[Secure-testing-commits] r39185 - data/CVE
Author: carnil Date: 2016-01-26 07:31:28 + (Tue, 26 Jan 2016) New Revision: 39185 Modified: data/CVE/list Log: Add CVE-2016-2070/linux Modified: data/CVE/list === --- data/CVE/list 2016-01-26 07:22:12 UTC (rev 39184) +++ data/CVE/list 2016-01-26 07:31:28 UTC (rev 39185) @@ -2,6 +2,13 @@ - libxml2 NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/25/6 TODO: check versions +CVE-2016-2070 [division by zero in TCP code] + - linux + [jessie] - linux (Vulnerable code introduced later) + [wheezy] - linux (Vulnerable code introduced later) + - linux-2.6 (Vulnerable code introduced later) + NOTE: Upstream commit: https://git.kernel.org/linus/8b8a321ff72c785ed5e8b4cf6eda20b35d427390 (v4.5-rc1) + NOTE: Introduced by: https://git.kernel.org/linus/3759824da87b30ce7a35b4873b62b0ba38905ef5 (v4.3-rc1) CVE-2016-2068 RESERVED CVE-2016-2067 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39184 - data/CVE
Author: carnil Date: 2016-01-26 07:22:12 + (Tue, 26 Jan 2016) New Revision: 39184 Modified: data/CVE/list Log: CVE-2016-2096/linux assigned Modified: data/CVE/list === --- data/CVE/list 2016-01-26 07:00:56 UTC (rev 39183) +++ data/CVE/list 2016-01-26 07:22:12 UTC (rev 39184) @@ -60,10 +60,10 @@ RESERVED CVE-2015-8780 RESERVED -CVE-2016- [x86 Linux TLB flush bug] +CVE-2016-2069 [x86 Linux TLB flush bug] - linux - linux-2.6 - NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/25/1 + NOTE: http://www.openwall.com/lists/oss-security/2016/01/25/1 NOTE: https://git.kernel.org/linus/71b3c126e61177eb693423f2e18a1914205b165e (v4.5-rc1) NOTE: https://git.kernel.org/linux/4eaffdd5a5fe6ff9f95e1ab4de1ac904d5e0fa8b (v4.5-rc1) CVE-2016-2053 [Denial of service with specially crafted key file] ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39183 - data/CVE
Author: agx Date: 2016-01-26 07:00:56 + (Tue, 26 Jan 2016) New Revision: 39183 Modified: data/CVE/list Log: Add link to upstream OpenJDK commit Modified: data/CVE/list === --- data/CVE/list 2016-01-26 06:13:32 UTC (rev 39182) +++ data/CVE/list 2016-01-26 07:00:56 UTC (rev 39183) @@ -8526,6 +8526,7 @@ NOTE: https://gitlab.com/gnutls/gnutls/commit/6822a37947d4e38c45b1afc0121cda35ba897182 NOTE: http://www.openwall.com/lists/oss-security/2015/05/05/8 NOTE: http://www.mitls.org/pages/attacks/SLOTH + NOTE: http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/1ad1d1b46fef TODO: check other possible affected libraries (PolarSSL/mbedTLS, ...) CVE-2015-7574 RESERVED ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39182 - data/CVE
Author: carnil Date: 2016-01-26 06:13:32 + (Tue, 26 Jan 2016) New Revision: 39182 Modified: data/CVE/list Log: Add todo item for CVE-2016-1897, see previous commit Modified: data/CVE/list === --- data/CVE/list 2016-01-26 06:12:26 UTC (rev 39181) +++ data/CVE/list 2016-01-26 06:13:32 UTC (rev 39182) @@ -852,6 +852,7 @@ - libav NOTE: http://habrahabr.ru/company/mailru/blog/274855 NOTE: Fixed in 2.8.5 upstream + TODO: Recheck, the issue might be fixed incompletely, cf. #811519 CVE-2016-1867 (The jpc_pi_nextcprl function in JasPer 1.900.1 allows remote attackers ...) - jasper (bug #811023) [jessie] - jasper (Minor issue) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39181 - data/CVE
Author: carnil Date: 2016-01-26 06:12:26 + (Tue, 26 Jan 2016) New Revision: 39181 Modified: data/CVE/list Log: Revert "Add temporary entry for vlc issue" This reverts commit d60e8ca91ff87f51ed988c51c3338448ee5a401c. Revert addition for now. Needs evaluation if this is an issue in src:vlc itself or it is src:ffmpeg problem and CVE-2016-1897 is not fixed correctly there. Modified: data/CVE/list === --- data/CVE/list 2016-01-26 06:09:11 UTC (rev 39180) +++ data/CVE/list 2016-01-26 06:12:26 UTC (rev 39181) @@ -1,7 +1,3 @@ -CVE-2016- [avio plugin leaks file content] - - vlc (bug #811519) - NOTE: Same root cause as CVE-2016-1897 - TODO: check CVE-2016- [Out-of-bounds Read in the libxml2's htmlParseNameComplex() function] - libxml2 NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/25/6 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39180 - data/CVE
