[Secure-testing-commits] r50569 - data/CVE
Author: carnil Date: 2017-04-11 06:49:50 + (Tue, 11 Apr 2017) New Revision: 50569 Modified: data/CVE/list Log: Correct introducing commit for dovecot issue Modified: data/CVE/list === --- data/CVE/list 2017-04-11 06:49:41 UTC (rev 50568) +++ data/CVE/list 2017-04-11 06:49:50 UTC (rev 50569) @@ -14097,9 +14097,10 @@ RESERVED {DSA-3828-1} - dovecot 1:2.2.27-3 (bug #860049) + [jessie] - dovecot (Vulnerable code not present) [wheezy] - dovecot (Vulnerable code not present) NOTE: Fixed by: https://github.com/dovecot/core/commit/30feb7a30f193197f1aab8a7b04a26b42735 - NOTE: Introduced by: https://github.com/dovecot/core/commit/79042f8c2ec1778528584c064b164d1ebcdde16b + NOTE: Introduced by: https://github.com/dovecot/core/commit/a3783f8a3c9cd816b51e77a922f82301512fcf22 CVE-2017-2668 [Remote crash via crafted LDAP messages] RESERVED - 389-ds-base ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50568 - data
Author: carnil Date: 2017-04-11 06:49:41 + (Tue, 11 Apr 2017) New Revision: 50568 Modified: data/dsa-needed.txt Log: Add dovecot to revert broken update via DSA Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2017-04-11 06:11:27 UTC (rev 50567) +++ data/dsa-needed.txt 2017-04-11 06:49:41 UTC (rev 50568) @@ -18,6 +18,9 @@ -- chromium-browser -- +dovecot + Needs an update to revert the broken update +-- graphicsmagick -- icedove ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50566 - data
Author: carnil Date: 2017-04-11 06:11:17 + (Tue, 11 Apr 2017) New Revision: 50566 Modified: data/dsa-needed.txt Log: Add note for python-django Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2017-04-11 05:35:08 UTC (rev 50565) +++ data/dsa-needed.txt 2017-04-11 06:11:17 UTC (rev 50566) @@ -40,6 +40,7 @@ -- python-django lfaraone proposed debdiff, need check and ack + initial review done, asked if two more CVEs currently marked no-dsa can included -- qemu Maintainer asked to prepare updates ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50567 - data/CVE
Author: carnil Date: 2017-04-11 06:11:27 + (Tue, 11 Apr 2017) New Revision: 50567 Modified: data/CVE/list Log: Add CVE-2017-2668/389-ds-base Modified: data/CVE/list === --- data/CVE/list 2017-04-11 06:11:17 UTC (rev 50566) +++ data/CVE/list 2017-04-11 06:11:27 UTC (rev 50567) @@ -14100,8 +14100,11 @@ [wheezy] - dovecot (Vulnerable code not present) NOTE: Fixed by: https://github.com/dovecot/core/commit/30feb7a30f193197f1aab8a7b04a26b42735 NOTE: Introduced by: https://github.com/dovecot/core/commit/79042f8c2ec1778528584c064b164d1ebcdde16b -CVE-2017-2668 +CVE-2017-2668 [Remote crash via crafted LDAP messages] RESERVED + - 389-ds-base + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1436575 + TODO: check details CVE-2017-2667 RESERVED - foreman (bug #663101) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50565 - data/CVE
Author: carnil Date: 2017-04-11 05:35:08 + (Tue, 11 Apr 2017) New Revision: 50565 Modified: data/CVE/list Log: Add notes for two potential linux issues Modified: data/CVE/list === --- data/CVE/list 2017-04-11 05:28:49 UTC (rev 50564) +++ data/CVE/list 2017-04-11 05:35:08 UTC (rev 50565) @@ -838,6 +838,8 @@ CVE-2017-7320 (setup/controllers/language.php in MODX Revolution 2.5.4-pl and earlier ...) NOT-FOR-US: MODX Revolution CVE-2017-7319 (A vulnerability in the Linux kernel package 3.16.0-28 on Ubuntu 14.04 ...) + - linux + NOTE: https://packetstormsecurity.com/files/142008/Linux-Kernel-Ubuntu-14.04-LTS-SIGIO-Signal.html TODO: check CVE-2017-7318 (Siklu EtherHaul devices before 7.4.0 are vulnerable to a remote command ...) NOT-FOR-US: Siklu EtherHaul @@ -943,6 +945,8 @@ CVE-2017-7287 RESERVED CVE-2017-7286 (The Linux kernel package 3.16.0-28 on Ubuntu 14.04 LTS mishandles a ...) + - linux + NOTE: https://packetstormsecurity.com/files/141930/Linux-3.16.0-28-Integer-Overflow.html TODO: check CVE-2016-10303 RESERVED ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50564 - data/CVE
Author: carnil Date: 2017-04-11 05:28:49 + (Tue, 11 Apr 2017) New Revision: 50564 Modified: data/CVE/list Log: Add bug reference for CVE-2017-2801 Modified: data/CVE/list === --- data/CVE/list 2017-04-11 05:10:16 UTC (rev 50563) +++ data/CVE/list 2017-04-11 05:28:49 UTC (rev 50564) @@ -13814,7 +13814,7 @@ RESERVED CVE-2017-2801 [Incorrect comparison in X.509 DN strings] RESERVED - - botan1.10 + - botan1.10 (bug #860072) NOTE: https://github.com/randombit/botan/commit/c927101675e5f63fc0bdd93c5a4825adc54323b4 (1.10.16) NOTE: Bug introduced in 1.6.0 or earlier, fixed in 2.1.0 and 1.10.16 CVE-2017-2800 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50563 - data/CVE
Author: carnil Date: 2017-04-11 05:10:16 + (Tue, 11 Apr 2017) New Revision: 50563 Modified: data/CVE/list Log: Add fixing commit for CVE-2017-2801/botan1.10 Modified: data/CVE/list === --- data/CVE/list 2017-04-11 05:05:24 UTC (rev 50562) +++ data/CVE/list 2017-04-11 05:10:16 UTC (rev 50563) @@ -13815,6 +13815,7 @@ CVE-2017-2801 [Incorrect comparison in X.509 DN strings] RESERVED - botan1.10 + NOTE: https://github.com/randombit/botan/commit/c927101675e5f63fc0bdd93c5a4825adc54323b4 (1.10.16) NOTE: Bug introduced in 1.6.0 or earlier, fixed in 2.1.0 and 1.10.16 CVE-2017-2800 RESERVED ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50562 - data/CVE
Author: carnil Date: 2017-04-11 05:05:24 + (Tue, 11 Apr 2017) New Revision: 50562 Modified: data/CVE/list Log: Triage two more botan1.10 issues Modified: data/CVE/list === --- data/CVE/list 2017-04-11 05:03:10 UTC (rev 50561) +++ data/CVE/list 2017-04-11 05:05:24 UTC (rev 50562) @@ -28474,9 +28474,11 @@ CVE-2016-6880 RESERVED CVE-2016-6879 (The X509_Certificate::allowed_usage function in botan 1.11.x before ...) - TODO: check + - botan1.10 (Introduced in 1.11.0) + NOTE: Introduced in 1.11.0, fixed in 1.11.31 CVE-2016-6878 (The Curve25519 code in botan before 1.11.31, on systems without a ...) - TODO: check + - botan1.10 (Introduced in 1.11.12) + NOTE: Introduced in 1.11.12, fixed in 1.11.31 CVE-2016-6877 RESERVED CVE-2016-6876 (The RESOLV::lookup iRule command in F5 BIG-IP LTM, APM, ASM, and Link ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50561 - data/CVE
Author: carnil Date: 2017-04-11 05:03:10 + (Tue, 11 Apr 2017) New Revision: 50561 Modified: data/CVE/list Log: Add two new botan1.10 issues Modified: data/CVE/list === --- data/CVE/list 2017-04-11 04:55:20 UTC (rev 50560) +++ data/CVE/list 2017-04-11 05:03:10 UTC (rev 50561) @@ -1228,8 +1228,10 @@ RESERVED CVE-2017-7253 (Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: ...) NOT-FOR-US: Dahua IP Camera devices -CVE-2017-7252 +CVE-2017-7252 [Incorrect bcrypt computation] RESERVED + - botan1.10 (Introduced in 1.11.0) + NOTE: Bug introduced in 1.11.0, fixed in 2.1.0. CVE-2017-7251 (A Cross-Site Scripting (XSS) was discovered in pi-engine/pi 2.5.0. The ...) NOT-FOR-US: pi-engine CVE-2017-7250 (A Cross-Site Scripting (XSS) was discovered in Gazelle before ...) @@ -13810,8 +13812,10 @@ RESERVED CVE-2017-2802 RESERVED -CVE-2017-2801 +CVE-2017-2801 [Incorrect comparison in X.509 DN strings] RESERVED + - botan1.10 + NOTE: Bug introduced in 1.6.0 or earlier, fixed in 2.1.0 and 1.10.16 CVE-2017-2800 RESERVED CVE-2017-2799 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50560 - data/CVE
