 UTC 2017 

Author: sectracker
Date: 2017-03-21 09:10:19 +0000 (Tue, 21 Mar 2017)
New Revision: 49868

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-03-21 06:09:03 UTC (rev 49867)
+++ data/CVE/list	2017-03-21 09:10:19 UTC (rev 49868)
@@ -1,4 +1,32 @@
-CVE-2017-7200 [API copy_from reveals network details]
+CVE-2017-7213
+	RESERVED
+CVE-2017-7212
+	RESERVED
+CVE-2017-7211
+	RESERVED
+CVE-2017-7210 (objdump in GNU Binutils 2.28 is vulnerable to multiple heap-based ...)
+	TODO: check
+CVE-2017-7209 (The dump_section_as_bytes function in readelf in GNU Binutils 2.28 ...)
+	TODO: check
+CVE-2017-7208 (The decode_residual function in libavcodec in libav 9.21 allows remote ...)
+	TODO: check
+CVE-2017-7207 (The mem_get_bits_rectangle function in Artifex Software, Inc. ...)
+	TODO: check
+CVE-2017-7206 (The ff_h2645_extract_rbsp function in libavcodec in libav 9.21 allows ...)
+	TODO: check
+CVE-2017-7205 (A Cross-Site Scripting (XSS) was discovered in GamePanelX-V3 3.0.12. ...)
+	TODO: check
+CVE-2017-7204 (A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. The ...)
+	TODO: check
+CVE-2017-7203 (A Cross-Site Scripting (XSS) was discovered in ZoneMinder 1.30.2. The ...)
+	TODO: check
+CVE-2017-7202 (Multiple Cross-Site Scripting (XSS) were discovered in SLiMS 7 Cendana ...)
+	TODO: check
+CVE-2017-7201
+	RESERVED
+CVE-2017-7199
+	RESERVED
+CVE-2017-7200 (An SSRF issue was discovered in OpenStack Glance before Newton. The ...)
 	- glance <unfixed>
 	NOTE: https://wiki.openstack.org/wiki/OSSN/OSSN-0078
 	NOTE: https://bugs.launchpad.net/ossn/+bug/1606495
@@ -57684,7 +57712,8 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2015/08/01/5
 	NOTE: Introduced by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=60545d0d4610b02e55f65d141c95b18ccf855b6e (v3.11-rc1)
 	NOTE: Fixed by: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f15133df088ecadd141ea1907f2c96df67c729f0 (v4.1-rc3)
-CVE-2014-9939 [Stack buffer overflow when printing bad bytes in Intel Hex objects]
+CVE-2014-9939 (ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow ...)
+	{DLA-552-1 DLA-324-1}
 	- binutils 2.25.90.20151125-1
 	[jessie] - binutils <no-dsa> (Minor issue)
 	- gdb 7.10-1 (unimportant)

More information about the Secure-testing-commits mailing list