Author: carnil Date: 2016-01-26 06:09:11 + (Tue, 26 Jan 2016) New Revision: 39180 Modified: data/CVE/list Log: Add temporary entry for vlc issue Modified: data/CVE/list === --- data/CVE/list 2016-01-26 05:48:06 UTC (rev 39179) +++ data/CVE/list 2016-01-26 06:09:11 UTC (rev 39180) @@ -1,3 +1,7 @@ +CVE-2016- [avio plugin leaks file content] + - vlc (bug #811519) + NOTE: Same root cause as CVE-2016-1897 + TODO: check CVE-2016- [Out-of-bounds Read in the libxml2's htmlParseNameComplex() function] - libxml2 NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/25/6 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39179 - data
Author: carnil Date: 2016-01-26 05:48:06 + (Tue, 26 Jan 2016) New Revision: 39179 Modified: data/dsa-needed.txt Log: Add privoxy to dsa needed list with one TODO Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2016-01-26 05:36:43 UTC (rev 39178) +++ data/dsa-needed.txt 2016-01-26 05:48:06 UTC (rev 39179) @@ -60,6 +60,10 @@ -- pdns/oldstable -- +privoxy + Evaluate if dsa neeeded + Maintainer proposed debdiffs for both wheezy- and jessie-security +-- qemu mjt prepared updates for wheezy- and jessie-security -- ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39178 - data/CVE
Author: carnil Date: 2016-01-26 05:36:43 + (Tue, 26 Jan 2016) New Revision: 39178 Modified: data/CVE/list Log: Add new libxml2 issue Modified: data/CVE/list === --- data/CVE/list 2016-01-26 05:07:55 UTC (rev 39177) +++ data/CVE/list 2016-01-26 05:36:43 UTC (rev 39178) @@ -1,3 +1,7 @@ +CVE-2016- [Out-of-bounds Read in the libxml2's htmlParseNameComplex() function] + - libxml2 + NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/25/6 + TODO: check versions CVE-2016-2068 RESERVED CVE-2016-2067 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39177 - data/CVE
Author: carnil Date: 2016-01-26 05:07:55 + (Tue, 26 Jan 2016) New Revision: 39177 Modified: data/CVE/list Log: Fix typo in description for CVE-2015-8781 Modified: data/CVE/list === --- data/CVE/list 2016-01-25 23:25:31 UTC (rev 39176) +++ data/CVE/list 2016-01-26 05:07:55 UTC (rev 39177) @@ -80,7 +80,7 @@ NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2522 NOTE: Commit: https://github.com/vadz/libtiff/commit/aaab5c3c9d2a2c6984f23ccbc79702610439bc65 NOTE: http://www.openwall.com/lists/oss-security/2016/01/24/3 -CVE-2015-8781 [an outof bounds write at tif_luv.c:208] +CVE-2015-8781 [an out of bounds write at tif_luv.c:208] RESERVED - tiff 4.0.6-1 NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2522#0 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39176 - in data: . DLA
Author: santiago
Date: 2016-01-25 23:25:31 + (Mon, 25 Jan 2016)
New Revision: 39176
Modified:
data/DLA/list
data/dla-needed.txt
Log:
reserve DLA-402-1 for tiff
Modified: data/DLA/list
===
--- data/DLA/list 2016-01-25 21:32:26 UTC (rev 39175)
+++ data/DLA/list 2016-01-25 23:25:31 UTC (rev 39176)
@@ -1,3 +1,6 @@
+[26 Jan 2016] DLA-402-1 tiff - security update
+ {CVE-2015-8665 CVE-2015-8683}
+ [squeeze] - tiff 3.9.4-5+squeeze13
[24 Jan 2016] DLA-401-1 imlib2 - security update
{CVE-2014-9762 CVE-2014-9763 CVE-2014-9764}
[squeeze] - imlib2 1.4.2-8+deb6u1
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-01-25 21:32:26 UTC (rev 39175)
+++ data/dla-needed.txt 2016-01-25 23:25:31 UTC (rev 39176)
@@ -58,5 +58,3 @@
--
radicale (Markus Koschany)
--
-tiff (Santiago R.R.)
