[Secure-testing-commits] r56735 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Mon Oct 16 09:10:13 UTC 2017


Author: sectracker
Date: 2017-10-16 09:10:13 +0000 (Mon, 16 Oct 2017)
New Revision: 56735

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-16 08:28:26 UTC (rev 56734)
+++ data/CVE/list	2017-10-16 09:10:13 UTC (rev 56735)
@@ -1,3 +1,31 @@
+CVE-2017-15381
+	RESERVED
+CVE-2017-15380
+	RESERVED
+CVE-2017-15379
+	RESERVED
+CVE-2017-15378
+	RESERVED
+CVE-2017-15377
+	RESERVED
+CVE-2017-15376 (The TELNET service in Mobatek MobaXterm 10.4 does not require ...)
+	TODO: check
+CVE-2017-15375 (Multiple client-side cross site scripting vulnerabilities have been ...)
+	TODO: check
+CVE-2017-15374 (Shopware v5.2.5 - v5.3 is vulnerable to cross site scripting in the ...)
+	TODO: check
+CVE-2017-15373 (E-Sic 1.0 allows SQL injection via the q parameter to ...)
+	TODO: check
+CVE-2017-15372 (There is a stack-based buffer overflow in the ...)
+	TODO: check
+CVE-2017-15371 (There is a reachable assertion abort in the function ...)
+	TODO: check
+CVE-2017-15370 (There is a heap-based buffer overflow in the ImaExpandS function of ...)
+	TODO: check
+CVE-2017-15369 (The build_filter_chain function in pdf/pdf-stream.c in Artifex MuPDF ...)
+	TODO: check
+CVE-2017-15368 (The wasm_dis function in libr/asm/arch/wasm/wasm.c in radare2 2.0.0 ...)
+	TODO: check
 CVE-2017-15367
 	RESERVED
 CVE-2017-15366
@@ -8,8 +36,8 @@
 	NOT-FOR-US: ccsv
 CVE-2017-15363 (Directory traversal vulnerability in ...)
 	NOT-FOR-US: Luracast Restler
-CVE-2017-15362
-	RESERVED
+CVE-2017-15362 (osTicket 1.10.1 allows arbitrary client-side JavaScript code execution ...)
+	TODO: check
 CVE-2017-15361
 	RESERVED
 CVE-2017-15360 (PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored ...)
@@ -126,10 +154,10 @@
 	NOT-FOR-US: NexusPHP
 CVE-2017-15304 (/bin/login.php in the Web Panel on the Airtame HDMI dongle with ...)
 	NOT-FOR-US:  Airtame HDMI dongle
-CVE-2017-15303
-	RESERVED
-CVE-2017-15302
-	RESERVED
+CVE-2017-15303 (In CPUID CPU-Z before 1.43, there is an arbitrary memory write that ...)
+	TODO: check
+CVE-2017-15302 (In CPUID CPU-Z through 1.81, there are improper access rights to a ...)
+	TODO: check
 CVE-2017-15301
 	RESERVED
 CVE-2017-15300 (The miner statistics HTTP API in EWBF Cuda Zcash Miner Version 0.3.4b ...)




More information about the Secure-testing-commits mailing list