Author: carnil Date: 2017-04-11 04:55:20 + (Tue, 11 Apr 2017) New Revision: 50560 Modified: data/CVE/list Log: Add bug references for tomcat8 issues Modified: data/CVE/list === --- data/CVE/list 2017-04-11 04:55:12 UTC (rev 50559) +++ data/CVE/list 2017-04-11 04:55:20 UTC (rev 50560) @@ -5700,14 +5700,14 @@ CVE-2017-5651 RESERVED - tomcat9 (bug #802312) - - tomcat8 + - tomcat8 (bug #860071) [jessie] - tomcat8 (Only affects 8.5 and later) NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/21 NOTE: Fixed by: http://svn.apache.org/r1788546 (8.5.x) CVE-2017-5650 RESERVED - tomcat9 (bug #802312) - - tomcat8 + - tomcat8 (bug #860070) [jessie] - tomcat8 (Only affects 8.5 and later) NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/22 NOTE: Fixed by: http://svn.apache.org/r1788480 (8.5.x) @@ -5716,7 +5716,7 @@ CVE-2017-5648 RESERVED - tomcat9 (bug #802312) - - tomcat8 + - tomcat8 (bug #860069) - tomcat7 7.0.72-3 NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API - tomcat6 (Only affects 7.0 an later) @@ -5727,7 +5727,7 @@ CVE-2017-5647 RESERVED - tomcat9 (bug #802312) - - tomcat8 + - tomcat8 (bug #860068) - tomcat7 7.0.72-3 NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API - tomcat6 6.0.41-3 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50559 - bin
Author: carnil Date: 2017-04-11 04:55:12 + (Tue, 11 Apr 2017) New Revision: 50559 Modified: bin/report-vuln Log: report-vuln: Cope with changed output around RESERVED word on mitre.org Modified: bin/report-vuln === --- bin/report-vuln 2017-04-11 04:36:05 UTC (rev 50558) +++ bin/report-vuln 2017-04-11 04:55:12 UTC (rev 50559) @@ -80,7 +80,7 @@ desc = False r = re.compile('.*Description<.*') tag = re.compile('.*.*') - reserved = re.compile(r'\*+\s+RESERVED\s+\*+') +reserved = re.compile(r'\*+\s+()?RESERVED()?\s+\*+') ret = '' resp = http_get(id) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50558 - data/CVE
Author: carnil Date: 2017-04-11 04:36:05 + (Tue, 11 Apr 2017) New Revision: 50558 Modified: data/CVE/list Log: Add fixing version for dovecot Modified: data/CVE/list === --- data/CVE/list 2017-04-11 04:26:02 UTC (rev 50557) +++ data/CVE/list 2017-04-11 04:36:05 UTC (rev 50558) @@ -14087,7 +14087,7 @@ CVE-2017-2669 [auth: Do not double-expand key in passdb dict when authenticating] RESERVED {DSA-3828-1} - - dovecot (bug #860049) + - dovecot 1:2.2.27-3 (bug #860049) [wheezy] - dovecot (Vulnerable code not present) NOTE: Fixed by: https://github.com/dovecot/core/commit/30feb7a30f193197f1aab8a7b04a26b42735 NOTE: Introduced by: https://github.com/dovecot/core/commit/79042f8c2ec1778528584c064b164d1ebcdde16b ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50557 - data/CVE
Author: carnil Date: 2017-04-11 04:26:02 + (Tue, 11 Apr 2017) New Revision: 50557 Modified: data/CVE/list Log: Add commit references for tomcat issues Modified: data/CVE/list === --- data/CVE/list 2017-04-11 04:12:29 UTC (rev 50556) +++ data/CVE/list 2017-04-11 04:26:02 UTC (rev 50557) @@ -5699,32 +5699,46 @@ RESERVED CVE-2017-5651 RESERVED + - tomcat9 (bug #802312) - tomcat8 [jessie] - tomcat8 (Only affects 8.5 and later) NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/21 + NOTE: Fixed by: http://svn.apache.org/r1788546 (8.5.x) CVE-2017-5650 RESERVED + - tomcat9 (bug #802312) - tomcat8 [jessie] - tomcat8 (Only affects 8.5 and later) NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/22 + NOTE: Fixed by: http://svn.apache.org/r1788480 (8.5.x) CVE-2017-5649 (Apache Geode before 1.1.1, when a cluster has enabled security by ...) NOT-FOR-US: Apache Geode CVE-2017-5648 RESERVED + - tomcat9 (bug #802312) - tomcat8 - tomcat7 7.0.72-3 NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API - - tomcat6 6.0.41-3 - NOTE: Since 6.0.41-3, src:tomcat6 only builds a servlet and docs in Jessie + - tomcat6 (Only affects 7.0 an later) NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/23 + NOTE: Fixed by: http://svn.apache.org/r1785775 (8.5.x) + NOTE: Fixed by: http://svn.apache.org/r1785776 (8.0.x) + NOTE: Fixed by: http://svn.apache.org/r1785777 (7.0.x) CVE-2017-5647 RESERVED + - tomcat9 (bug #802312) - tomcat8 - tomcat7 7.0.72-3 NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API - tomcat6 6.0.41-3 NOTE: Since 6.0.41-3, src:tomcat6 only builds a servlet and docs in Jessie NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/24 + NOTE: Fixed by: http://svn.apache.org/r1788932 (8.5.x) + NOTE: Fixed by: http://svn.apache.org/r1788999 (8.0.x) + NOTE: Fixed by: http://svn.apache.org/r1789008 (7.0.x) + NOTE: Fixed by: http://svn.apache.org/r1789024 (6.0.x) + NOTE: Fixed by: http://svn.apache.org/r1789155 (6.0.x) + NOTE: Fixed by: http://svn.apache.org/r1789856 (6.0.x) CVE-2017-5646 RESERVED CVE-2017-5645 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50556 - data/CVE
Author: carnil Date: 2017-04-11 04:12:29 + (Tue, 11 Apr 2017) New Revision: 50556 Modified: data/CVE/list Log: Add CVE-2017-7618/linux Modified: data/CVE/list === --- data/CVE/list 2017-04-11 04:11:38 UTC (rev 50555) +++ data/CVE/list 2017-04-11 04:12:29 UTC (rev 50556) @@ -51,7 +51,8 @@ CVE-2017-7620 RESERVED CVE-2017-7618 (crypto/ahash.c in the Linux kernel through 4.10.9 allows attackers to ...) - TODO: check + - linux + NOTE: http://marc.info/?l=linux-crypto-vger&m=149181655623850&w=2 CVE-2017-7616 (Incorrect error handling in the set_mempolicy and mbind compat syscalls ...) - linux NOTE: Fixed by: https://git.kernel.org/linus/cf01fb9985e8deb25ccf0ea54d916b8871ae0e62 (4.11-rc6) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50555 - data/CVE
Author: carnil Date: 2017-04-11 04:11:38 + (Tue, 11 Apr 2017) New Revision: 50555 Modified: data/CVE/list Log: Add CVE-2017-7616/linux Modified: data/CVE/list === --- data/CVE/list 2017-04-10 21:10:13 UTC (rev 50554) +++ data/CVE/list 2017-04-11 04:11:38 UTC (rev 50555) @@ -53,7 +53,8 @@ CVE-2017-7618 (crypto/ahash.c in the Linux kernel through 4.10.9 allows attackers to ...) TODO: check CVE-2017-7616 (Incorrect error handling in the set_mempolicy and mbind compat syscalls ...) - TODO: check + - linux + NOTE: Fixed by: https://git.kernel.org/linus/cf01fb9985e8deb25ccf0ea54d916b8871ae0e62 (4.11-rc6) CVE-2016-10323 (Synology Photo Station before 6.3-2958 allows local users to gain ...) TODO: check CVE-2016-10322 (Synology Photo Station before 6.3-2958 allows remote authenticated ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50554 - data/CVE
Author: sectracker Date: 2017-04-10 21:10:13 + (Mon, 10 Apr 2017) New Revision: 50554 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2017-04-10 21:05:38 UTC (rev 50553) +++ data/CVE/list 2017-04-10 21:10:13 UTC (rev 50554) @@ -1,3 +1,63 @@ +CVE-2017-7645 + RESERVED +CVE-2017-7644 + RESERVED +CVE-2017-7643 + RESERVED +CVE-2017-7642 + RESERVED +CVE-2017-7641 + RESERVED +CVE-2017-7640 + RESERVED +CVE-2017-7639 + RESERVED +CVE-2017-7638 + RESERVED +CVE-2017-7637 + RESERVED +CVE-2017-7636 + RESERVED +CVE-2017-7635 + RESERVED +CVE-2017-7634 + RESERVED +CVE-2017-7633 + RESERVED +CVE-2017-7632 + RESERVED +CVE-2017-7631 + RESERVED +CVE-2017-7630 + RESERVED +CVE-2017-7629 + RESERVED +CVE-2017-7628 + RESERVED +CVE-2017-7627 + RESERVED +CVE-2017-7626 + RESERVED +CVE-2017-7625 (In Fiyo CMS 2.x through 2.0.7, attackers may upload a webshell via the ...) + TODO: check +CVE-2017-7624 (The iw_read_bmp_file function in imagew-bmp.c in libimageworsener.a in ...) + TODO: check +CVE-2017-7623 (The iwmiffr_convert_row32 function in imagew-miff.c in ...) + TODO: check +CVE-2017-7622 (dde-daemon, the daemon process of DDE (Deepin Desktop Environment) 15.0 ...) + TODO: check +CVE-2017-7621 + RESERVED +CVE-2017-7620 + RESERVED +CVE-2017-7618 (crypto/ahash.c in the Linux kernel through 4.10.9 allows attackers to ...) + TODO: check +CVE-2017-7616 (Incorrect error handling in the set_mempolicy and mbind