---
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39175 - data/CVE
Author: carnil Date: 2016-01-25 21:32:26 + (Mon, 25 Jan 2016) New Revision: 39175 Modified: data/CVE/list Log: Add CVE-2015-7581, kept TODO Modified: data/CVE/list === --- data/CVE/list 2016-01-25 21:30:29 UTC (rev 39174) +++ data/CVE/list 2016-01-25 21:32:26 UTC (rev 39175) @@ -8464,8 +8464,13 @@ RESERVED CVE-2015-7582 RESERVED -CVE-2015-7581 +CVE-2015-7581 [Object leak vulnerability for wildcard controller routes in Action Pack] RESERVED + - rails + [wheezy] - rails (Vulnerable code not present, is only a transitional package) + - ruby-actionpack-3.2 + - ruby-actionpack-2.3 + TODO: check CVE-2015-7580 [Possible XSS vulnerability in rails-html-sanitizer] RESERVED - ruby-rails-html-sanitizer ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39174 - data/CVE
Author: carnil Date: 2016-01-25 21:30:29 + (Mon, 25 Jan 2016) New Revision: 39174 Modified: data/CVE/list Log: Add CVE-2015-7580 Modified: data/CVE/list === --- data/CVE/list 2016-01-25 21:29:35 UTC (rev 39173) +++ data/CVE/list 2016-01-25 21:30:29 UTC (rev 39174) @@ -8466,8 +8466,9 @@ RESERVED CVE-2015-7581 RESERVED -CVE-2015-7580 +CVE-2015-7580 [Possible XSS vulnerability in rails-html-sanitizer] RESERVED + - ruby-rails-html-sanitizer CVE-2015-7579 [XSS vulnerability in rails-html-sanitizer] RESERVED - ruby-rails-html-sanitizer ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39173 - data/CVE
Author: carnil Date: 2016-01-25 21:29:35 + (Mon, 25 Jan 2016) New Revision: 39173 Modified: data/CVE/list Log: Add CVE-2016-0753, kept TODO Modified: data/CVE/list === --- data/CVE/list 2016-01-25 21:24:46 UTC (rev 39172) +++ data/CVE/list 2016-01-25 21:29:35 UTC (rev 39173) @@ -3703,8 +3703,16 @@ RESERVED CVE-2016-0754 RESERVED -CVE-2016-0753 +CVE-2016-0753 [Possible Input Validation Circumvention in Active Model] RESERVED + - rails + [wheezy] - rails (Vulnerable code not present, is only a transitional package) + - ruby-activerecord-3.2 + - ruby-activerecord-2.3 + - ruby-activesupport-3.2 + - ruby-activesupport-2.3 + - ruby-activemodel-3.2 + TODO: check CVE-2016-0752 [Possible Information Leak Vulnerability in Action View] RESERVED - rails ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39172 - data/CVE
Author: carnil Date: 2016-01-25 21:24:46 + (Mon, 25 Jan 2016) New Revision: 39172 Modified: data/CVE/list Log: Add CVE-2016-0752, kept TODO Modified: data/CVE/list === --- data/CVE/list 2016-01-25 21:22:29 UTC (rev 39171) +++ data/CVE/list 2016-01-25 21:24:46 UTC (rev 39172) @@ -3705,8 +3705,13 @@ RESERVED CVE-2016-0753 RESERVED -CVE-2016-0752 +CVE-2016-0752 [Possible Information Leak Vulnerability in Action View] RESERVED + - rails + [wheezy] - rails (Vulnerable code not present, is only a transitional package) + - ruby-actionpack-3.2 + - ruby-actionpack-2.3 + TODO: check CVE-2016-0751 [Possible Object Leak and Denial of Service attack in Action Pack] RESERVED - rails ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39171 - data/CVE
Author: carnil Date: 2016-01-25 21:22:29 + (Mon, 25 Jan 2016) New Revision: 39171 Modified: data/CVE/list Log: Add CVE-2015-7579/ruby-rails-html-sanitizer Modified: data/CVE/list === --- data/CVE/list 2016-01-25 21:21:28 UTC (rev 39170) +++ data/CVE/list 2016-01-25 21:22:29 UTC (rev 39171) @@ -8455,8 +8455,9 @@ RESERVED CVE-2015-7580 RESERVED -CVE-2015-7579 +CVE-2015-7579 [XSS vulnerability in rails-html-sanitizer] RESERVED + - ruby-rails-html-sanitizer CVE-2015-7578 [Possible XSS vulnerability in rails-html-sanitizer] RESERVED - ruby-rails-html-sanitizer ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39170 - data/CVE
