[Secure-testing-commits] r56237 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Fri Sep 29 09:10:13 UTC 2017
Author: sectracker
Date: 2017-09-29 09:10:13 +0000 (Fri, 29 Sep 2017)
New Revision: 56237
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-29 07:59:41 UTC (rev 56236)
+++ data/CVE/list 2017-09-29 09:10:13 UTC (rev 56237)
@@ -1,3 +1,137 @@
+CVE-2017-14935 (Pulse Secure Pulse One On-Premise 2.0.1649 and below does not properly ...)
+ TODO: check
+CVE-2017-14934 (process_debug_info in dwarf.c in the Binary File Descriptor (BFD) ...)
+ TODO: check
+CVE-2017-14933 (read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) ...)
+ TODO: check
+CVE-2017-14932 (decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) ...)
+ TODO: check
+CVE-2017-14931 (ExifImageFile::readDQT in ExifImageFileRead.cpp in OpenExif 2.1.4 ...)
+ TODO: check
+CVE-2017-14930 (Memory leak in decode_line_info in dwarf2.c in the Binary File ...)
+ TODO: check
+CVE-2017-14929 (In Poppler 0.59.0, memory corruption occurs in a call to ...)
+ TODO: check
+CVE-2017-14928 (In Poppler 0.59.0, a NULL Pointer Dereference exists in ...)
+ TODO: check
+CVE-2017-14927 (In Poppler 0.59.0, a NULL Pointer Dereference exists in the ...)
+ TODO: check
+CVE-2017-14926 (In Poppler 0.59.0, a NULL Pointer Dereference exists in ...)
+ TODO: check
+CVE-2017-14925 (Cross-Site Request Forgery (CSRF) vulnerability via IMG element in Tiki ...)
+ TODO: check
+CVE-2017-14924 (Cross-Site Request Forgery (CSRF) vulnerability via IMG element in Tiki ...)
+ TODO: check
+CVE-2017-14923 (Stored XSS vulnerability via IMG element at "Leadname" of CRM in Tine ...)
+ TODO: check
+CVE-2017-14922 (Stored XSS vulnerability via IMG element at "History" of Profile, ...)
+ TODO: check
+CVE-2017-14921 (Stored XSS vulnerability via IMG element at "Filename" of Filemanager ...)
+ TODO: check
+CVE-2017-14920 (Stored XSS vulnerability in eGroupware Community Edition before ...)
+ TODO: check
+CVE-2017-14919
+ RESERVED
+CVE-2017-14918
+ RESERVED
+CVE-2017-14917
+ RESERVED
+CVE-2017-14916
+ RESERVED
+CVE-2017-14915
+ RESERVED
+CVE-2017-14914
+ RESERVED
+CVE-2017-14913
+ RESERVED
+CVE-2017-14912
+ RESERVED
+CVE-2017-14911
+ RESERVED
+CVE-2017-14910
+ RESERVED
+CVE-2017-14909
+ RESERVED
+CVE-2017-14908
+ RESERVED
+CVE-2017-14907
+ RESERVED
+CVE-2017-14906
+ RESERVED
+CVE-2017-14905
+ RESERVED
+CVE-2017-14904
+ RESERVED
+CVE-2017-14903
+ RESERVED
+CVE-2017-14902
+ RESERVED
+CVE-2017-14901
+ RESERVED
+CVE-2017-14900
+ RESERVED
+CVE-2017-14899
+ RESERVED
+CVE-2017-14898
+ RESERVED
+CVE-2017-14897
+ RESERVED
+CVE-2017-14896
+ RESERVED
+CVE-2017-14895
+ RESERVED
+CVE-2017-14894
+ RESERVED
+CVE-2017-14893
+ RESERVED
+CVE-2017-14892
+ RESERVED
+CVE-2017-14891
+ RESERVED
+CVE-2017-14890
+ RESERVED
+CVE-2017-14889
+ RESERVED
+CVE-2017-14888
+ RESERVED
+CVE-2017-14887
+ RESERVED
+CVE-2017-14886
+ RESERVED
+CVE-2017-14885
+ RESERVED
+CVE-2017-14884
+ RESERVED
+CVE-2017-14883
+ RESERVED
+CVE-2017-14882
+ RESERVED
+CVE-2017-14881
+ RESERVED
+CVE-2017-14880
+ RESERVED
+CVE-2017-14879
+ RESERVED
+CVE-2017-14878
+ RESERVED
+CVE-2017-14877
+ RESERVED
+CVE-2017-14876
+ RESERVED
+CVE-2017-14875
+ RESERVED
+CVE-2017-14874
+ RESERVED
+CVE-2017-14873
+ RESERVED
+CVE-2017-14872
+ RESERVED
+CVE-2017-14871
+ RESERVED
+CVE-2017-14870
+ RESERVED
+CVE-2017-14869
+ RESERVED
CVE-2017-14868
RESERVED
CVE-2017-14866 (There is a heap-based buffer overflow in the Exiv2::s2Data function of ...)
@@ -301,8 +435,8 @@
NOTE: Requires additional fixes:
NOTE: https://github.com/ImageMagick/ImageMagick/commit/bbc582d5439a7f9338c6bdc8c34b1ae221ae5214
NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/67a633df9386704f45d1ad24f7f5af8a5d11f4a3
-CVE-2017-14738
- RESERVED
+CVE-2017-14738 (FileRun (version 2017.09.18 and below) suffers from a remote SQL ...)
+ TODO: check
CVE-2017-14737 (A cryptographic cache-based side channel in the RSA implementation in ...)
- botan1.10 <unfixed>
NOTE: https://github.com/randombit/botan/issues/1222
More information about the Secure-testing-commits
mailing list