compat syscalls ...) + TODO: check +CVE-2016-10323 (Synology Photo Station before 6.3-2958 allows local users to gain ...) + TODO: check +CVE-2016-10322 (Synology Photo Station before 6.3-2958 allows remote authenticated ...) + TODO: check CVE-2017-7615 RESERVED CVE-2017-7614 (elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as ...) @@ -101,12 +161,12 @@ - tiff (bug #859998) - tiff3 NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2658 -CVE-2017-7617 [AST-2017-001: Buffer overflow in CDR's set user] +CVE-2017-7617 (Remote code execution can occur in Asterisk Open Source 13.x before ...) - asterisk 1:13.14.1~dfsg-1 (bug #859910) [jessie] - asterisk (Vulnerable code not present) [wheezy] - asterisk (Vulnerable code not present) NOTE: http://downloads.asterisk.org/pub/security/AST-2017-001.html -CVE-2017-7619 [Infinite loop due to rounding error] +CVE-2017-7619 (In ImageMagick 7.0.4-9, an infinite loop can occur because of a ...) - imagemagick (bug #859769) NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31506 NOTE: Fixed by: http://git.imagemagick.org/repos/ImageMagick/commit/63757068c803f692bd70304b06ce3406e0b67c7f @@ -195,6 +255,7 @@ CVE-2016-1000306 REJECTED CVE-2017-7578 (Multiple heap-based buffer overflows in parser.c in libming 0.4.7 allow ...) + {DLA-890-1} - ming NOTE: http://www.openwall.com/lists/oss-security/2017/04/07/1 NOTE: https://github.com/libming/libming/issues/68 @@ -642,8 +703,7 @@ CVE-2017-7378 (The PoDoFo::PdfPainter::ExpandTabs function in PdfPainter.cpp in PoDoFo ...) - libpodofo (bug #859330) NOTE: http://www.openwall.com/lists/oss-security/2017/04/01/1 -CVE-2017-7377 [9pfs: host memory leakage via v9fs_create] - RESERVED +CVE-2017-7377 (The (1) v9fs_create and (2) v9fs_lcreate functions in hw/9pfs/9p.c in ...) - qemu (bug #859854) [jessie] - qemu (Minor issue) - qemu-kvm @@ -719,12 +779,12 @@ CVE-2017-7346 (The vmw_gb_surface_define_ioctl function in ...) - linux [wheezy] - linux (Vulnerable code introduced in 3.14) -CVE-2017-7345 - RESERVED -CVE-2016-10311 - RESERVED -CVE-2016-10310 - RESERVED +CVE-2017-7345 (NetApp OnCommand Performance Manager and OnCommand Unified Manager for ...) + TODO: check +CVE-2016-10311 (Stack-based buffer overflow in SAP NetWeaver 7.0 through 7.5 allows ...) + TODO: check +CVE-2016-10310 (Buffer overflow in the MobiLink Synchronization Server component in ...) + TODO: check CVE-2017-7344 RESERVED CVE-2017-7343 @@ -775,8 +835,8 @@ NOT-FOR-US: MODX Revolution CVE-2017-7320 (setup/controllers/language.php in MODX Revolution 2.5.4-pl and earlier ...) NOT-FOR-US: MODX Revolution -CVE-2017-7319 - RESERVED +CVE-2017-7319 (A vulnerability in the Linux kernel package 3.16.0-28 on Ubuntu 14.04 ...) + TODO: check CVE-2017-7318 (Siklu EtherHaul devices before 7.4.0 are vulnerable to a remote command ...) NOT-FOR-US: Siklu EtherHaul CVE-2017-7317 @@ -844,8 +904,8 @@ NOT-FOR-US: Trango CVE-2016-10305 (Trango Apex <= 2.1.1, ApexLynx <
[Secure-testing-commits] r50553 - data
Author: jmm Date: 2017-04-10 21:05:38 + (Mon, 10 Apr 2017) New Revision: 50553 Modified: data/dsa-needed.txt Log: add bouncycastle Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2017-04-10 20:52:27 UTC (rev 50552) +++ data/dsa-needed.txt 2017-04-10 21:05:38 UTC (rev 50553) @@ -14,6 +14,8 @@ -- 389-ds-base (fw) -- +bouncycastle (jmm) +-- chromium-browser -- graphicsmagick ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50552 - data/CVE
Author: jmm Date: 2017-04-10 20:52:27 + (Mon, 10 Apr 2017) New Revision: 50552 Modified: data/CVE/list Log: new tomcat issues Modified: data/CVE/list === --- data/CVE/list 2017-04-10 20:20:14 UTC (rev 50551) +++ data/CVE/list 2017-04-10 20:52:27 UTC (rev 50552) @@ -5638,14 +5638,32 @@ RESERVED CVE-2017-5651 RESERVED + - tomcat8 + [jessie] - tomcat8 (Only affects 8.5 and later) + NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/21 CVE-2017-5650 RESERVED + - tomcat8 + [jessie] - tomcat8 (Only affects 8.5 and later) + NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/22 CVE-2017-5649 (Apache Geode before 1.1.1, when a cluster has enabled security by ...) NOT-FOR-US: Apache Geode CVE-2017-5648 RESERVED + - tomcat8 + - tomcat7 7.0.72-3 + NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API + - tomcat6 6.0.41-3 + NOTE: Since 6.0.41-3, src:tomcat6 only builds a servlet and docs in Jessie + NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/23 CVE-2017-5647 RESERVED + - tomcat8 + - tomcat7 7.0.72-3 + NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API + - tomcat6 6.0.41-3 + NOTE: Since 6.0.41-3, src:tomcat6 only builds a servlet and docs in Jessie + NOTE: http://www.openwall.com/lists/oss-security/2017/04/10/24 CVE-2017-5646 RESERVED CVE-2017-5645 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50551 - data
Author: apo Date: 2017-04-10 20:20:14 + (Mon, 10 Apr 2017) New Revision: 50551 Modified: data/dla-needed.txt Log: Add tiff and tiff3 to dla-needed.txt Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-04-10 19:58:59 UTC (rev 50550) +++ data/dla-needed.txt 2017-04-10 20:20:14 UTC (rev 50551) @@ -116,6 +116,10 @@ NOTE: from my point of view backporting the introduction of these new members to this old NOTE: version is way to invasive and such this should be marked as -- +tiff +-- +tiff3 +-- web2py NOTE: Unclear if these bugs have been fixed or when. NOTE: No response to upstream bug report: ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50550 - data/DSA
Author: carnil Date: 2017-04-10 19:58:59 + (Mon, 10 Apr 2017) New Revision: 50550 Modified: data/DSA/list Log: Reserve DSA number for dovecot DSA Modified: data/DSA/list === --- data/DSA/list 2017-04-10 19:58:12 UTC (rev 50549) +++ data/DSA/list 2017-04-10 19:58:59 UTC (rev 50550) @@ -1,3 +1,6 @@ +[10 Apr 2017] DSA-3828-1 dovecot - security update + {CVE-2017-2669} + [jessie] - dovecot 1:2.2.13-12~deb8u2 [07 Apr 2017] DSA-3827-1 jasper - security update {CVE-2016-9591 CVE-2016-10249 CVE-2016-10251} [jessie] - jasper 1.900.1-debian1-2.4+deb8u3 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50549 - data/CVE
Author: carnil Date: 2017-04-10 19:58:12 + (Mon, 10 Apr 2017) New Revision: 50549 Modified: data/CVE/list Log: Add bug reference for dovecot, #860049 Modified: data/CVE/list === --- data/CVE/list 2017-04-10 19:42:58 UTC (rev 50548) +++ data/CVE/list 2017-04-10 19:58:12 UTC (rev 50549) @@ -13993,7 +13993,7 @@ RESERVED CVE-2017-2669 [auth: Do not double-expand key in passdb dict when authenticating] RESERVED - - dovecot + - dovecot (bug #860049) [wheezy] - dovecot (Vulnerable code not present) NOTE: Fixed by: https://github.com/dovecot/core/commit/30feb7a30f193197f1aab8a7b04a26b42735 NOTE: Introduced by: https://github.com/dovecot/core/commit/79042f8c2ec1778528584c064b164d1ebcdde16b ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50548 - data/CVE
Author: carnil Date: 2017-04-10 19:42:58 + (Mon, 10 Apr 2017) New Revision: 50548 Modified: data/CVE/list Log: Add CVE-2017-2669/dovecot Modified: data/CVE/list === --- data/CVE/list 2017-04-10 19:36:12 UTC (rev 50547) +++ data/CVE/list 2017-04-10 19:42:58 UTC (rev 50548) @@ -13991,8 +13991,12 @@ NOTE: Fixed by: https://git.kernel.org/linus/43a6684519ab0a6c52024b5e25322476cabad893 CVE-2017-2670 RESERVED -CVE-2017-2669 +CVE-2017-2669 [auth: Do not double-expand key in passdb dict when authenticating] RESERVED + - dovecot + [wheezy] - dovecot (Vulnerable code not present) + NOTE: Fixed by: https://github.com/dovecot/core/commit/30feb7a30f193197f1aab8a7b04a26b42735 + NOTE: Introduced by: https://github.com/dovecot/core/commit/79042f8c2ec1778528584c064b164d1ebcdde16b CVE-2017-2668 RESERVED CVE-2017-2667 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50547 - data/CVE