Author: carnil Date: 2016-01-25 21:21:28 + (Mon, 25 Jan 2016) New Revision: 39170 Modified: data/CVE/list Log: Add CVE-2015-7578/ruby-rails-html-sanitizer Modified: data/CVE/list === --- data/CVE/list 2016-01-25 21:19:12 UTC (rev 39169) +++ data/CVE/list 2016-01-25 21:21:28 UTC (rev 39170) @@ -8457,8 +8457,10 @@ RESERVED CVE-2015-7579 RESERVED -CVE-2015-7578 +CVE-2015-7578 [Possible XSS vulnerability in rails-html-sanitizer] RESERVED + - ruby-rails-html-sanitizer + TODO: check CVE-2015-7577 [Nested attributes rejection proc bypass in Active Record] RESERVED - rails ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39169 - data/CVE
Author: carnil Date: 2016-01-25 21:19:12 + (Mon, 25 Jan 2016) New Revision: 39169 Modified: data/CVE/list Log: Add CVE-2015-7577, kept TODO Modified: data/CVE/list === --- data/CVE/list 2016-01-25 21:17:13 UTC (rev 39168) +++ data/CVE/list 2016-01-25 21:19:12 UTC (rev 39169) @@ -8459,8 +8459,13 @@ RESERVED CVE-2015-7578 RESERVED -CVE-2015-7577 +CVE-2015-7577 [Nested attributes rejection proc bypass in Active Record] RESERVED + - rails + [wheezy] - rails (Vulnerable code not present, is only a transitional package) + - ruby-activerecord-3.2 + - ruby-activerecord-2.3 + TODO: check CVE-2015-7576 [Timing attack vulnerability in basic authentication in Action Controller] RESERVED - rails ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39168 - data/CVE
Author: carnil Date: 2016-01-25 21:17:13 + (Mon, 25 Jan 2016) New Revision: 39168 Modified: data/CVE/list Log: Add CVE-2016-0751, kept TODO Modified: data/CVE/list === --- data/CVE/list 2016-01-25 21:14:41 UTC (rev 39167) +++ data/CVE/list 2016-01-25 21:17:13 UTC (rev 39168) @@ -3707,8 +3707,13 @@ RESERVED CVE-2016-0752 RESERVED -CVE-2016-0751 +CVE-2016-0751 [Possible Object Leak and Denial of Service attack in Action Pack] RESERVED + - rails + [wheezy] - rails (Vulnerable code not present, is only a transitional package) + - ruby-actionpack-3.2 + - ruby-actionpack-2.3 + TODO: check CVE-2016-0750 RESERVED CVE-2016-0749 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39167 - data/CVE
Author: carnil
Date: 2016-01-25 21:14:41 + (Mon, 25 Jan 2016)
New Revision: 39167
Modified:
data/CVE/list
Log:
Add CVE-2015-7576, kept TODO
Modified: data/CVE/list
===
--- data/CVE/list 2016-01-25 21:10:18 UTC (rev 39166)
+++ data/CVE/list 2016-01-25 21:14:41 UTC (rev 39167)
@@ -8456,8 +8456,15 @@
RESERVED
CVE-2015-7577
RESERVED
-CVE-2015-7576
+CVE-2015-7576 [Timing attack vulnerability in basic authentication in Action
Controller]
RESERVED
+ - rails
+ [wheezy] - rails (Vulnerable code not present, is only a
transitional package)
+ - ruby-actionpack-3.2
+ - ruby-actionpack-2.3
+ - ruby-activesupport-3.2
+ - ruby-activesupport-2.3
+ TODO: check
CVE-2015-7575 (Mozilla Network Security Services (NSS) before 3.20.2, as used
in ...)
{DSA-3437-1 DSA-3436-1}
- iceweasel 43.0.2-1
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39166 - data/CVE
Author: sectracker
Date: 2016-01-25 21:10:18 + (Mon, 25 Jan 2016)
New Revision: 39166
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2016-01-25 20:24:38 UTC (rev 39165)
+++ data/CVE/list 2016-01-25 21:10:18 UTC (rev 39166)
@@ -1,3 +1,61 @@
+CVE-2016-2068
+ RESERVED
+CVE-2016-2067
+ RESERVED
+CVE-2016-2066
+ RESERVED
+CVE-2016-2065
+ RESERVED
+CVE-2016-2064
+ RESERVED
+CVE-2016-2063
+ RESERVED
+CVE-2016-2062
+ RESERVED
+CVE-2016-2061
+ RESERVED
+CVE-2016-2060
+ RESERVED
+CVE-2016-2059
+ RESERVED
+CVE-2016-2058
+ RESERVED
+CVE-2016-2057
+ RESERVED
+CVE-2016-2056
+ RESERVED
+CVE-2016-2055
+ RESERVED
+CVE-2016-2054
+ RESERVED
+CVE-2016-2052 (Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6,
as used ...)
+ TODO: check
+CVE-2016-2051 (Multiple unspecified vulnerabilities in Google V8 before
4.8.271.17, ...)
