[Secure-testing-commits] r51356 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Fri May 5 21:10:16 UTC 2017 

Author: sectracker
Date: 2017-05-05 21:10:16 +0000 (Fri, 05 May 2017)
New Revision: 51356

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-05 17:59:44 UTC (rev 51355)
+++ data/CVE/list	2017-05-05 21:10:16 UTC (rev 51356)
@@ -1,21 +1,31 @@
-CVE-2017-8796
+CVE-2017-8801 (Trend Micro OfficeScan 11.0 before SP1 CP 6325 (with Agent Module Build ...)
+	TODO: check
+CVE-2017-8800
 	RESERVED
-CVE-2017-8795
+CVE-2017-8799 (Untrusted input execution via igetwild in all iRODS versions before ...)
+	TODO: check
+CVE-2017-8798
 	RESERVED
-CVE-2017-8794
+CVE-2017-8797
 	RESERVED
-CVE-2017-8793
-	RESERVED
-CVE-2017-8792
-	RESERVED
-CVE-2017-8791
-	RESERVED
-CVE-2017-8790
-	RESERVED
-CVE-2017-8789
-	RESERVED
-CVE-2017-8788
-	RESERVED
+CVE-2017-8796 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
+CVE-2017-8795 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
+CVE-2017-8794 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
+CVE-2017-8793 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
+CVE-2017-8792 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
+CVE-2017-8791 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
+CVE-2017-8790 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
+CVE-2017-8789 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. A ...)
+	TODO: check
+CVE-2017-8788 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
 CVE-2017-8787 (The PoDoFo::PdfXRefStreamParserObject::ReadXRefStreamEntry function in ...)
 	- libpodofo <unfixed> (bug #861738)
 CVE-2017-8786 (pcre2test.c in PCRE2 10.23 allows remote attackers to cause a denial of ...)
@@ -80,8 +90,8 @@
 	NOT-FOR-US: GenixCMS
 CVE-2017-8761
 	RESERVED
-CVE-2017-8760
-	RESERVED
+CVE-2017-8760 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
 CVE-2017-8759
 	RESERVED
 CVE-2017-8758
@@ -1142,10 +1152,10 @@
 	NOT-FOR-US: Avast Antivirus
 CVE-2017-8306
 	RESERVED
-CVE-2017-8304
-	RESERVED
-CVE-2017-8303
-	RESERVED
+CVE-2017-8304 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
+CVE-2017-8303 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
+	TODO: check
 CVE-2017-8302 (Mura CMS 7.0.6967 allows admin/?muraAction= XSS attacks, related to ...)
 	NOT-FOR-US: Mura CMS
 CVE-2017-8300
@@ -1656,8 +1666,8 @@
 	NOT-FOR-US: concrete5
 CVE-2017-8081 (Poor cryptographic salt initialization in ...)
 	NOT-FOR-US: GetSimple CMS
-CVE-2017-8080
-	RESERVED
+CVE-2017-8080 (Atlassian Hipchat Server before 2.2.4 allows remote authenticated ...)
+	TODO: check
 CVE-2010-5329 (The video_usercopy function in drivers/media/video/v4l2-ioctl.c in the ...)
 	- linux <not-affected> (Fixed before src:linux-2.6 -> src:linux rename)
 	NOTE: Fixed by: https://git.kernel.org/linus/fc0a80798576f80ca10b3f6c9c7097f12fd1d64e (v2.6.39-rc2)
@@ -20680,8 +20690,8 @@
 	RESERVED
 CVE-2017-1157
 	RESERVED
-CVE-2017-1156
-	RESERVED
+CVE-2017-1156 (IBM WebSphere Portal 8.5 and 9.0 could allow a remote attacker to ...)
+	TODO: check
 CVE-2017-1155 (IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could ...)
 	NOT-FOR-US: IBM
 CVE-2017-1154 (IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could ...)
@@ -21361,10 +21371,10 @@
 	NOT-FOR-US: IBM
 CVE-2016-9693 (IBM Business Process Manager 7.5, 8.0, and 8.5 has a file download ...)
 	NOT-FOR-US: IBM
-CVE-2016-9692
-	RESERVED
-CVE-2016-9691
-	RESERVED
+CVE-2016-9692 (IBM WebSphere Cast Iron Solution 7.0.0 and 7.5.0.0 is vulnerable to ...)
+	TODO: check
+CVE-2016-9691 (IBM WebSphere Cast Iron Solution 7.0.0 and 7.5.0.0 is vulnerable to a ...)
+	TODO: check
 CVE-2016-9690
 	RESERVED
 CVE-2016-9689
@@ -25443,8 +25453,8 @@
 	NOT-FOR-US: IBM
 CVE-2016-8917 (IBM Sterling Order Management 9.2 - 9.5 is vulnerable to cross-site ...)
 	NOT-FOR-US: IBM
-CVE-2016-8916
-	RESERVED
+CVE-2016-8916 (IBM Tivoli Storage Manager 5.5, 6.1-6.4, and 7.1 stores password ...)
+	TODO: check
 CVE-2016-8915 (IBM WebSphere MQ 8.0 could allow an authenticated user with access to ...)
 	NOT-FOR-US: IBM
 CVE-2016-8914
@@ -31891,8 +31901,8 @@
 CVE-2016-6878 (The Curve25519 code in botan before 1.11.31, on systems without a ...)
 	- botan1.10 <not-affected> (Introduced in 1.11.12)
 	NOTE: Introduced in 1.11.12, fixed in 1.11.31
-CVE-2016-6877
-	RESERVED
+CVE-2016-6877 (Citrix XenMobile Server before 10.5.0.24 allows man-in-the-middle ...)
+	TODO: check
 CVE-2016-6876 (The RESOLV::lookup iRule command in F5 BIG-IP LTM, APM, ASM, and Link ...)
 	NOT-FOR-US: F5
 CVE-2016-6869
@@ -54343,8 +54353,8 @@
 	RESERVED
 CVE-2016-0256
 	RESERVED
-CVE-2016-0255
-	RESERVED
+CVE-2016-0255 (IBM Marketing Platform 9.1 and 10.0 is vulnerable to stored cross-site ...)
+	TODO: check
 CVE-2016-0254
 	RESERVED
 CVE-2016-0253

More information about the Secure-testing-commits mailing list