Author: apo Date: 2017-04-10 19:36:12 + (Mon, 10 Apr 2017) New Revision: 50547 Modified: data/CVE/list Log: CVE-2017-7614,binutils: Minor issue no-dsa for Wheezy Modified: data/CVE/list === --- data/CVE/list 2017-04-10 18:36:28 UTC (rev 50546) +++ data/CVE/list 2017-04-10 19:36:12 UTC (rev 50547) @@ -3,6 +3,7 @@ CVE-2017-7614 (elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as ...) - binutils (low; bug #859989) [jessie] - binutils (Minor issue) + [wheezy] - binutils (Minor issue) NOTE: https://blogs.gentoo.org/ago/2017/04/05/binutils-two-null-pointer-dereference-in-elflink-c/ NOTE: Fixed by: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=ad32986fdf9da1c8748e47b8b45100398223dba8 CVE-2017-7613 (elflint.c in elfutils 0.168 does not validate the number of sections ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50546 - in data: . DLA
Author: apo Date: 2017-04-10 18:36:28 + (Mon, 10 Apr 2017) New Revision: 50546 Modified: data/DLA/list data/dla-needed.txt Log: Reserve DLA-893-1 for bouncycastle Modified: data/DLA/list === --- data/DLA/list 2017-04-10 18:14:36 UTC (rev 50545) +++ data/DLA/list 2017-04-10 18:36:28 UTC (rev 50546) @@ -1,3 +1,6 @@ +[10 Apr 2017] DLA-893-1 bouncycastle - security update + {CVE-2015-6644} + [wheezy] - bouncycastle 1.44+dfsg-3.1+deb7u2 [10 Apr 2017] DLA-892-1 libnl3 - security update {CVE-2017-0553} [wheezy] - libnl3 3.2.7-4+deb7u1 Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-04-10 18:14:36 UTC (rev 50545) +++ data/dla-needed.txt 2017-04-10 18:36:28 UTC (rev 50546) @@ -13,8 +13,6 @@ apng2gif NOTE: 24031017: No upstream patch available yet. Have pinged bug#. -- -bouncycastle (Markus Koschany) --- ca-certificates NOTE: maintainer will handle the upload, see https://lists.debian.org/1acb8e97-8c9f-8b54-348c-0c12f53a8...@pbandjelly.org -- ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50545 - data/CVE
Author: carnil Date: 2017-04-10 18:14:36 + (Mon, 10 Apr 2017) New Revision: 50545 Modified: data/CVE/list Log: CVE-2017-6076/wolfssl fixed in unstable Modified: data/CVE/list === --- data/CVE/list 2017-04-10 18:12:51 UTC (rev 50544) +++ data/CVE/list 2017-04-10 18:14:36 UTC (rev 50545) @@ -4321,7 +4321,7 @@ CVE-2016-10227 (Zyxel USG50 Security Appliance and NWA3560-N Access Point allow remote ...) NOT-FOR-US: Zyxel CVE-2017-6076 (In versions of wolfSSL before 3.10.2 the function fp_mul_comba makes ...) - - wolfssl (bug #856114) + - wolfssl 3.10.2+dfsg-1 (bug #856114) NOTE: https://github.com/wolfSSL/wolfssl/releases/tag/v3.10.2-stable NOTE: https://github.com/wolfSSL/wolfssl/commit/345df93978c41da1ac8047a37f1fed5286883d8d CVE-2017-6075 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50544 - data/CVE
Author: carnil Date: 2017-04-10 18:12:51 + (Mon, 10 Apr 2017) New Revision: 50544 Modified: data/CVE/list Log: Process more NFUs Modified: data/CVE/list === --- data/CVE/list 2017-04-10 17:56:09 UTC (rev 50543) +++ data/CVE/list 2017-04-10 18:12:51 UTC (rev 50544) @@ -67606,25 +67606,25 @@ CVE-2015-2890 (The BIOS implementation on Dell Latitude, OptiPlex, Precision Mobile ...) NOT-FOR-US: BIOS implementations on Dell hardware with model-dependent firmware CVE-2015-2889 (Summer Baby Zoom Wifi Monitor & Internet Viewing System allows remote ...) - TODO: check +NOT-FOR-US: Summer Baby Zoom Wifi Monitor and Internet Viewing System CVE-2015-2888 (Summer Baby Zoom Wifi Monitor & Internet Viewing System allows remote ...) - TODO: check + NOT-FOR-US: Summer Baby Zoom Wifi Monitor and Internet Viewing System CVE-2015-2887 (iBaby M3S has a password of admin for the backdoor admin account. ...) - TODO: check + NOT-FOR-US: iBaby M3S CVE-2015-2886 (iBaby M6 allows remote attackers to obtain sensitive information, ...) - TODO: check + NOT-FOR-US: iBaby M6 CVE-2015-2885 (Lens Peek-a-View has a password of 2601hx for the backdoor admin ...) - TODO: check + NOT-FOR-US: Lens Peek-a-View CVE-2015-2884 (Philips In.Sight B120/37 allows remote attackers to obtain sensitive ...) - TODO: check + NOT-FOR-US: Philips In.Sight B120/37 CVE-2015-2883 (Philips In.Sight B120/37 has XSS, related to the Weaved cloud web ...) - TODO: check + NOT-FOR-US: Philips In.Sight B120/37 CVE-2015-2882 (Philips In.Sight B120/37 has a password of b120root for the backdoor ...) - TODO: check + NOT-FOR-US: Philips In.Sight B120/37 CVE-2015-2881 (Gynoii has a password of guest for the backdoor guest account and a ...) - TODO: check + NOT-FOR-US: Gynoii CVE-2015-2880 (TRENDnet WiFi Baby Cam TV-IP743SIC has a password of admin for the ...) - TODO: check + NOT-FOR-US: TRENDnet WiFi Baby Cam TV-IP743SIC CVE-2015-2879 RESERVED CVE-2015-2878 @@ -94122,7 +94122,7 @@ CVE-2014-2961 RESERVED CVE-2014-2960 (Vision Critical before 2014-05-30 allows attackers to read arbitrary ...) - TODO: check + NOT-FOR-US: Vision Critical CVE-2014-2959 (logViewer.htm on the Dell ML6000 tape backup system with firmware ...) NOT-FOR-US: Quantum Scalar CVE-2014-2958 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50543 - data/CVE
Author: carnil Date: 2017-04-10 17:56:09 + (Mon, 10 Apr 2017) New Revision: 50543 Modified: data/CVE/list Log: More NFUs processed Modified: data/CVE/list === --- data/CVE/list 2017-04-10 17:50:12 UTC (rev 50542) +++ data/CVE/list 2017-04-10 17:56:09 UTC (rev 50543) @@ -35233,23 +35233,23 @@ CVE-2016-5060 (Multiple cross-site scripting (XSS) vulnerabilities in nGrinder before ...) NOT-FOR-US: nGrinder CVE-2016-5059 (OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to ...) - TODO: check + NOT-FOR-US: OSRAM SYLVANIA Osram Lightify Pro CVE-2016-5058 (OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee ...) - TODO: check + NOT-FOR-US: OSRAM SYLVANIA Osram Lightify Pro CVE-2016-5057 (OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL ...) - TODO: check + NOT-FOR-US: OSRAM SYLVANIA Osram Lightify Pro CVE-2016-5056 (OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex ...) - TODO: check + NOT-FOR-US: OSRAM SYLVANIA Osram Lightify Pro CVE-2016-5055 (OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 has XSS in the ...) - TODO: check + NOT-FOR-US: OSRAM SYLVANIA Osram Lightify Pro CVE-2016-5054 (OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee ...) - TODO: check + NOT-FOR-US: OSRAM SYLVANIA Osram Lightify Home CVE-2016-5053 (OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote ...) - TODO: check + NOT-FOR-US: OSRAM SYLVANIA Osram Lightify Home CVE-2016-5052 (OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL ...) - TODO: check + NOT-FOR-US: OSRAM SYLVANIA Osram Lightify Home CVE-2016-5051 (OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 stores a PSK in ...) - TODO: check + NOT-FOR-US: OSRAM SYLVANIA Osram Lightify Home CVE-2016-5050 (Unrestricted file upload vulnerability in chat/sendfile.aspx in ...) NOT-FOR-US: ReadyDesk CVE-2016-5049 (Directory traversal vulnerability in chat/openattach.aspx in ReadyDesk ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50542 - data/CVE