+ TODO: check
+CVE-2016-2048
+ RESERVED
+CVE-2016-2046
+ RESERVED
+CVE-2016-2045
+ RESERVED
+CVE-2016-2044
+ RESERVED
+CVE-2016-2043
+ RESERVED
+CVE-2016-2042
+ RESERVED
+CVE-2016-2041
+ RESERVED
+CVE-2016-2040
+ RESERVED
+CVE-2016-2039
+ RESERVED
+CVE-2016-2038
+ RESERVED
+CVE-2016-2036
+ RESERVED
+CVE-2015-8780
+ RESERVED
CVE-2016- [x86 Linux TLB flush bug]
- linux
- linux-2.6
@@ -5,26 +63,31 @@
NOTE:
https://git.kernel.org/linus/71b3c126e61177eb693423f2e18a1914205b165e (v4.5-rc1)
NOTE:
https://git.kernel.org/linux/4eaffdd5a5fe6ff9f95e1ab4de1ac904d5e0fa8b (v4.5-rc1)
CVE-2016-2053 [Denial of service with specially crafted key file]
+ RESERVED
- linux
- linux-2.6
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1300237
TODO: check versions
CVE-2015-8783 [other out-of-bounds reads]
+ RESERVED
- tiff 4.0.6-1
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2522
NOTE: Commit:
https://github.com/vadz/libtiff/commit/aaab5c3c9d2a2c6984f23ccbc79702610439bc65
NOTE: http://www.openwall.com/lists/oss-security/2016/01/24/3
CVE-2015-8782 [other out-of-bounds writes]
+ RESERVED
- tiff 4.0.6-1
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2522
NOTE: Commit:
https://github.com/vadz/libtiff/commit/aaab5c3c9d2a2c6984f23ccbc79702610439bc65
NOTE: http://www.openwall.com/lists/oss-security/2016/01/24/3
CVE-2015-8781 [an outof bounds write at tif_luv.c:208]
+ RESERVED
- tiff 4.0.6-1
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2522#0
NOTE: Commit:
https://github.com/vadz/libtiff/commit/aaab5c3c9d2a2c6984f23ccbc79702610439bc65
NOTE: http://www.openwall.com/lists/oss-security/2016/01/24/3
CVE-2015-8784 [potential out-of-bound write in NeXTDecode()]
+ RESERVED
- tiff 4.0.6-1
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2508
NOTE: Can be reproduced with tiff compiled with AddressSanitizer
@@ -35,10 +98,13 @@
- node-cli (bug #809252)
[jessie] - node-cli (Minor issue)
CVE-2016-2049 [php-openid: host based account hijack attack]
+ RESERVED
- php-openid
NOTE: http://www.openwall.com/lists/oss-security/2016/01/24/2
TODO: check
CVE-2016-2047 [ssl-validate-cert incorrect hostname check]
+ RESERVED
+ {DSA-3453-1}
- mariadb-10.0 10.0.23-1
NOTE: https://mariadb.atlassian.net/browse/MDEV-9212
NOTE:
https://github.com/MariaDB/server/commit/f0d774d48416bb06063184380b684380ca005a41
@@ -317,9 +383,11 @@
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1298570
NOTE: http://www.openwall.com/lists/oss-security/2016/01/19/10
CVE-2016-2037 [out-of-bounds write with cpio 2.11]
+ RESERVED
- cpio (bug #812401)
NOTE: http://www.openwall.com/lists/oss-security/2016/01/19/4
CVE-2016-2050 [out of bound write in libdwarf -20151114]
+ RESERVED
- dwarfutils
NOTE: http://www.openwall.com/lists/oss-security/2016/01/19/9
TODO: check
@@ -1002,48 +1070,39 @@
RESERVED
CVE-2016-1621
RESERVED
-CVE-2016-1620
- RESERVED
+CVE-2016-1620 (Multiple unspecified vulnerabilities in Google Chrome before
...)
- chromium-browser 48.0.2564.82-1
[wheezy] - chromium-browser (Not supported in Wheezy)
[squeeze] - chromium-browser (Not supported in Squeeze
LTS)
-CVE-2016-1619
- RESERVED
+CVE-2016-1619 (Multiple integer overflows in the (1) sycc422_to_rgb and (2)
...)
- chromium-browser 48.0.2564.82-1
[wheezy] - chromium-browser (Not supported in Wheezy)
[squeeze] - chromium-browser (Not supported in Squeeze
LTS)
-CVE-2016-1618
- RESERVED
+CVE-2016-1618 (Blink, as used in Google Ch
[Secure-testing-commits] r39165 - data/CVE
Author: carnil Date: 2016-01-25 20:24:38 + (Mon, 25 Jan 2016) New Revision: 39165 Modified: data/CVE/list Log: CVE-2015-7551/ruby2.2 fixed in unstable Modified: data/CVE/list === --- data/CVE/list 2016-01-25 20:18:44 UTC (rev 39164) +++ data/CVE/list 2016-01-25 20:24:38 UTC (rev 39165) @@ -8491,7 +8491,7 @@ - ruby2.0 - ruby2.1 (bug #796344) [jessie] - ruby2.1 (Minor issue) - - ruby2.2 (bug #796551) + - ruby2.2 2.2.4-1 (bug #796551) NOTE: https://www.ruby-lang.org/en/news/2015/12/16/unsafe-tainted-string-usage-in-fiddle-and-dl-cve-2015-7551/ TODO: check correctness for CVE-2009-5147/CVE-2015-7551 record since affects multiple ruby versions CVE-2015-7550 [Linux keyring subsystem race leads to null dereference] ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39164 - data/CVE
