[Secure-testing-commits] r56635 - data/CVE

Thu Oct 12 09:10:39 UTC 2017

Author: sectracker
Date: 2017-10-12 09:10:38 +0000 (Thu, 12 Oct 2017)
New Revision: 56635

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2017-10-12 07:16:13 UTC (rev 56634)
+++ data/CVE/list	2017-10-12 09:10:38 UTC (rev 56635)
@@ -1,3 +1,43 @@
+CVE-2017-15288
+	RESERVED
+CVE-2017-15287
+	RESERVED
+CVE-2017-15286 (SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in ...)
+	TODO: check
+CVE-2017-15285 (X-Cart 5.2.23, 5.3.1.9, 5.3.2.13, and 5.3.3 is vulnerable to Remote ...)
+	TODO: check
+CVE-2017-15284 (Cross-Site Scripting exists in OctoberCMS 1.0.425 (aka Build 425), ...)
+	TODO: check
+CVE-2017-15283
+	RESERVED
+CVE-2017-15282
+	RESERVED
+CVE-2017-15281 (ReadPSDImage in coders/psd.c in ImageMagick 7.0.7-6 allows remote ...)
+	TODO: check
+CVE-2017-15280 (XML external entity (XXE) vulnerability in Umbraco CMS before 7.7.3 ...)
+	TODO: check
+CVE-2017-15279 (Cross-site scripting (XSS) vulnerability in Umbraco CMS before 7.7.3 ...)
+	TODO: check
+CVE-2017-15278 (Cross-Site Scripting (XSS) was discovered in TeamPass before 2.1.27.9. ...)
+	TODO: check
+CVE-2017-15277 (ReadGIFImage in coders/gif.c in ImageMagick 7.0.6-1 and GraphicsMagick ...)
+	TODO: check
+CVE-2017-15276
+	RESERVED
+CVE-2017-15275
+	RESERVED
+CVE-2017-15274 (security/keys/keyctl.c in the Linux kernel before 4.11.5 does not ...)
+	TODO: check
+CVE-2017-15273
+	RESERVED
+CVE-2017-15272
+	RESERVED
+CVE-2017-15271
+	RESERVED
+CVE-2017-15270
+	RESERVED
+CVE-2017-15269
+	RESERVED
 CVE-2017-15268 [I/O: potential memory exhaustion via websock connection to VNC]
 	RESERVED
 	- qemu <unfixed>
@@ -8653,8 +8693,7 @@
 	RESERVED
 CVE-2017-12193
 	RESERVED
-CVE-2017-12192 [NULL pointer dereference due to KEYCTL_READ on negative key]
-	RESERVED
+CVE-2017-12192 (A vulnerability was found in the Key Management sub component of the ...)
 	- linux <unfixed>
 	[wheezy] - linux <not-affected> (Vulnerable code introduced later)
 	NOTE: Fixed by: https://git.kernel.org/linus/37863c43b2c6464f252862bf2e9768264e961678 (4.14-rc3)


