[Secure-testing-commits] r57131 - data/CVE

Mon Oct 30 09:10:18 UTC 2017

Author: sectracker
Date: 2017-10-30 09:10:18 +0000 (Mon, 30 Oct 2017)
New Revision: 57131

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2017-10-30 09:05:11 UTC (rev 57130)
+++ data/CVE/list	2017-10-30 09:10:18 UTC (rev 57131)
@@ -1,3 +1,5 @@
+CVE-2017-16229
+	RESERVED
 CVE-2017-16228 (Dulwich before 0.18.5, when an SSH subprocess is used, allows remote ...)
 	- dulwich 0.18.5-1
 	[stretch] - dulwich <no-dsa> (Minor issue)
@@ -1548,6 +1550,7 @@
 CVE-2017-15691
 	RESERVED
 CVE-2017-15924 (In manager.c in ss-manager in shadowsocks-libev 3.1.0, improper parsing ...)
+	{DSA-4009-1}
 	- shadowsocks-libev 3.1.0+ds-2
 	NOTE: https://www.x41-dsec.de/lab/advisories/x41-2017-010-shadowsocks-libev/
 	NOTE: https://github.com/shadowsocks/shadowsocks-libev/issues/1734
@@ -8800,7 +8803,7 @@
 CVE-2017-12972 (In Nimbus JOSE+JWT before 4.39, there is no integer-overflow check when ...)
 	NOT-FOR-US: Nimbus JOSE + JWT
 CVE-2017-12976 (git-annex before 6.20170818 allows remote attackers to execute ...)
-	{DLA-1144-1}
+	{DSA-4010-1 DLA-1144-1}
 	- git-annex 6.20170818-1 (bug #873088)
 	NOTE: http://source.git-annex.branchable.com/?p=source.git;a=commit;h=df11e54788b254efebb4898b474de11ae8d3b471
 	NOTE: http://source.git-annex.branchable.com/?p=source.git;a=commit;h=c24d0f0e8984576654e2be149005bc884fe0403a