Author: jmm Date: 2016-01-25 20:18:44 + (Mon, 25 Jan 2016) New Revision: 39164 Modified: data/CVE/list Log: several wireshark only for testing/sid Modified: data/CVE/list === --- data/CVE/list 2016-01-25 20:15:11 UTC (rev 39163) +++ data/CVE/list 2016-01-25 20:18:44 UTC (rev 39164) @@ -1879,74 +1879,83 @@ RESERVED CVE-2015-8742 (The dissect_CPMSetBindings function in epan/dissectors/packet-mswsp.c ...) - wireshark 2.0.1+g59ea380-1 - [squeeze] - wireshark (Not supported in Squeeze LTS) + [jessie] - wireshark (Only affects 2.x) + [wheezy] - wireshark (Only affects 2.x) + [squeeze] - wireshark (Only affects 2.x) NOTE: https://www.wireshark.org/security/wnpa-sec-2015-60.html NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11931 NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=d48b0eff28c995947ac3f8d842ddd9b50dd5798d - TODO: check CVE-2015-8741 (The dissect_ppi function in epan/dissectors/packet-ppi.c in the PPI ...) - wireshark 2.0.1+g59ea380-1 - [squeeze] - wireshark (Not supported in Squeeze LTS) + [jessie] - wireshark (Only affects 2.x) + [wheezy] - wireshark (Only affects 2.x) + [squeeze] - wireshark (Only affects 2.x) NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=2290eba5cb25f927f9142680193ac1158d35506e NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11876 NOTE: http://www.wireshark.org/security/wnpa-sec-2015-59.html - TODO: check CVE-2015-8740 (The dissect_tds7_colmetadata_token function in ...) - wireshark 2.0.1+g59ea380-1 - [squeeze] - wireshark (Not supported in Squeeze LTS) + [jessie] - wireshark (Only affects 2.x) + [wheezy] - wireshark (Only affects 2.x) + [squeeze] - wireshark (Only affects 2.x) NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=e78093f69f1e95df919bbe644baa06c7e4e720c0 NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11846 NOTE: http://www.wireshark.org/security/wnpa-sec-2015-58.html - TODO: check CVE-2015-8739 (The ipmi_fmt_udpport function in epan/dissectors/packet-ipmi.c in the ...) - wireshark 2.0.1+g59ea380-1 - [squeeze] - wireshark (Not supported in Squeeze LTS) + [jessie] - wireshark (Only affects 2.x) + [wheezy] - wireshark (Only affects 2.x) + [squeeze] - wireshark (Only affects 2.x) NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=96bf82ced0b58c7a4c2a6c300efeebe4f05c0ff4 NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11831 NOTE: http://www.wireshark.org/security/wnpa-sec-2015-57.html - TODO: check CVE-2015-8738 (The s7comm_decode_ud_cpu_szl_subfunc function in ...) - wireshark 2.0.1+g59ea380-1 - [squeeze] - wireshark (Not supported in Squeeze LTS) + [jessie] - wireshark (Only affects 2.x) + [wheezy] - wireshark (Only affects 2.x) + [squeeze] - wireshark (Only affects 2.x) NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=858c3f0079f987833fb22eba2c361d1a88ba4103 NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11823 NOTE: http://www.wireshark.org/security/wnpa-sec-2015-56.html - TODO: check CVE-2015-8737 (The mp2t_open function in wiretap/mp2t.c in the MP2T file parser in ...) - wireshark 2.0.1+g59ea380-1 - [squeeze] - wireshark (Not supported in Squeeze LTS) + [jessie] - wireshark (Only affects 2.x) + [wheezy] - wireshark (Only affects 2.x) + [squeeze] - wireshark (Only affects 2.x) NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=e3fc691368af60bbbaec9e038ee6a6d3b7707955 NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11821 NOTE: http://www.wireshark.org/security/wnpa-sec-2015-55.html - TODO: check CVE-2015-8736 (The mp2t_find_next_pcr function in wiretap/mp2t.c in the MP2T file ...) - wireshark 2.0.1+g59ea380-1 - [squeeze] - wireshark (Not supported in Squeeze LTS) + [jessie] - wireshark (Only affects 2.x) + [wheezy] - wireshark (Only affects 2.x) + [squeeze] - wireshark (Only affects 2.x) NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=baa3eab78b422616a92ee38551c1b1510dca4ccb NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11820 NOTE: http://www.wireshark.org/security/wnpa-sec-2015-54.html - TODO: check CVE-2015-8735 (The get_value function in epan/dissectors/packet-btatt.c in the ...) - wireshark 2.0.1+g59ea380-1 - [squeeze] - wireshark (Not supported in Squeeze LTS) + [jessie] - wireshark (Only affects 2.x) + [wheezy] - wireshark (O
[Secure-testing-commits] r39163 - in data: . DSA
Author: carnil
Date: 2016-01-25 20:15:11 + (Mon, 25 Jan 2016)
