[Secure-testing-commits] r57094 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sat Oct 28 21:10:12 UTC 2017 

Author: sectracker
Date: 2017-10-28 21:10:12 +0000 (Sat, 28 Oct 2017)
New Revision: 57094

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-28 20:53:51 UTC (rev 57093)
+++ data/CVE/list	2017-10-28 21:10:12 UTC (rev 57094)
@@ -1,3 +1,5 @@
+CVE-2017-15952
+	RESERVED
 CVE-2017-15951 (The KEYS subsystem in the Linux kernel before 4.13.10 does not ...)
 	- linux <unfixed>
 	NOTE: Fixed by: https://git.kernel.org/linus/363b02dab09b3226f3bd1420dad9c72b79a42a76 (v4.14-rc6)
@@ -35,7 +37,7 @@
 	[wheezy] - binutils <ignored> (Minor issue)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=22209
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=1b86808a86077722ee4f42ff97f836b12420bb2a
- 	NOTE: https://blogs.gentoo.org/ago/2017/10/24/binutils-invalid-memory-read-in-find_abstract_instance_name-dwarf2-c/
+	NOTE: https://blogs.gentoo.org/ago/2017/10/24/binutils-invalid-memory-read-in-find_abstract_instance_name-dwarf2-c/
 CVE-2017-15937 (Artica Pandora FMS version 7.0 leaks a full installation pathname via ...)
 	NOT-FOR-US: Artica Pandora FMS
 CVE-2017-15936 (In Artica Pandora FMS version 7.0, an Attacker with write Permission ...)
@@ -7411,11 +7413,11 @@
 CVE-2017-13091
 	RESERVED
 CVE-2017-13090 (The retr.c:fd_read_body() function is called when processing OK ...)
-	{DLA-1149-1}
+	{DSA-4008-1 DLA-1149-1}
 	- wget 1.19.2-1 (bug #879957)
 	NOTE: http://git.savannah.gnu.org/cgit/wget.git/commit/?id=ba6b44f6745b14dce414761a8e4b35d31b176bba
 CVE-2017-13089 (The http.c:skip_short_body() function is called in some circumstances, ...)
-	{DLA-1149-1}
+	{DSA-4008-1 DLA-1149-1}
 	- wget 1.19.2-1 (bug #879957)
 	NOTE: http://git.savannah.gnu.org/cgit/wget.git/commit/?id=d892291fb8ace4c3b734ea5125770989c215df3f
 CVE-2017-13088 (Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows ...)
@@ -25750,7 +25752,7 @@
 	NOT-FOR-US: GamePanelX-V3
 CVE-2017-7204 (A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. The ...)
 	NOT-FOR-US: imdbphp
-CVE-2017-7203 (A Cross-Site Scripting (XSS) was discovered in ZoneMinder 1.30.2. The ...)
+CVE-2017-7203 (A Cross-Site Scripting (XSS) was discovered in ZoneMinder before ...)
 	- zoneminder 1.30.4+dfsg-1 (bug #858329)
 	[wheezy] - zoneminder <no-dsa> (Minor issue)
 	NOTE: https://github.com/ZoneMinder/ZoneMinder/issues/1797

More information about the Secure-testing-commits mailing list