[Secure-testing-commits] r51637 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon May 15 09:10:12 UTC 2017
Author: sectracker
Date: 2017-05-15 09:10:12 +0000 (Mon, 15 May 2017)
New Revision: 51637
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-15 07:36:59 UTC (rev 51636)
+++ data/CVE/list 2017-05-15 09:10:12 UTC (rev 51637)
@@ -1,3 +1,13 @@
+CVE-2017-8932
+ RESERVED
+CVE-2017-8931
+ RESERVED
+CVE-2017-8930 (Multiple cross-site request forgery (CSRF) vulnerabilities in Simple ...)
+ TODO: check
+CVE-2017-8929 (The sized_string_cmp function in libyara/sizedstr.c in YARA 3.5.0 ...)
+ TODO: check
+CVE-2017-8928 (mailcow 0.14, as used in "mailcow: dockerized" and other products, has ...)
+ TODO: check
CVE-2017-XXXX [deluge-webui: directory traversal attack vulnerability]
- deluge <unfixed> (bug #862611)
NOTE: http://dev.deluge-torrent.org/wiki/ReleaseNotes/1.3.15
@@ -3795,8 +3805,7 @@
CVE-2017-7488
RESERVED
NOT-FOR-US: authconfig in Red Hat
-CVE-2017-7487
- RESERVED
+CVE-2017-7487 (The ipxitf_ioctl function in net/ipx/af_ipx.c in the Linux kernel ...)
- linux <unfixed>
NOTE: Fixed by: https://git.kernel.org/linus/ee0d8d8482345ff97a75a7d747efc309f13b0d80
CVE-2017-7486 (PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in ...)
@@ -4921,8 +4930,8 @@
[jessie] - nova <not-affected> (Vulnerable code not present)
[wheezy] - nova <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://bugs.launchpad.net/nova/+bug/1673569
-CVE-2017-7213
- RESERVED
+CVE-2017-7213 (Zoho ManageEngine Desktop Central before build 100082 allows remote ...)
+ TODO: check
CVE-2017-7212
RESERVED
CVE-2017-7211
More information about the Secure-testing-commits
mailing list