[Secure-testing-commits] r58135 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Thu Nov 30 09:10:14 UTC 2017 

Author: sectracker
Date: 2017-11-30 09:10:14 +0000 (Thu, 30 Nov 2017)
New Revision: 58135

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-11-30 07:48:36 UTC (rev 58134)
+++ data/CVE/list	2017-11-30 09:10:14 UTC (rev 58135)
@@ -1,3 +1,5 @@
+CVE-2017-17067 (Splunk Web in Splunk Enterprise 7.0.x before 7.0.0.1, 6.6.x before ...)
+	TODO: check
 CVE-2017-17066
 	RESERVED
 CVE-2017-17065
@@ -1575,6 +1577,7 @@
 	[wheezy] - libsndfile <no-dsa> (Minor issue)
 	NOTE: https://github.com/erikd/libsndfile/issues/341
 CVE-2017-16944 (The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 ...)
+	{DSA-4053-1}
 	- exim4 4.89-13 (bug #882671)
 	[jessie] - exim4 <not-affected> (ESMTP CHUNKING extension introduced in 4.88)
 	[wheezy] - exim4 <not-affected> (ESMTP CHUNKING extension introduced in 4.88)
@@ -1583,6 +1586,7 @@
 	NOTE: https://lists.exim.org/lurker/message/20171125.034842.d1d75cac.en.html
 	NOTE: 4.89-10 adds a workaround which disables the affected code by default
 CVE-2017-16943 (The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 ...)
+	{DSA-4053-1}
 	- exim4 4.89-12 (bug #882648)
 	[jessie] - exim4 <not-affected> (ESMTP CHUNKING extension introduced in 4.88)
 	[wheezy] - exim4 <not-affected> (ESMTP CHUNKING extension introduced in 4.88)
@@ -1745,6 +1749,7 @@
 CVE-2017-1000406
 	NOT-FOR-US: OpenDayLight
 CVE-2017-1000405 ["Dirty COW" variant on transparent huge pages]
+	RESERVED
 	- linux <unfixed>
 	NOTE: Fixed by: https://git.kernel.org/linus/a8f97366452ed491d13cf1e44241bc0b5740b1f0
 	NOTE: http://www.openwall.com/lists/oss-security/2017/11/30/1
@@ -8650,8 +8655,8 @@
 	RESERVED
 CVE-2017-14592
 	RESERVED
-CVE-2017-14591
-	RESERVED
+CVE-2017-14591 (Atlassian Fisheye and Crucible versions less than 4.4.3 and version ...)
+	TODO: check
 CVE-2017-14590
 	RESERVED
 CVE-2017-14589
@@ -9762,12 +9767,12 @@
 	RESERVED
 CVE-2017-14199
 	RESERVED
-CVE-2017-14198
-	RESERVED
-CVE-2017-14197
-	RESERVED
-CVE-2017-14196
-	RESERVED
+CVE-2017-14198 (An issue was discovered in Squiz Matrix before 5.3.6.1 and 5.4.x before ...)
+	TODO: check
+CVE-2017-14197 (An issue was discovered in Squiz Matrix before 5.3.6.1 and 5.4.x before ...)
+	TODO: check
+CVE-2017-14196 (An issue was discovered in Squiz Matrix from 5.3 through to 5.3.6.1 and ...)
+	TODO: check
 CVE-2017-14195 (The call_msg function in controllers/Form.php in dayrui FineCms 5.0.11 ...)
 	NOT-FOR-US: dayrui FineCms
 CVE-2017-14194 (The out function in controllers/member/Login.php in dayrui FineCms ...)

More information about the Secure-testing-commits mailing list