[Secure-testing-commits] r56213 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Thu Sep 28 09:10:13 UTC 2017 

Author: sectracker
Date: 2017-09-28 09:10:13 +0000 (Thu, 28 Sep 2017)
New Revision: 56213

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-28 07:03:47 UTC (rev 56212)
+++ data/CVE/list	2017-09-28 09:10:13 UTC (rev 56213)
@@ -1,3 +1,39 @@
+CVE-2017-14866 (There is a heap-based buffer overflow in the Exiv2::s2Data function of ...)
+	TODO: check
+CVE-2017-14865 (There is a heap-based buffer overflow in the Exiv2::us2Data function of ...)
+	TODO: check
+CVE-2017-14864 (An Invalid memory address dereference was discovered in Exiv2::getULong ...)
+	TODO: check
+CVE-2017-14863 (A NULL pointer dereference was discovered in ...)
+	TODO: check
+CVE-2017-14862 (An Invalid memory address dereference was discovered in ...)
+	TODO: check
+CVE-2017-14861 (There is a stack consumption vulnerability in the ...)
+	TODO: check
+CVE-2017-14860 (There is a heap-based buffer over-read in the ...)
+	TODO: check
+CVE-2017-14859 (An Invalid memory address dereference was discovered in ...)
+	TODO: check
+CVE-2017-14858 (There is a heap-based buffer overflow in the Exiv2::l2Data function of ...)
+	TODO: check
+CVE-2017-14857 (In Exiv2 0.26, there is an invalid free in the Image class in image.cpp ...)
+	TODO: check
+CVE-2017-14856
+	RESERVED
+CVE-2017-14855
+	RESERVED
+CVE-2017-14854
+	RESERVED
+CVE-2017-14853
+	RESERVED
+CVE-2017-14852
+	RESERVED
+CVE-2017-14851
+	RESERVED
+CVE-2017-14850
+	RESERVED
+CVE-2017-14849 (Node.js 8.5.0 before 8.6.0 allows remote attackers to access unintended ...)
+	TODO: check
 CVE-2017-14848
 	RESERVED
 CVE-2017-14847 (Mojoomla WPAMS Apartment Management System for WordPress allows SQL ...)
@@ -7221,44 +7257,44 @@
 	RESERVED
 CVE-2017-12241
 	RESERVED
-CVE-2017-12240
-	RESERVED
-CVE-2017-12239
-	RESERVED
-CVE-2017-12238
-	RESERVED
-CVE-2017-12237
-	RESERVED
-CVE-2017-12236
-	RESERVED
-CVE-2017-12235
-	RESERVED
-CVE-2017-12234
-	RESERVED
-CVE-2017-12233
-	RESERVED
-CVE-2017-12232
-	RESERVED
-CVE-2017-12231
-	RESERVED
-CVE-2017-12230
-	RESERVED
-CVE-2017-12229
-	RESERVED
-CVE-2017-12228
-	RESERVED
+CVE-2017-12240 (The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS ...)
+	TODO: check
+CVE-2017-12239 (A vulnerability in motherboard console ports of line cards for Cisco ...)
+	TODO: check
+CVE-2017-12238 (A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco ...)
+	TODO: check
+CVE-2017-12237 (A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module ...)
+	TODO: check
+CVE-2017-12236 (A vulnerability in the implementation of the Locator/ID Separation ...)
+	TODO: check
+CVE-2017-12235 (A vulnerability in the implementation of the PROFINET Discovery and ...)
+	TODO: check
+CVE-2017-12234 (Multiple vulnerabilities in the implementation of the Common Industrial ...)
+	TODO: check
+CVE-2017-12233 (Multiple vulnerabilities in the implementation of the Common Industrial ...)
+	TODO: check
+CVE-2017-12232 (A vulnerability in the implementation of a protocol in Cisco Integrated ...)
+	TODO: check
+CVE-2017-12231 (A vulnerability in the implementation of Network Address Translation ...)
+	TODO: check
+CVE-2017-12230 (A vulnerability in the web-based user interface (web UI) of Cisco IOS ...)
+	TODO: check
+CVE-2017-12229 (A vulnerability in the REST API of the web-based user interface (web ...)
+	TODO: check
+CVE-2017-12228 (A vulnerability in the Cisco Network Plug and Play application of Cisco ...)
+	TODO: check
 CVE-2017-12227 (A vulnerability in the SQL database interface for Cisco Emergency ...)
 	NOT-FOR-US: Cisco
-CVE-2017-12226
-	RESERVED
+CVE-2017-12226 (A vulnerability in the web-based Wireless Controller GUI of Cisco IOS ...)
+	TODO: check
 CVE-2017-12225 (A vulnerability in the web functionality of the Cisco Prime LAN ...)
 	NOT-FOR-US: Cisco
 CVE-2017-12224 (A vulnerability in the ability for guest users to join meetings via a ...)
 	NOT-FOR-US: Cisco
 CVE-2017-12223 (A vulnerability in the ROM Monitor (ROMMON) code of Cisco IR800 ...)
 	NOT-FOR-US: Cisco
-CVE-2017-12222
-	RESERVED
+CVE-2017-12222 (A vulnerability in the wireless controller manager of Cisco IOS XE ...)
+	TODO: check
 CVE-2017-12221 (A vulnerability in the web framework of Cisco Firepower Management ...)
 	NOT-FOR-US: Cisco
 CVE-2017-12220 (A vulnerability in the web-based management interface of Cisco ...)

More information about the Secure-testing-commits mailing list