Author: carnil Date: 2017-04-10 17:50:12 + (Mon, 10 Apr 2017) New Revision: 50542 Modified: data/CVE/list Log: Process some NFUs specific to Dell products Modified: data/CVE/list === --- data/CVE/list 2017-04-10 17:48:23 UTC (rev 50541) +++ data/CVE/list 2017-04-10 17:50:12 UTC (rev 50542) @@ -55210,17 +55210,17 @@ CVE-2015-7276 RESERVED CVE-2015-7275 (Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 ...) - TODO: check + NOT-FOR-US: Dell iDRAC CVE-2015-7274 (Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 allows ...) - TODO: check + NOT-FOR-US: Dell iDRAC CVE-2015-7273 (Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 ...) - TODO: check + NOT-FOR-US: Dell iDRAC CVE-2015-7272 (Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 ...) - TODO: check + NOT-FOR-US: Dell iDRAC CVE-2015-7271 (Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 ...) - TODO: check + NOT-FOR-US: Dell iDRAC CVE-2015-7270 (Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 ...) - TODO: check + NOT-FOR-US: Dell iDRAC CVE-2015-7269 RESERVED CVE-2015-7268 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50541 - data/CVE
Author: carnil Date: 2017-04-10 17:48:23 + (Mon, 10 Apr 2017) New Revision: 50541 Modified: data/CVE/list Log: Process some NFUs from TODO Modified: data/CVE/list === --- data/CVE/list 2017-04-10 17:48:11 UTC (rev 50540) +++ data/CVE/list 2017-04-10 17:48:23 UTC (rev 50541) @@ -35209,19 +35209,19 @@ CVE-2016-5072 (OXID eShop before 2016-06-13 allows remote attackers to execute ...) TODO: check CVE-2016-5071 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the ...) - TODO: check + NOT-FOR-US: Sierra Wireless GX 440 devices with ALEOS firmware CVE-2016-5070 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store ...) - TODO: check + NOT-FOR-US: Sierra Wireless GX 440 devices with ALEOS firmware CVE-2016-5069 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable ...) - TODO: check + NOT-FOR-US: Sierra Wireless GX 440 devices with ALEOS firmware CVE-2016-5068 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 do not require ...) - TODO: check + NOT-FOR-US: Sierra Wireless GX 440 devices with ALEOS firmware CVE-2016-5067 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT ...) - TODO: check + NOT-FOR-US: Sierra Wireless GX 440 devices with ALEOS firmware CVE-2016-5066 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak ...) - TODO: check + NOT-FOR-US: Sierra Wireless GX 440 devices with ALEOS firmware CVE-2016-5065 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow ...) - TODO: check + NOT-FOR-US: Sierra Wireless GX 440 devices with ALEOS firmware CVE-2016-5064 RESERVED CVE-2016-5063 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50540 - data/CVE
Author: carnil Date: 2017-04-10 17:48:11 + (Mon, 10 Apr 2017) New Revision: 50540 Modified: data/CVE/list Log: Adjust epoch number for CVE-2015-7546/keystone and append debian revision Modified: data/CVE/list === --- data/CVE/list 2017-04-10 17:10:32 UTC (rev 50539) +++ data/CVE/list 2017-04-10 17:48:11 UTC (rev 50540) @@ -54511,7 +54511,7 @@ NOTE: https://googleonlinesecurity.blogspot.cz/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html NOTE: https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html CVE-2015-7546 (The identity service in OpenStack Identity (Keystone) before 2015.1.3 ...) - - keystone 1:9.0.0 + - keystone 2:9.0.0~rc2-1 [jessie] - keystone (Too intrusive to backport, needs to switch to different token provider) [wheezy] - keystone (Too intrusive to backport, needs to switch to different token provider) - python-keystonemiddleware 3.0.0-1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50535 - data/CVE
Author: jmm Date: 2017-04-10 16:57:44 + (Mon, 10 Apr 2017) New Revision: 50535 Modified: data/CVE/list Log: vim issues also affect neovim new heimdal issue more elfutils no-dsa Modified: data/CVE/list === --- data/CVE/list 2017-04-10 16:00:34 UTC (rev 50534) +++ data/CVE/list 2017-04-10 16:57:44 UTC (rev 50535) @@ -7,18 +7,22 @@ NOTE: Fixed by: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=ad32986fdf9da1c8748e47b8b45100398223dba8 CVE-2017-7613 (elflint.c in elfutils 0.168 does not validate the number of sections ...) - elfutils (bug #859990) + [jessie] - elfutils (Minor issue) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=21312 NOTE: https://blogs.gentoo.org/ago/2017/04/03/elfutils-memory-allocation-failure-in-xcalloc-xmalloc-c/ CVE-2017-7612 (The check_sysv_hash function in elflint.c in elfutils 0.168 allows ...) - elfutils (bug #859991) + [jessie] - elfutils (Minor issue) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=21311 NOTE: https://blogs.gentoo.org/ago/2017/04/03/elfutils-heap-based-buffer-overflow-in-check_sysv_hash-elflint-c/ CVE-2017-7611 (The check_symtab_shndx function in elflint.c in elfutils 0.168 allows ...) - elfutils (bug #859992) + [jessie] - elfutils (Minor issue) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=21310 NOTE: https://blogs.gentoo.org/ago/2017/04/03/elfutils-heap-based-buffer-overflow-in-check_symtab_shndx-elflint-c/ CVE-2017-7610 (The check_group function in elflint.c in elfutils 0.168 allows remote ...) - elfutils (bug #859993) + [jessie] - elfutils (Minor issue) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=21320 NOTE: https://blogs.gentoo.org/ago/2017/04/03/elfutils-heap-based-buffer-overflow-in-check_group-elflint-c/ CVE-2017-7609 (elf_compress.c in elfutils 0.168 does not validate the zlib compression ...) @@ -2731,6 +2735,7 @@ RESERVED CVE-2017-6594 RESERVED + - heimdal 7.1.0+dfsg-10 CVE-2017-6593 RESERVED CVE-2017-6592 @@ -3631,11 +3636,13 @@ {DLA-850-1} - vim 2:8.0.0197-3 (bug #856266) [jessie] - vim (Minor issue, can be fixed via point release) + - neovim 0.1.7-4 NOTE: Fixed by: https://github.com/vim/vim/commit/0c8485f0e4931463c0f7986e1ea84a7d79f10c75 CVE-2017-6349 (An integer overflow at a u_read_undo memory allocation site would occur ...) {DLA-850-1} - vim 2:8.0.0197-3 (bug #856266) [jessie] - vim (Minor issue, can be fixed via point release) + - neovim 0.1.7-4 NOTE: Fixed by: https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c CVE-2017-6344 (XML External Entity (XXE) vulnerability in Grails PDF Plugin 0.6 allows ...) NOT-FOR-US: Grails PDF plugin @@ -4674,6 +4681,7 @@ CVE-2017-5953 (vim before patch 8.0.0322 does not properly validate values for tree ...) {DSA-3786-1 DLA-822-1} - vim 2:8.0.0197-2 (bug #854969) + - neovim 0.1.7-4 NOTE: Fixed by https://github.com/vim/vim/commit/399c297aa93afe2c0a39e2a1b3f972aebba44c9d CVE-2017-5952 RESERVED ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50539 - data/CVE
Author: jmm Date: 2017-04-10 17:10:32 + (Mon, 10 Apr 2017) New Revision: 50539 Modified: data/CVE/list Log: keystone fixed Modified: data/CVE/list === --- data/CVE/list 2017-04-10 17:04:03 UTC (rev 50538) +++ data/CVE/list 2017-04-10 17:10:32 UTC (rev 50539) @@ -54511,10 +54511,10 @@ NOTE: https://googleonlinesecurity.blogspot.cz/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html NOTE: https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html CVE-2015-7546 (The identity service in OpenStack Identity (Keystone) before 2015.1.3 ...) - - keystone + - keystone 1:9.0.0 [jessie] - keystone (Too intrusive to backport, needs to switch to different token provider) [wheezy] - keystone (Too intrusive to backport, needs to switch to different token provider) - - python-keystonemiddleware + - python-keystonemiddleware 3.0.0-1 [jessie] - python-keystonemiddleware (Too intrusive to backport, needs to switch to different token provider) NOTE: https://wiki.openstack.org/wiki/OSSN/OSSN-0062 NOTE: Keystone: <= 2015.1.2, >= 8.0.0 <= 8.0.1 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50538 - data/CVE
Author: carnil Date: 2017-04-10 17:04:03 + (Mon, 10 Apr 2017) New Revision: 50538 Modified: data/CVE/list Log: Mark CVE-2017-6594 as not yet fixed Modified: data/CVE/list === --- data/CVE/list 2017-04-10 17:00:21 UTC (rev 50537) +++ data/CVE/list 2017-04-10 17:04:03 UTC (rev 50538) @@ -2735,7 +2735,7 @@ RESERVED CVE-2017-6594 RESERVED - - heimdal 7.1.0+dfsg-10 + - heimdal CVE-2017-6593 RESERVED CVE-2017-6592 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50536 - in data: . DLA
