[Secure-testing-commits] r52009 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sun May 28 09:10:12 UTC 2017 

Author: sectracker
Date: 2017-05-28 09:10:12 +0000 (Sun, 28 May 2017)
New Revision: 52009

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-28 07:03:17 UTC (rev 52008)
+++ data/CVE/list	2017-05-28 09:10:12 UTC (rev 52009)
@@ -1,3 +1,5 @@
+CVE-2015-9059 (picocom before 2.0 has a command injection vulnerability in the 'send ...)
+	TODO: check
 CVE-2017-9242 (The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux ...)
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/232cd35d0804cc241eb887bb8d4d9b3b9881c64a
@@ -5,7 +7,7 @@
 	RESERVED
 CVE-2017-9240
 	RESERVED
-CVE-2016-10376 [possible to remote extract plain-text from encrypted sessions]
+CVE-2016-10376 (Gajim through 0.16.7 unconditionally implements the "XEP-0146: Remote ...)
 	- gajim 0.16.6-1.1 (bug #863445)
 	NOTE: https://dev.gajim.org/gajim/gajim/commit/cb65cfc5aed9efe05208ebbb7fb2d41fcf7253cc
 	NOTE: https://dev.gajim.org/gajim/gajim/issues/8378
@@ -29,8 +31,8 @@
 	RESERVED
 CVE-2017-9233
 	RESERVED
-CVE-2017-9232
-	RESERVED
+CVE-2017-9232 (Juju before 1.25.12, 2.0.x before 2.0.4, and 2.1.x before 2.1.3 uses ...)
+	TODO: check
 CVE-2017-9231
 	RESERVED
 CVE-2017-9230 (The Bitcoin Proof-of-Work algorithm does not consider a certain attack ...)
@@ -5309,10 +5311,10 @@
 	NOTE: assigned. Mark as unimportant as non-issue.
 CVE-2017-7297 (Rancher Labs rancher server 1.2.0+ is vulnerable to authenticated users ...)
 	NOT-FOR-US: Rancher Labs rancher server
-CVE-2017-7296
-	RESERVED
-CVE-2017-7295
-	RESERVED
+CVE-2017-7296 (An issue was discovered in Contiki Operating System 3.0. A Persistent ...)
+	TODO: check
+CVE-2017-7295 (An issue was discovered in Contiki Operating System 3.0. A ...)
+	TODO: check
 CVE-2017-7293 (The Dolby DAX2 and DAX3 API services are vulnerable to a privilege ...)
 	NOT-FOR-US: Dolby
 CVE-2017-7294 (The vmw_surface_define_ioctl function in ...)
@@ -10202,7 +10204,7 @@
 	NOTE: Fixed by: http://svn.apache.org/r1743326
 	NOTE: Similar issue to CVE-2015-0250
 CVE-2017-5661 (In Apache FOP before 2.2, files lying on the filesystem of the server ...)
-	{DLA-927-1}
+	{DSA-3864-1 DLA-927-1}
 	- fop 1:2.1-6 (bug #860567)
 	NOTE: http://www.openwall.com/lists/oss-security/2017/04/18/2
 	NOTE: Upstream bug: https://issues.apache.org/jira/browse/FOP-2668

More information about the Secure-testing-commits mailing list