[Secure-testing-commits] r50216 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Fri Mar 31 09:10:19 UTC 2017
Author: sectracker
Date: 2017-03-31 09:10:18 +0000 (Fri, 31 Mar 2017)
New Revision: 50216
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-31 06:53:03 UTC (rev 50215)
+++ data/CVE/list 2017-03-31 09:10:18 UTC (rev 50216)
@@ -1,3 +1,45 @@
+CVE-2017-7363 (Pixie 1.0.4 allows an admin/index.php s=publish&m=module&x= XSS ...)
+ TODO: check
+CVE-2017-7362 (Pixie 1.0.4 allows an admin/index.php s=publish&m=dynamic&x= XSS ...)
+ TODO: check
+CVE-2017-7361 (Pixie 1.0.4 allows an admin/index.php s=publish&m=static&x= XSS ...)
+ TODO: check
+CVE-2017-7360 (Pixie 1.0.4 allows an admin/index.php s=settings&x= XSS attack. ...)
+ TODO: check
+CVE-2017-7359 (Pixie 1.0.4 allows an admin/index.php s=login&m= XSS attack. ...)
+ TODO: check
+CVE-2017-7358
+ RESERVED
+CVE-2017-7357
+ RESERVED
+CVE-2017-7356
+ RESERVED
+CVE-2017-7355
+ RESERVED
+CVE-2017-7354
+ RESERVED
+CVE-2017-7353
+ RESERVED
+CVE-2017-7352
+ RESERVED
+CVE-2017-7351
+ RESERVED
+CVE-2017-7350
+ RESERVED
+CVE-2017-7349
+ RESERVED
+CVE-2017-7348
+ RESERVED
+CVE-2017-7347
+ RESERVED
+CVE-2017-7346 (The vmw_gb_surface_define_ioctl function in ...)
+ TODO: check
+CVE-2017-7345
+ RESERVED
+CVE-2016-10311
+ RESERVED
+CVE-2016-10310
+ RESERVED
CVE-2017-7344
RESERVED
CVE-2017-7343
@@ -68,8 +110,7 @@
RESERVED
CVE-2017-7310 (A buffer overflow vulnerability in Import Command in Sync Breeze ...)
NOT-FOR-US: Sync Breeze Enterprise
-CVE-2017-7309
- RESERVED
+CVE-2017-7309 (A cross-site scripting (XSS) vulnerability in the MantisBT ...)
- mantis <removed>
NOTE: http://www.openwall.com/lists/oss-security/2017/03/30/4
CVE-2017-7307
@@ -472,8 +513,7 @@
NOT-FOR-US: Eclipse tinydtls for Eclipse IoT
CVE-2017-7242 (Multiple Cross-Site Scripting (XSS) were discovered in admin/modules ...)
NOT-FOR-US: SLiMS
-CVE-2017-7241
- RESERVED
+CVE-2017-7241 (A cross-site scripting (XSS) vulnerability in the MantisBT Move ...)
- mantis <removed>
NOTE: http://www.openwall.com/lists/oss-security/2017/03/30/4
CVE-2017-7240 (An issue was discovered on Miele Professional PG 8528 PST10 devices. ...)
@@ -1117,8 +1157,7 @@
RESERVED
CVE-2017-6974
RESERVED
-CVE-2017-6973
- RESERVED
+CVE-2017-6973 (A cross-site scripting (XSS) vulnerability in the MantisBT ...)
- mantis <removed>
NOTE: http://www.openwall.com/lists/oss-security/2017/03/30/4
CVE-2017-6972 (Unspecified vulnerability in AlienVault USM and OSSIM before 5.3.7 and ...)
@@ -13188,8 +13227,7 @@
CVE-2017-2648
RESERVED
NOT-FOR-US: jenkins-ssh-slaves-plugin
-CVE-2017-2647
- RESERVED
+CVE-2017-2647 (The KEYS subsystem in the Linux kernel before 3.18 allows local users ...)
- linux 4.0.2-1
NOTE: Fixed by: https://git.kernel.org/linus/c06cfb08b88dfbe13be44a69ae2fdc3a7c902d81 (v3.18-rc1)
CVE-2017-2646
@@ -19786,8 +19824,8 @@
RESERVED
CVE-2016-9320
RESERVED
-CVE-2016-9319
- RESERVED
+CVE-2016-9319 (There is Missing SSL Certificate Validation in the Trend Micro ...)
+ TODO: check
CVE-2016-9318 (libxml2 2.9.4 and earlier, as used in XMLSec 1.2.23 and earlier and ...)
- libxml2 <unfixed> (bug #844581)
[stretch] - libxml2 <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list