Author: lamby Date: 2017-04-10 17:00:16 + (Mon, 10 Apr 2017) New Revision: 50536 Modified: data/DLA/list data/dla-needed.txt Log: Reserve DLA-891-1 for libnl. Modified: data/DLA/list === --- data/DLA/list 2017-04-10 16:57:44 UTC (rev 50535) +++ data/DLA/list 2017-04-10 17:00:16 UTC (rev 50536) @@ -1,3 +1,6 @@ +[10 Apr 2017] DLA-891-1 libnl - security update + {CVE-2017-0553} + [wheezy] - libnl 1.1-7+deb7u1 [10 Apr 2017] DLA-890-1 ming - security update {CVE-2017-7578} [wheezy] - ming 1:0.4.4-1.1+deb7u2 Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-04-10 16:57:44 UTC (rev 50535) +++ data/dla-needed.txt 2017-04-10 17:00:16 UTC (rev 50536) @@ -44,8 +44,6 @@ NOTE: No known solution as of 2017-01-16. NOTE: Pinged on 2017-02-06 https://github.com/libical/libical/issues/253#issuecomment-277580552 (lamby) -- -libnl (Chris Lamb) --- libnl3 (Chris Lamb) -- libplist ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50537 - in data: . DLA
Author: lamby Date: 2017-04-10 17:00:21 + (Mon, 10 Apr 2017) New Revision: 50537 Modified: data/DLA/list data/dla-needed.txt Log: Reserve DLA-892-1 for libnl3 Modified: data/DLA/list === --- data/DLA/list 2017-04-10 17:00:16 UTC (rev 50536) +++ data/DLA/list 2017-04-10 17:00:21 UTC (rev 50537) @@ -1,3 +1,6 @@ +[10 Apr 2017] DLA-892-1 libnl3 - security update + {CVE-2017-0553} + [wheezy] - libnl3 3.2.7-4+deb7u1 [10 Apr 2017] DLA-891-1 libnl - security update {CVE-2017-0553} [wheezy] - libnl 1.1-7+deb7u1 Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-04-10 17:00:16 UTC (rev 50536) +++ data/dla-needed.txt 2017-04-10 17:00:21 UTC (rev 50537) @@ -44,8 +44,6 @@ NOTE: No known solution as of 2017-01-16. NOTE: Pinged on 2017-02-06 https://github.com/libical/libical/issues/253#issuecomment-277580552 (lamby) -- -libnl3 (Chris Lamb) --- libplist NOTE: 20170324: more information needed for open CVEs. -- ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50534 - data/CVE
Author: jmm Date: 2017-04-10 16:00:34 + (Mon, 10 Apr 2017) New Revision: 50534 Modified: data/CVE/list Log: elfutils, binutils, tiff no-dsa Android NFUs mark bluez and bundler as no-dsa for stretch Modified: data/CVE/list === --- data/CVE/list 2017-04-10 15:25:15 UTC (rev 50533) +++ data/CVE/list 2017-04-10 16:00:34 UTC (rev 50534) @@ -1,7 +1,8 @@ CVE-2017-7615 RESERVED CVE-2017-7614 (elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as ...) - - binutils (bug #859989) + - binutils (low; bug #859989) + [jessie] - binutils (Minor issue) NOTE: https://blogs.gentoo.org/ago/2017/04/05/binutils-two-null-pointer-dereference-in-elflink-c/ NOTE: Fixed by: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=ad32986fdf9da1c8748e47b8b45100398223dba8 CVE-2017-7613 (elflint.c in elfutils 0.168 does not validate the number of sections ...) @@ -26,18 +27,20 @@ NOTE: https://blogs.gentoo.org/ago/2017/04/03/elfutils-memory-allocation-failure-in-__libelf_decompress-elf_compress-c/ CVE-2017-7608 (The ebl_object_note_type_name function in eblobjnotetypename.c in ...) - elfutils (bug #859995) + [jessie] - elfutils (Minor issue) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=21300 NOTE: https://blogs.gentoo.org/ago/2017/04/03/elfutils-heap-based-buffer-overflow-in-ebl_object_note_type_name-eblobjnotetypename-c/ CVE-2017-7607 (The handle_gnu_hash function in readelf.c in elfutils 0.168 allows ...) - elfutils (bug #859996) + [jessie] - elfutils (Minor issue) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=21299 NOTE: https://blogs.gentoo.org/ago/2017/04/03/elfutils-heap-based-buffer-overflow-in-handle_gnu_hash-readelf-c/ CVE-2017-7605 (aacplusenc.c in HE-AAC+ Codec (aka libaacplus) 2.0.2 has an assertion ...) - TODO: check + NOT-FOR-US: libaacplus CVE-2017-7604 (au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a left-shift ...) - TODO: check + NOT-FOR-US: libaacplus CVE-2017-7603 (au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a signed ...) - TODO: check + NOT-FOR-US: libaacplus CVE-2017-7602 (LibTIFF 4.0.7 has a signed integer overflow, which might allow remote ...) - tiff - tiff3 @@ -59,7 +62,8 @@ NOTE: https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes CVE-2017-7598 (tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a ...) - - tiff + - tiff (low) + [jessie] - tiff (Minor issue) - tiff3 NOTE: https://github.com/vadz/libtiff/commit/3cfd62d77c2a7e147a05bd678524c345fa9c2bb8 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes @@ -74,12 +78,14 @@ NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes NOTE: https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490 CVE-2017-7595 (The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows ...) - - tiff (bug #860003) + - tiff (low; bug #860003) + [jessie] - tiff (Minor issue) - tiff3 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-divide-by-zero-in-jpegsetupencode-tiff_jpeg-c NOTE: https://github.com/vadz/libtiff/commit/47f2fb61a3a64667bce1a8398a8fcb1b348ff122 CVE-2017-7594 (The OJPEGReadHeaderInfoSecTablesDcTable function in tif_ojpeg.c in ...) - - tiff (bug #860001) + - tiff (low; bug #860001) + [jessie] - tiff (Minor issue) - tiff3 NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2659 CVE-2017-7593 (tif_read.c in LibTIFF 4.0.7 does not ensure that tif_rawdata is ...) @@ -11178,11 +11184,13 @@ NOTE: CVE for the "'cirrus_get_bpp' returns zero(0), which could lead to a divide by zero" issue. CVE-2016-9918 (In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" ...) - bluez (bug #847837) + [stretch] - bluez (Minor issue) [jessie] - bluez (Minor issue) [wheezy] - bluez (Minor issue) NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68898.html CVE-2016-9917 (In BlueZ 5.42, a buffer overflow was observed in "read_n" function in ...) - bluez (bug #847837) + [stretch] - bluez (Minor issue) [jessie] - bluez (Minor issue) [wheezy] - bluez (Minor issue) NOTE: https://www.spinics.net/lists/linux-bluetooth/msg68892.html @@ -18557,13 +18565,13 @@ CVE-2017-0559 (An information disclosure vulnerability in libskia could enable a ...) - skia (bug #818180) CVE-2017-0558 (An information disclosure vulnerability in Mediaserver could enable a ...) - TODO: check
[Secure-testing-commits] r50533 - data/CVE
Author: carnil Date: 2017-04-10 15:25:15 + (Mon, 10 Apr 2017) New Revision: 50533 Modified: data/CVE/list Log: CVE-2017-7619/imagemagick assigned Modified: data/CVE/list === --- data/CVE/list 2017-04-10 15:18:06 UTC (rev 50532) +++ data/CVE/list 2017-04-10 15:25:15 UTC (rev 50533) @@ -95,7 +95,7 @@ [jessie] - asterisk (Vulnerable code not present) [wheezy] - asterisk (Vulnerable code not present) NOTE: http://downloads.asterisk.org/pub/security/AST-2017-001.html -CVE-2017- [Infinite loop due to rounding error] +CVE-2017-7619 [Infinite loop due to rounding error] - imagemagick (bug #859769) NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31506 NOTE: Fixed by: http://git.imagemagick.org/repos/ImageMagick/commit/63757068c803f692bd70304b06ce3406e0b67c7f ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50532 - data/CVE