New Revision: 39163
Modified:
data/DSA/list
data/dsa-needed.txt
Log:
Reserve DSA number for mariadb-10.0
Modified: data/DSA/list
===
--- data/DSA/list 2016-01-25 20:06:38 UTC (rev 39162)
+++ data/DSA/list 2016-01-25 20:15:11 UTC (rev 39163)
@@ -1,3 +1,6 @@
+[25 Jan 2016] DSA-3453-1 mariadb-10.0 - security update
+ {CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597 CVE-2016-0598
CVE-2016-0600 CVE-2016-0606 CVE-2016-0608 CVE-2016-0609 CVE-2016-0616
CVE-2016-2047}
+ [jessie] - mariadb-10.0 10.0.23-0+deb8u1
[23 Jan 2016] DSA-3452-1 claws-mail - security update
{CVE-2015-8614}
[wheezy] - claws-mail 3.8.1-2+deb7u1
Modified: data/dsa-needed.txt
===
--- data/dsa-needed.txt 2016-01-25 20:06:38 UTC (rev 39162)
+++ data/dsa-needed.txt 2016-01-25 20:15:11 UTC (rev 39163)
@@ -42,8 +42,6 @@
linux
Wait until more severe issues have accumulated
--
-mariadb-10.0 (carnil)
---
mediawiki
--
mysql-5.5
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39162 - data
Author: carnil Date: 2016-01-25 20:06:38 + (Mon, 25 Jan 2016) New Revision: 39162 Modified: data/dsa-needed.txt Log: Take mariadb-10.0 next Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2016-01-25 17:46:30 UTC (rev 39161) +++ data/dsa-needed.txt 2016-01-25 20:06:38 UTC (rev 39162) @@ -42,7 +42,7 @@ linux Wait until more severe issues have accumulated -- -mariadb-10.0 +mariadb-10.0 (carnil) -- mediawiki -- ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39161 - data/CVE
Author: carnil Date: 2016-01-25 17:46:30 + (Mon, 25 Jan 2016) New Revision: 39161 Modified: data/CVE/list Log: Cleanup wrongly added entries for virtualbox Modified: data/CVE/list === --- data/CVE/list 2016-01-25 15:29:10 UTC (rev 39160) +++ data/CVE/list 2016-01-25 17:46:30 UTC (rev 39161) @@ -4285,7 +4285,6 @@ CVE-2016-0592 (Unspecified vulnerability in the Oracle VM VirtualBox component in ...) - virtualbox 5.0.14-dfsg-1 [wheezy] - virtualbox (Only affects 4.3.x and 5.0.x) - [squeeze] - virtualbox (Only affects 4.3.x and 5.0.x) NOTE: http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html#AppendixOVIR CVE-2016-0591 (Unspecified vulnerability in the PeopleSoft Enterprise SCM Purchasing ...) TODO: check @@ -4495,7 +4494,6 @@ CVE-2016-0495 (Unspecified vulnerability in the Oracle VM VirtualBox component in ...) - virtualbox 5.0.14-dfsg-1 [wheezy] - virtualbox (Only affects 4.3.x and 5.0.x) - [squeeze] - virtualbox (Only affects 4.3.x and 5.0.x) NOTE: http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html#AppendixOVIR CVE-2016-0494 (Unspecified vulnerability in the Java SE and Java SE Embedded ...) - openjdk-8 8u72-b15-1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39160 - data/CVE
Author: carnil Date: 2016-01-25 15:29:10 + (Mon, 25 Jan 2016) New Revision: 39160 Modified: data/CVE/list Log: According to Oracle CPU two CVEs should not affect virtualbox in wheezy and squeeze Cannot be said for sure, but the advisory say only that versions prior to 4.3.36, prior to 5.0.14 are afected. Modified: data/CVE/list === --- data/CVE/list 2016-01-25 11:21:09 UTC (rev 39159) +++ data/CVE/list 2016-01-25 15:29:10 UTC (rev 39160) @@ -4284,6 +4284,8 @@ RESERVED CVE-2016-0592 (Unspecified vulnerability in the Oracle VM VirtualBox component in ...) - virtualbox 5.0.14-dfsg-1 + [wheezy] - virtualbox (Only affects 4.3.x and 5.0.x) + [squeeze] - virtualbox (Only affects 4.3.x and 5.0.x) NOTE: http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html#AppendixOVIR CVE-2016-0591 (Unspecified vulnerability in the PeopleSoft Enterprise SCM Purchasing ...) TODO: check @@ -4492,6 +4494,8 @@ TODO: check CVE-2016-0495 (Unspecified vulnerability in the Oracle VM VirtualBox component in ...) - virtualbox 5.0.14-dfsg-1 + [wheezy] - virtualbox (Only affects 4.3.x and 5.0.x) + [squeeze] - virtualbox (Only affects 4.3.x and 5.0.x) NOTE: http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html#AppendixOVIR CVE-2016-0494 (Unspecified vulnerability in the Java SE and Java SE Embedded ...) - openjdk-8 8u72-b15-1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39159 - in data: . CVE
Author: jmm Date: 2016-01-25 11:21:09 + (Mon, 25 Jan 2016) New Revision: 39159 Modified: data/CVE/list data/dsa-needed.txt Log: openjdk updates, also track openjdk-6 one openjdk issue probably also affect src:icu doublecheck old rsync issue Modified: data/CVE/list === --- data/CVE/list 2016-01-25 08:01:07 UTC (rev 39158) +++ data/CVE/list 2016-01-25 11:21:09 UTC (rev 39159) @@ -4496,7 +4496,8 @@ CVE-2016-0494 (Unspecified vulnerability in the Java SE and Java SE Embedded ...) - openjdk-8 8u72-b15-1 - openjdk-7 7u95-2.6.4-1 - TODO: check + - openjdk-6 + - icu CVE-2016-0493 (Unspecified vulnerability in Oracle Sun Solaris 11 allows local users ...) TODO: check CVE-2016-0492 (Unspecified vulnerability in the Oracle Application Testing Suite ...) @@ -4520,7 +4521,7 @@ CVE-2016-0483 (Unspecified vulnerability in the Java SE, Java SE Embedded, and ...) - openjdk-8 8u72-b15-1 - openjdk-7 7u95-2.6.4-1 - TODO: check + - openjdk-6 CVE-2016-0482 (Unspecified vulnerability in the Oracle Application Testing Suite ...) TODO: check CVE-2016-0481 (Unspecified vulnerability in the Oracle Application Testing Suite ...) @@ -4537,7 +4538,6 @@ TODO: check CVE-2016-0475 (Unspecified vulnerability in the Java SE, Java SE Embedded, and ...) - openjdk-8 8u72-b15-1 - TODO: check CVE-2016-0474 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) TODO: check CVE-2016-0473 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) @@ -4557,7 +4557,7 @@ CVE-2016-0466 (Unspecified vulnerability in the Java SE, Java SE Embedded, and ...) - openjdk-8 8u72-b15-1 - openjdk-7 7u95-2.6.4-1 - TODO: check + - openjdk-6 CVE-2016-0465 (Unspecified vulnerability in the Solaris Cluster component in Oracle ...) TODO: check CVE-2016-0464 (Unspecified vulnerability in the Oracle WebLogic Server component in ...) @@ -4595,7 +4595,7 @@ CVE-2016-0448 (Unspecified vulnerability in the Java SE and Java SE Embedded ...) - openjdk-8 8u72-b15-1 - openjdk-7 7u95-2.6.4-1 - TODO: check + - openjdk-6 CVE-2016-0447 (Unspecified vulnerability in the Enterprise Manager Base Platform ...) TODO: check CVE-2016-0446 (Unspecified vulnerability in the Enterprise Manager Base Platform ...) @@ -4689,7 +4689,7 @@ CVE-2016-0402 (Unspecified vulnerability in the Java SE and Java SE Embedded ...) - openjdk-8 8u72-b15-1 - openjdk-7 7u95-2.6.4-1 - TODO: check + - openjdk-6 CVE-2016-0401 (Unspecified vulnerability in the Oracle BI Publisher component in ...) TODO: check CVE-2015-8536 @@ -8408,7 +8408,9 @@ - openssl 1.0.1f-1 [squeeze] - openssl (Vulnerable code not present) NOTE: OpenSSL fix: https://git.openssl.org/?p=openssl.git;a=commit;h=5e1ff664f95ab4c9176b3e86b5111e5777bad61a + - openjdk-8 7u95-2.6.4-1 - openjdk-7 7u95-2.6.4-1 + - openjdk-6 - gnutls28 3.3.15-1 [jessie] - gnutls28 3.3.8-6+deb8u3 - gnutls26 @@ -29518,6 +29520,7 @@ [wheezy] - rsync (Affected sanitising functionality not yet present) [squeeze] - rsync (Affected sanitising functionality not yet present) NOTE: http://xteam.baidu.com/?p=169 + TODO: Re-check affected versions, Ubuntu released an update which also covers 3.0.9 from precise CVE-2014-9511 RESERVED CVE-2014-9510 (Cross-site request forgery (CSRF) vulnerability in the administration ...) Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2016-01-25 08:01:07 UTC (rev 39158) +++ data/dsa-needed.txt 2016-01-25 11:21:09 UTC (rev 39159) @@ -54,6 +54,8 @@ -- openjdk-6 (jmm) -- +openjdk-7 (jmm) +-- openswan (corsac) NOTE: regression fix needed for CVE-2013-2053 (#743332) and CVE-2013-6466 (#744717) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r39158 - data/CVE
Author: carnil Date: 2016-01-25 08:01:07 + (Mon, 25 Jan 2016) New Revision: 39158 Modified: data/CVE/list Log: Add CVE-2016-2053/linux, needs check for affected versions Modified: data/CVE/list === --- data/CVE/list 2016-01-25 07:58:51 UTC (rev 39157) +++ data/CVE/list 2016-01-25 08:01:07 UTC (rev 39158) @@ -4,6 +4,11 @@ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/01/25/1 NOTE: https://git.kernel.org/linus/71b3c126e61177eb693423f2e18a1914205b165e (v4.5-rc1) NOTE: https://git.kernel.org/linux/4eaffdd5a5fe6ff9f95e1ab4de1ac904d5e0fa8b (v4.5-rc1) +CVE-2016-2053 [Denial of service with specially crafted key file] + - linux + - linux-2.6 + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1300237 + TODO: check versions CVE-2015-8783 [other out-of-bounds reads] - tiff 4.0.6-1 NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2522 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