Author: carnil Date: 2017-04-10 15:18:06 + (Mon, 10 Apr 2017) New Revision: 50532 Modified: data/CVE/list Log: Add bug reference for CVE-2016-10321/web2py Modified: data/CVE/list === --- data/CVE/list 2017-04-10 14:53:32 UTC (rev 50531) +++ data/CVE/list 2017-04-10 15:18:06 UTC (rev 50532) @@ -36055,7 +36055,7 @@ NOTE: https://github.com/libarchive/libarchive/issues/705 NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/fd7e0c02e272913a0a8b6d492c7260dfca0b1408 (v3.2.1) CVE-2016-10321 [does not check if host is denied before verifying passwords] - - web2py + - web2py (bug #860038) [jessie] - web2py (Minor issue; issue in web admin interface which has no need to be used in production) NOTE: https://github.com/web2py/web2py/issues/1585#issuecomment-284317919 NOTE: https://github.com/web2py/web2py/commit/944d8bd8f3c5cf8ae296fc03d149056c65358426 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50531 - data/CVE
Author: carnil Date: 2017-04-10 14:53:32 + (Mon, 10 Apr 2017) New Revision: 50531 Modified: data/CVE/list Log: Correct protocol, typofix Modified: data/CVE/list === --- data/CVE/list 2017-04-10 14:52:55 UTC (rev 50530) +++ data/CVE/list 2017-04-10 14:53:32 UTC (rev 50531) @@ -36058,7 +36058,7 @@ - web2py [jessie] - web2py (Minor issue; issue in web admin interface which has no need to be used in production) NOTE: https://github.com/web2py/web2py/issues/1585#issuecomment-284317919 - NOTE: ttps://github.com/web2py/web2py/commit/944d8bd8f3c5cf8ae296fc03d149056c65358426 + NOTE: https://github.com/web2py/web2py/commit/944d8bd8f3c5cf8ae296fc03d149056c65358426 CVE-2016-4808 (Web2py versions 2.14.5 and below was affected by CSRF (Cross Site ...) - web2py (bug #856127) [jessie] - web2py (Minor issue; issue in web admin interface which has no need to be used in production) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50530 - data/CVE
Author: carnil Date: 2017-04-10 14:52:55 + (Mon, 10 Apr 2017) New Revision: 50530 Modified: data/CVE/list Log: Update information for CVE-2017-7617/asterisk Modified: data/CVE/list === --- data/CVE/list 2017-04-10 14:30:14 UTC (rev 50529) +++ data/CVE/list 2017-04-10 14:52:55 UTC (rev 50530) @@ -92,6 +92,7 @@ NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2658 CVE-2017-7617 [AST-2017-001: Buffer overflow in CDR's set user] - asterisk 1:13.14.1~dfsg-1 (bug #859910) + [jessie] - asterisk (Vulnerable code not present) [wheezy] - asterisk (Vulnerable code not present) NOTE: http://downloads.asterisk.org/pub/security/AST-2017-001.html CVE-2017- [Infinite loop due to rounding error] ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50529 - data/CVE
Author: mattia Date: 2017-04-10 14:30:14 + (Mon, 10 Apr 2017) New Revision: 50529 Modified: data/CVE/list Log: link another libpodofo commit fix Modified: data/CVE/list === --- data/CVE/list 2017-04-10 13:00:05 UTC (rev 50528) +++ data/CVE/list 2017-04-10 14:30:14 UTC (rev 50529) @@ -5553,7 +5553,7 @@ [wheezy] - libpodofo (Minor issue) NOTE: https://blogs.gentoo.org/ago/2017/02/01/podofo-infinite-loop-in-podofopdfpagegetinheritedkeyfromobject-pdfpage-cpp NOTE: https://sourceforge.net/p/podofo/mailman/podofo-users/thread/12497325.VLNgGImML2%40blackgate/#msg35640936 - NOTE: upstream commit: https://sourceforge.net/p/podofo/code/1835 + NOTE: upstream commits: https://sourceforge.net/p/podofo/code/1835 - https://sourceforge.net/p/podofo/code/1838 CVE-2017-5849 (tiffttopnm in netpbm 10.47.63 does not properly use the libtiff ...) - netpbm-free (vulnerable code not present) NOTE: http://www.openwall.com/lists/oss-security/2017/02/02/2 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50528 - data/CVE
Author: carnil Date: 2017-04-10 13:00:05 + (Mon, 10 Apr 2017) New Revision: 50528 Modified: data/CVE/list Log: Add CVE-2016-10321/web2py Modified: data/CVE/list === --- data/CVE/list 2017-04-10 12:52:44 UTC (rev 50527) +++ data/CVE/list 2017-04-10 13:00:05 UTC (rev 50528) @@ -36053,6 +36053,11 @@ - libarchive 3.2.1-1 NOTE: https://github.com/libarchive/libarchive/issues/705 NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/fd7e0c02e272913a0a8b6d492c7260dfca0b1408 (v3.2.1) +CVE-2016-10321 [does not check if host is denied before verifying passwords] + - web2py + [jessie] - web2py (Minor issue; issue in web admin interface which has no need to be used in production) + NOTE: https://github.com/web2py/web2py/issues/1585#issuecomment-284317919 + NOTE: ttps://github.com/web2py/web2py/commit/944d8bd8f3c5cf8ae296fc03d149056c65358426 CVE-2016-4808 (Web2py versions 2.14.5 and below was affected by CSRF (Cross Site ...) - web2py (bug #856127) [jessie] - web2py (Minor issue; issue in web admin interface which has no need to be used in production) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50527 - data/CVE
Author: carnil Date: 2017-04-10 12:52:44 + (Mon, 10 Apr 2017) New Revision: 50527 Modified: data/CVE/list Log: CVE assigned for asterisk Modified: data/CVE/list === --- data/CVE/list 2017-04-10 12:39:13 UTC (rev 50526) +++ data/CVE/list 2017-04-10 12:52:44 UTC (rev 50527) @@ -90,7 +90,7 @@ - tiff (bug #859998) - tiff3 NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2658 -CVE-2017- [AST-2017-001: Buffer overflow in CDR's set user] +CVE-2017-7617 [AST-2017-001: Buffer overflow in CDR's set user] - asterisk 1:13.14.1~dfsg-1 (bug #859910) [wheezy] - asterisk (Vulnerable code not present) NOTE: http://downloads.asterisk.org/pub/security/AST-2017-001.html ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50526 - data/CVE
Author: carnil Date: 2017-04-10 12:39:13 + (Mon, 10 Apr 2017) New Revision: 50526 Modified: data/CVE/list Log: AST-2017-001/asterisk, #859910 fixed in unstable Modified: data/CVE/list === --- data/CVE/list 2017-04-10 12:29:33 UTC (rev 50525) +++ data/CVE/list 2017-04-10 12:39:13 UTC (rev 50526) @@ -91,7 +91,7 @@ - tiff3 NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2658 CVE-2017- [AST-2017-001: Buffer overflow in CDR's set user] - - asterisk (bug #859910) + - asterisk 1:13.14.1~dfsg-1 (bug #859910) [wheezy] - asterisk (Vulnerable code not present) NOTE: http://downloads.asterisk.org/pub/security/AST-2017-001.html CVE-2017- [Infinite loop due to rounding error] ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50525 - in data: . DLA
Author: lamby Date: 2017-04-10 12:29:33 + (Mon, 10 Apr 2017) New Revision: 50525 Modified: data/DLA/list data/dla-needed.txt Log: Reserve DLA-890-1 for ming Modified: data/DLA/list === --- data/DLA/list 2017-04-10 11:05:33 UTC (rev 50524) +++ data/DLA/list 2017-04-10 12:29:33 UTC (rev 50525) @@ -1,3 +1,6 @@ +[10 Apr 2017] DLA-890-1 ming - security update + {CVE-2017-7578} + [wheezy] - ming 1:0.4.4-1.1+deb7u2 [09 Apr 2017] DLA-889-1 potrace - security update {CVE-2016-8685} [wheezy] - potrace 1.10-1+deb7u2 Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-04-10 11:05:33 UTC (rev 50524) +++ data/dla-needed.txt 2017-04-10 12:29:33 UTC (rev 50525) @@ -77,8 +77,6 @@ mcollective NOTE: See https://lists.debian.org/debian-lts/2017/03/msg8.html -- -ming (Chris Lamb) --- mp3splt NOTE: 2017-02-28: No patch available. Reproducer doesn't work with Debian NOTE: packages (tested on Stretch, Jessie and Wheezy). It's claimed to ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50524 - data/CVE
Author: carnil Date: 2017-04-10 11:05:33 + (Mon, 10 Apr 2017) New Revision: 50524 Modified: data/CVE/list Log: Add CVE-2017-0553/libnl3 fixed version for unstable Modified: data/CVE/list === --- data/CVE/list 2017-04-10 10:02:29 UTC (rev 50523) +++ data/CVE/list 2017-04-10 11:05:33 UTC (rev 50524) @@ -18566,7 +18566,7 @@ CVE-2017-0554 (An elevation of privilege vulnerability in the Telephony component ...) NOT-FOR-US: Android CVE-2017-0553 (An elevation of privilege vulnerability in libnl could enable a local ...) - - libnl3 (bug #859948) + - libnl3 3.2.27-2 (bug #859948) - libnl NOTE: Fixed by: http://git.infradead.org/users/tgr/libnl.git/commit/3e18948f17148e6a3c4255bdeaaf01ef6081ceeb NOTE: Fix via Android: https://android.googlesource.com/platform/external/libnl/+/f83d9c1c67b6be69a96995e384f50b572b667df0 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50523 - data/CVE
Author: carnil Date: 2017-04-10 10:02:29 + (Mon, 10 Apr 2017) New Revision: 50523 Modified: data/CVE/list Log: Associate CVE-2016-151{6,7} with opencv Modified: data/CVE/list === --- data/CVE/list 2017-04-10 09:10:14 UTC (rev 50522) +++ data/CVE/list 2017-04-10 10:02:29 UTC (rev 50523) @@ -46641,9 +46641,15 @@ CVE-2016-1518 RESERVED CVE-2016-1517 (OpenCV 3.0.0 allows remote attackers to cause a denial of service ...) - TODO: check + - opencv + NOTE: https://arxiv.org/pdf/1701.04739.pdf + NOTE: https://github.com/opencv/opencv/issues/5956 + TODO: check, most likely all opencv versions affected CVE-2016-1516 (OpenCV 3.0.0 has a double free issue that allows attackers to execute ...) - TODO: check + - opencv + NOTE: https://arxiv.org/pdf/1701.04739.pdf + NOTE: https://github.com/opencv/opencv/issues/5956 + TODO: check, most likely all opencv versions affected CVE-2016-1515 REJECTED CVE-2016-1514 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r50522 - data/CVE
Author: sectracker Date: 2017-04-10 09:10:14 + (Mon, 10 Apr 2017) New Revision: 50522 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2017-04-10 07:21:30 UTC (rev 50521) +++ data/CVE/list 2017-04-10 09:10:14 UTC (rev 50522) @@ -29628,8 +29628,8 @@ NOT-FOR-US: AVer CVE-2016-6535 (AVer Information EH6108H+ devices with firmware X9.03.24.00.07l have ...) NOT-FOR-US: AVer -CVE-2016-6534 - RESERVED +CVE-2016-6534 (Opmantek NMIS before 4.3.7c has command injection via man, finger, ...) + TODO: check CVE-2016-6533 RESERVED CVE-2016-6532 (DEXIS Imaging Suite 10 has a hardcoded password for the sa account, ...) @@ -32518,8 +32518,8 @@ NOTE: http://freeimage.cvs.sourceforge.net/viewvc/freeimage/FreeImage/Source/FreeImage/PluginXPM.cpp?r1=1.18&r2=1.19 CVE-2016-5683 (ReadyDesk 9.1 allows local users to determine cleartext SQL Server ...) NOT-FOR-US: ReadyDesk -CVE-2016-5682 - RESERVED +CVE-2016-5682 (Swagger-UI before 2.2.1 has XSS via the Default field in the ...) + TODO: check CVE-2016-5681 (Stack-based buffer overflow in dws/api/Login on D-Link DIR-850L B1 ...) NOT-FOR-US: D-Link CVE-2016-5680 (Stack-based buffer overflow in cgi-bin/cgi_main in NUUO NVRmini 2 ...) @@ -32604,8 +32604,8 @@ RESERVED CVE-2016-5643 RESERVED -CVE-2016-5642 - RESERVED +CVE-2016-5642 (Opmantek NMIS before 8.5.12G has XSS via SNMP. ...) + TODO: check CVE-2016-5641 RESERVED CVE-2016-5640 (Directory traversal vulnerability in cgi-bin/rftest.cgi on Crestron ...) @@ -35168,34 +35168,34 @@ NOTE: https://github.com/programa-stic/security-advisories/tree/master/ObjSys/CVE-2016-5080 CVE-2016-5079 RESERVED -CVE-2016-5078 - RESERVED -CVE-2016-5077 - RESERVED -CVE-2016-5076 - RESERVED -CVE-2016-5075 - RESERVED -CVE-2016-5074 - RESERVED -CVE-2016-5073 - RESERVED -CVE-2016-5072 - RESERVED -CVE-2016-5071 - RESERVED -CVE-2016-5070 - RESERVED -CVE-2016-5069 - RESERVED -CVE-2016-5068 - RESERVED -CVE-2016-5067 - RESERVED -CVE-2016-5066 - RESERVED -CVE-2016-5065 - RESERVED +CVE-2016-5078 (Paessler PRTG before 16.2.24.4045 has XSS via SNMP. ...) + TODO: check +CVE-2016-5077 (Netikus EventSentry before 3.2.1.44 has XSS via SNMP. ...) + TODO: check +CVE-2016-5076 (CloudView NMS before 2.10a allows remote attackers to obtain sensitive ...) + TODO: check +CVE-2016-5075 (CloudView NMS before 2.10a has XSS via a TELNET login. ...) + TODO: check +CVE-2016-5074 (CloudView NMS before 2.10a has a format string issue exploitable over ...) + TODO: check +CVE-2016-5073 (CloudView NMS before 2.10a has XSS via SNMP. ...) + TODO: check +CVE-2016-5072 (OXID eShop before 2016-06-13 allows remote attackers to execute ...) + TODO: check +CVE-2016-5071 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the ...) + TODO: check +CVE-2016-5070 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store ...) + TODO: check +CVE-2016-5069 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable ...) + TODO: check +CVE-2016-5068 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 do not require ...) + TODO: check +CVE-2016-5067 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT ...) + TODO: check +CVE-2016-5066 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak ...) + TODO: check +CVE-2016-5065 (Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow ...) + TODO: check CVE-2016-5064 RESERVED CVE-2016-5063 @@ -35206,24 +35206,24 @@ NOT-FOR-US: Aternity CVE-2016-5060 (Multiple cross-site scripting (XSS) vulnerabilities in nGrinder before ...) NOT-FOR-US: nGrinder -CVE-2016-5059 - RESERVED -CVE-2016-5058 - RESERVED -CVE-2016-5057 - RESERVED -CVE-2016-5056 - RESERVED -CVE-2016-5055 - RESERVED -CVE-2016-5054 - RESERVED -CVE-2016-5053 - RESERVED -CVE-2016-5052 - RESERVED -CVE-2016-5051 - RESERVED +CVE-2016-5059 (OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to ...) + TODO: check +CVE-2016-5058 (OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee ...) + TODO: check +CVE-2016-5057 (OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL ...) + TODO: check +CVE-2016-5056 (OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex ...) + TODO: check +CVE-2016-5055 (OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 has XSS in the ...) + TODO: check +CVE-2016-5054 (OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee ...) + TODO: check +CVE-2016-5053 (OSRAM SYLVANIA Osram Lig
[Secure-testing-commits] r50521 - data/CVE
Author: carnil Date: 2017-04-10 07:21:30 + (Mon, 10 Apr 2017) New Revision: 50521 Modified: data/CVE/list Log: Reference commits for tiff issues Modified: data/CVE/list === --- data/CVE/list 2017-04-10 06:51:52 UTC (rev 50520) +++ data/CVE/list 2017-04-10 07:21:30 UTC (rev 50521) @@ -41,31 +41,38 @@ CVE-2017-7602 (LibTIFF 4.0.7 has a signed integer overflow, which might allow remote ...) - tiff - tiff3 + NOTE: https://github.com/vadz/libtiff/commit/66e7bd59520996740e4df5495a830b42fae48bc4 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes CVE-2017-7601 (LibTIFF 4.0.7 has a "shift exponent too large for 64-bit type long" ...) - tiff - tiff3 + NOTE: https://github.com/vadz/libtiff/commit/0a76a8c765c7b8327c59646284fa78c3c27e5490 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes CVE-2017-7600 (LibTIFF 4.0.7 has an "outside the range of representable values of type ...) - tiff - tiff3 + NOTE: https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes CVE-2017-7599 (LibTIFF 4.0.7 has an "outside the range of representable values of type ...) - tiff - tiff3 + NOTE: https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes CVE-2017-7598 (tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a ...) - tiff - tiff3 + NOTE: https://github.com/vadz/libtiff/commit/3cfd62d77c2a7e147a05bd678524c345fa9c2bb8 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes CVE-2017-7597 (tif_dirread.c in LibTIFF 4.0.7 has an "outside the range of ...) - tiff - tiff3 + NOTE: https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes CVE-2017-7596 (LibTIFF 4.0.7 has an "outside the range of representable values of type ...) - tiff - tiff3 NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes + NOTE: https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490 CVE-2017-7595 (The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows ...) - tiff (bug #860003) - tiff3 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits