[Secure-testing-commits] r58008 - in data: . DLA
Author: alteholz
Date: 2017-11-24 22:44:39 + (Fri, 24 Nov 2017)
New Revision: 58008
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-1191-1 for python-werkzeug
Modified: data/DLA/list
===
--- data/DLA/list 2017-11-24 22:19:05 UTC (rev 58007)
+++ data/DLA/list 2017-11-24 22:44:39 UTC (rev 58008)
@@ -1,3 +1,6 @@
+[24 Nov 2017] DLA-1191-1 python-werkzeug - security update
+ {CVE-2016-10516}
+ [wheezy] - python-werkzeug 0.8.3+dfsg-1+deb7u1
[24 Nov 2017] DLA-1190-1 python2.6 - security update
{CVE-2017-1000158}
[wheezy] - python2.6 2.6.8-1.1+deb7u1
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-11-24 22:19:05 UTC (rev 58007)
+++ data/dla-needed.txt 2017-11-24 22:44:39 UTC (rev 58008)
@@ -79,8 +79,6 @@
--
otrs2 (Emilio Pozuelo)
--
-python-werkzeug (Thorsten Alteholz)
---
roundcube (Roberto C. Sánchez)
NOTE: 20171124: Patch updated/tested based on upstream guidance, packages
prepared, call for testing sent out
--
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58007 - data
Author: jmm Date: 2017-11-24 22:19:05 + (Fri, 24 Nov 2017) New Revision: 58007 Modified: data/next-point-update.txt Log: python2.7 spu Modified: data/next-point-update.txt === --- data/next-point-update.txt 2017-11-24 22:13:48 UTC (rev 58006) +++ data/next-point-update.txt 2017-11-24 22:19:05 UTC (rev 58007) @@ -39,3 +39,5 @@ [stretch] - libofx 1:0.9.10-2+deb9u1 CVE-2017-14731 [stretch] - libofx 1:0.9.10-2+deb9u1 +CVE-2017-1000158 + [stretch] - python2.7 2.7.13-2+deb9u2 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58006 - data/CVE
Author: luciano Date: 2017-11-24 22:13:48 + (Fri, 24 Nov 2017) New Revision: 58006 Modified: data/CVE/list Log: CVE-2017-16879: #882620 Modified: data/CVE/list === --- data/CVE/list 2017-11-24 22:00:33 UTC (rev 58005) +++ data/CVE/list 2017-11-24 22:13:48 UTC (rev 58006) @@ -226,7 +226,7 @@ NOTE: https://github.com/Exiv2/exiv2/issues/175 NOTE: Can't seem to reproduce this in wheezy. CVE-2017-16879 (Stack-based buffer overflow in the _nc_write_entry function in ...) - - ncurses + - ncurses (bug #882620) NOTE: PoC https://packetstormsecurity.com/files/download/145045/tic-overflow.tgz CVE-2017-16878 RESERVED ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58005 - data/CVE
Author: luciano Date: 2017-11-24 22:00:33 + (Fri, 24 Nov 2017) New Revision: 58005 Modified: data/CVE/list Log: CVE-2017-16879: ncurses Modified: data/CVE/list === --- data/CVE/list 2017-11-24 21:10:14 UTC (rev 58004) +++ data/CVE/list 2017-11-24 22:00:33 UTC (rev 58005) @@ -226,7 +226,8 @@ NOTE: https://github.com/Exiv2/exiv2/issues/175 NOTE: Can't seem to reproduce this in wheezy. CVE-2017-16879 (Stack-based buffer overflow in the _nc_write_entry function in ...) - TODO: check + - ncurses + NOTE: PoC https://packetstormsecurity.com/files/download/145045/tic-overflow.tgz CVE-2017-16878 RESERVED CVE-2017-16877 (ZEIT Next.js before 2.4.1 has directory traversal under the /_next and ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58004 - data/CVE
Author: sectracker
Date: 2017-11-24 21:10:14 + (Fri, 24 Nov 2017)
New Revision: 58004
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2017-11-24 21:08:51 UTC (rev 58003)
+++ data/CVE/list 2017-11-24 21:10:14 UTC (rev 58004)
@@ -1,4 +1,4 @@
-CVE-2017-16939 [ipsec: Fix aborted xfrm policy dump crash]
+CVE-2017-16939 (The XFRM dump policy implementation in net/xfrm/xfrm_user.c in
the ...)
- linux 4.13.13-1
NOTE: Fixed by:
https://git.kernel.org/linus/1137b5e2529a8f5ca8ee709288ecba3e68044df2
CVE-2017-16938 (A global buffer overflow in OptiPNG 0.7.6 allows remote
attackers to ...)
@@ -402,6 +402,7 @@
CVE-2017-1000160 (EllisLab ExpressionEngine 3.4.2 is vulnerable to cross-site
scripting ...)
NOT-FOR-US: EllisLab ExpressionEngine
CVE-2017-1000158 (CPython (aka Python) up to 2.7.13 is vulnerable to an
integer overflow ...)
+ {DLA-1190-1 DLA-1189-1}
- python2.7 2.7.13-4
[stretch] - python2.7 (Minor issue)
[jessie] - python2.7 (Minor issue)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58003 - data/CVE
Author: carnil Date: 2017-11-24 21:08:51 + (Fri, 24 Nov 2017) New Revision: 58003 Modified: data/CVE/list Log: CVE-2017-1000382: Remove github reference Rationale: The github commit was basically just an attempt to address the issue, but it turns out that the commit does not fix the issue. Workaround/Mitigation/Protection exists by moving thes swap file location e.g. to ~/.vim/swap/ (with potentially some drawbacks). Modified: data/CVE/list === --- data/CVE/list 2017-11-24 21:02:57 UTC (rev 58002) +++ data/CVE/list 2017-11-24 21:08:51 UTC (rev 58003) @@ -2149,7 +2149,6 @@ [jessie] - vim (Minor issue) [wheezy] - vim (Minor issue) NOTE: http://www.openwall.com/lists/oss-security/2017/10/31/15 - NOTE: https://github.com/vim/vim/commit/5a73e0ca54c77e067c3b12ea6f35e3e8681e8cf8 CVE-2017-16248 (The Catalyst-Plugin-Static-Simple module before 0.34 for Perl allows ...) - libcatalyst-plugin-static-simple-perl 0.34-1 (bug #880458) [stretch] - libcatalyst-plugin-static-simple-perl (Minor issue) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58002 - data/CVE
Author: luciano Date: 2017-11-24 21:02:57 + (Fri, 24 Nov 2017) New Revision: 58002 Modified: data/CVE/list Log: CVE-2017-16935: NFU Modified: data/CVE/list === --- data/CVE/list 2017-11-24 20:46:26 UTC (rev 58001) +++ data/CVE/list 2017-11-24 21:02:57 UTC (rev 58002) @@ -9,7 +9,7 @@ CVE-2017-16936 (Directory Traversal vulnerability in app_data_center on Shenzhen Tenda ...) NOT-FOR-US: Shenzhen Tenda CVE-2017-16935 (Ametys before 4.0.3 requires authentication only for URIs containing a ...) - TODO: check + NOT-FOR-US: Ametys CMS CVE-2017-16934 (The web server on DBL DBLTek devices allows remote attackers to execute ...) NOT-FOR-US: DBL DBLTek devices CVE-2017-16933 (etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.0 has a chown ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58001 - data/CVE
Author: luciano Date: 2017-11-24 20:46:26 + (Fri, 24 Nov 2017) New Revision: 58001 Modified: data/CVE/list Log: CVE-2017-16936: NFU Modified: data/CVE/list === --- data/CVE/list 2017-11-24 19:44:55 UTC (rev 58000) +++ data/CVE/list 2017-11-24 20:46:26 UTC (rev 58001) @@ -7,7 +7,7 @@ CVE-2017-16937 RESERVED CVE-2017-16936 (Directory Traversal vulnerability in app_data_center on Shenzhen Tenda ...) - TODO: check + NOT-FOR-US: Shenzhen Tenda CVE-2017-16935 (Ametys before 4.0.3 requires authentication only for URIs containing a ...) TODO: check CVE-2017-16934 (The web server on DBL DBLTek devices allows remote attackers to execute ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58000 - data/CVE
Author: carnil Date: 2017-11-24 19:44:55 + (Fri, 24 Nov 2017) New Revision: 58000 Modified: data/CVE/list Log: Add bug reference for CVE-2017-16932/libxml2 Modified: data/CVE/list === --- data/CVE/list 2017-11-24 19:14:51 UTC (rev 57999) +++ data/CVE/list 2017-11-24 19:44:55 UTC (rev 58000) @@ -23,7 +23,7 @@ NOTE: https://github.com/Cacti/cacti/commit/69983495cd41bf0903fe02baeef84b1fa85f2846 NOTE: Fix for the incomplete fix for CVE-2016-2313 CVE-2017-16932 (parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in ...) - - libxml2 + - libxml2 (bug #882613) NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=759579 NOTE: https://github.com/GNOME/libxml2/commit/899a5d9f0ed13b8e32449a08a361e0de127dd961 CVE-2017-16931 (parser.c in libxml2 before 2.9.5 mishandles parameter-entity references ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57999 - data/CVE
Author: carnil Date: 2017-11-24 19:14:51 + (Fri, 24 Nov 2017) New Revision: 57999 Modified: data/CVE/list Log: Add CVE-2017-16933 source packaage and reference Modified: data/CVE/list === --- data/CVE/list 2017-11-24 17:37:26 UTC (rev 57998) +++ data/CVE/list 2017-11-24 19:14:51 UTC (rev 57999) @@ -13,7 +13,8 @@ CVE-2017-16934 (The web server on DBL DBLTek devices allows remote attackers to execute ...) NOT-FOR-US: DBL DBLTek devices CVE-2017-16933 (etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.0 has a chown ...) - TODO: check + - icinga2 + NOTE: https://github.com/Icinga/icinga2/issues/5793 CVE-2016-10700 (auth_login.php in Cacti before 1.0.0 allows remote authenticated users ...) - cacti 0.8.8h+ds1-5 (bug #833420) [jessie] - cacti 0.8.8b+dfsg-8+deb8u6 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57998 - data/CVE
Author: jmm
Date: 2017-11-24 17:37:26 + (Fri, 24 Nov 2017)
New Revision: 57998
Modified:
data/CVE/list
Log:
scala non-issue
convert otrs issue to NOTE, apparently bogus
fix pnp4nagios entry, all suites are n/a
libraw, lame, libcatalyst-plugin-static-simple-perl, lynx, ohcount no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2017-11-24 15:40:28 UTC (rev 57997)
+++ data/CVE/list 2017-11-24 17:37:26 UTC (rev 57998)
@@ -44,6 +44,8 @@
NOTE: https://groups.google.com/forum/#!topic/xrdp-devel/PmVfMuy_xBA
CVE-2017-16926 (Ohcount 3.0.0 is prone to a command injection via specially
crafted ...)
- ohcount (bug #882372)
+ [stretch] - ohcount (Minor issue)
+ [jessie] - ohcount (Minor issue)
CVE-2017-16925
RESERVED
CVE-2017-16924
@@ -249,7 +251,9 @@
CVE-2017-1000211 (Lynx before 2.8.9dev.16 is vulnerable to a use after free in
the HTML ...)
{DLA-1175-1}
- lynx 2.8.9dev16-1
+ [stretch] - lynx (Minor issue)
- lynx-cur
+ [jessie] - lynx-cur (Minor issue)
NOTE:
https://github.com/ThomasDickey/lynx-snapshots/commit/280a61b300a1614f6037efc0902ff7ecf17146e9
CVE-2017-1000206 (samtools htslib library version 1.4.0 and earlier is
vulnerable to ...)
- htslib 1.4.1-1
@@ -648,8 +652,7 @@
CVE-2017-16835
RESERVED
CVE-2017-16834 (PNP4Nagios through 0.6.26 has /usr/bin/npcd and npcd.cfg owned
by an ...)
- - pnp4nagios
- [wheezy] - pnp4nagios (/etc/pnp4nagios and its content
is installed as root by the Debian package)
+ - pnp4nagios (/etc/pnp4nagios and its content is
installed as root by the Debian package)
NOTE: https://github.com/lingej/pnp4nagios/issues/140
CVE-2017-16833 (Stored cross-site scripting (XSS) vulnerability in Gemirro
before ...)
NOT-FOR-US: Gemirro
@@ -2148,6 +2151,8 @@
NOTE:
https://github.com/vim/vim/commit/5a73e0ca54c77e067c3b12ea6f35e3e8681e8cf8
CVE-2017-16248 (The Catalyst-Plugin-Static-Simple module before 0.34 for Perl
allows ...)
- libcatalyst-plugin-static-simple-perl 0.34-1 (bug #880458)
+ [stretch] - libcatalyst-plugin-static-simple-perl (Minor issue)
+ [jessie] - libcatalyst-plugin-static-simple-perl (Minor issue)
NOTE: https://rt.cpan.org/Public/Bug/Display.html?id=120558
CVE-2017-16241
RESERVED
@@ -4795,12 +4800,12 @@
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02557.html
NOTE: Fixed by:
https://git.qemu.org/gitweb.cgi?p=qemu.git;a=commit;h=eb38e1bc3740725ca29a535351de94107ec58d51
CVE-2017-15288 (The compilation daemon in Scala before 2.10.7, 2.11.x before
2.11.12, ...)
- - scala
+ - scala (unimportant)
NOTE: http://scala-lang.org/news/security-update-nov17.html
NOTE: For 2.11.x: https://github.com/scala/scala/pull/6108
NOTE: For 2.12.x: https://github.com/scala/scala/pull/6120
NOTE: For 2.10.x: https://github.com/scala/scala/pull/6128
- TODO: check
+ NOTE: Neutralised by kernel hardening
CVE-2017-15287 (There is XSS in the BouquetEditor WebPlugin for Dream
Multimedia ...)
NOT-FOR-US: BouquetEditor WebPlugin
CVE-2017-15286 (SQLite 3.20.1 has a NULL pointer dereference in
tableColumnList in ...)
@@ -5622,6 +5627,8 @@
NOTE:
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=1da5c9a485f3dcac4c45e96ef4b7dae5948314b5
CVE-2017-15019 (LAME 3.99.5 has a NULL Pointer Dereference in the
hip_decode_init ...)
- lame
+ [stretch] - lame (Minor issue)
+ [jessie] - lame (Minor issue)
NOTE: https://sourceforge.net/p/lame/bugs/477/
CVE-2017-15018 (LAME 3.99.5 has a heap-based buffer over-read when handling a
malformed ...)
- lame 3.99.5+repack1-8
@@ -9386,6 +9393,8 @@
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1484192
CVE-2017-13735 (There is a floating point exception in the kodak_radc_load_raw
function ...)
- libraw 0.18.5-1 (low; bug #874729)
+ [stretch] - libraw (Minor issue)
+ [jessie] - libraw (Minor issue)
[wheezy] - libraw (Minor issue)
NOTE: https://github.com/LibRaw/LibRaw/issues/96
NOTE: Isolated patch:
https://github.com/LibRaw/LibRaw/files/1276421/radc_divbyzero.txt
@@ -22463,11 +22472,7 @@
[wheezy] - vlc (Not supported in wheezy LTS)
NOTE:
https://git.videolan.org/?p=vlc/vlc-2.2.git;a=commit;h=55a82442cfea9dab8b853f3a4610f2880c5fadf3
CVE-2017-9299 (Open Ticket Request System (OTRS) 3.3.9 has XSS in ...)
- - otrs2 (unimportant)
- NOTE: The issue is most likely fixed in the 3.x series already before
3.3.17.
- NOTE: The exact issue, fixing commits and upstream version was not yet
tracked
- NOTE: down.
- NOTE: Furthermore the original report is quite vague/unclear and
upstream can
+ NOTE: This report for OTRS is quite vague/unclear and u
[Secure-testing-commits] r57997 - data
Author: roberto Date: 2017-11-24 15:40:28 + (Fri, 24 Nov 2017) New Revision: 57997 Modified: data/dla-needed.txt Log: Update status of wheezy/roundcube Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-11-24 15:02:45 UTC (rev 57996) +++ data/dla-needed.txt 2017-11-24 15:40:28 UTC (rev 57997) @@ -82,8 +82,7 @@ python-werkzeug (Thorsten Alteholz) -- roundcube (Roberto C. Sánchez) - NOTE: 2017118: Patch is ready; because of code differences, waiting on upstream to review or provide information on how to reproduce the exploit - NOTE: 20171123: Upstream has reviewed the patch and recommended some adjustments + NOTE: 20171124: Patch updated/tested based on upstream guidance, packages prepared, call for testing sent out -- rsync (Thorsten Alteholz) -- ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57996 - in data: . DLA
Author: roberto
Date: 2017-11-24 15:02:45 + (Fri, 24 Nov 2017)
New Revision: 57996
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-1189-1 for python2.7 and DLA-1190-1 for python2.6
Modified: data/DLA/list
===
--- data/DLA/list 2017-11-24 13:52:06 UTC (rev 57995)
+++ data/DLA/list 2017-11-24 15:02:45 UTC (rev 57996)
@@ -1,3 +1,9 @@
+[24 Nov 2017] DLA-1190-1 python2.6 - security update
+ {CVE-2017-1000158}
+ [wheezy] - python2.6 2.6.8-1.1+deb7u1
+[24 Nov 2017] DLA-1189-1 python2.7 - security update
+ {CVE-2017-1000158}
+ [wheezy] - python2.7 2.7.3-6+deb7u4
[23 Nov 2017] DLA-1188-1 libxml2 - security update
{CVE-2017-5130}
[wheezy] - libxml2 2.8.0+dfsg1-7+wheezy10
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-11-24 13:52:06 UTC (rev 57995)
+++ data/dla-needed.txt 2017-11-24 15:02:45 UTC (rev 57996)
@@ -81,12 +81,6 @@
--
python-werkzeug (Thorsten Alteholz)
--
-python2.6 (Roberto C. Sánchez)
- NOTE: 20171118: Update is prepared, call for testing has been sent, will
upload and release DLA 20171125
---
-python2.7 (Roberto C. Sánchez)
- NOTE: 20171118: Update is prepared, call for testing has been sent, will
upload and release DLA 20171125
---
roundcube (Roberto C. Sánchez)
NOTE: 2017118: Patch is ready; because of code differences, waiting on
upstream to review or provide information on how to reproduce the exploit
NOTE: 20171123: Upstream has reviewed the patch and recommended some
adjustments
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57995 - data
Author: alteholz Date: 2017-11-24 13:52:06 + (Fri, 24 Nov 2017) New Revision: 57995 Modified: data/dla-needed.txt Log: bad timing as new CVEs appeared Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-11-24 12:34:37 UTC (rev 57994) +++ data/dla-needed.txt 2017-11-24 13:52:06 UTC (rev 57995) @@ -55,6 +55,8 @@ NOTE: theora and sox. Awaiting feedback. Underlying reason for CVE-2017-14160 NOTE: unclear. -- +libxml2 (Thorsten Alteholz) +-- linux -- ming (Hugo Lefeuvre) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57994 - data/CVE
Author: carnil Date: 2017-11-24 12:34:37 + (Fri, 24 Nov 2017) New Revision: 57994 Modified: data/CVE/list Log: Process NFU Modified: data/CVE/list === --- data/CVE/list 2017-11-24 11:41:39 UTC (rev 57993) +++ data/CVE/list 2017-11-24 12:34:37 UTC (rev 57994) @@ -11,7 +11,7 @@ CVE-2017-16935 (Ametys before 4.0.3 requires authentication only for URIs containing a ...) TODO: check CVE-2017-16934 (The web server on DBL DBLTek devices allows remote attackers to execute ...) - TODO: check + NOT-FOR-US: DBL DBLTek devices CVE-2017-16933 (etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.0 has a chown ...) TODO: check CVE-2016-10700 (auth_login.php in Cacti before 1.0.0 allows remote authenticated users ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57993 - data/CVE
Author: carnil Date: 2017-11-24 11:41:39 + (Fri, 24 Nov 2017) New Revision: 57993 Modified: data/CVE/list Log: CVE-2017-12087 fixed in unstable Modified: data/CVE/list === --- data/CVE/list 2017-11-24 11:32:54 UTC (rev 57992) +++ data/CVE/list 2017-11-24 11:41:39 UTC (rev 57993) @@ -14280,7 +14280,7 @@ RESERVED CVE-2017-12087 RESERVED - - shairport-sync (unimportant; bug #882508) + - shairport-sync 3.1.4-1 (unimportant; bug #882508) NOTE: Debian build uses Avahi instead NOTE: https://bugs.launchpad.net/ubuntu/+source/shairport-sync/+bug/1729668 CVE-2017-12086 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57992 - data/CVE
Author: carnil Date: 2017-11-24 11:32:54 + (Fri, 24 Nov 2017) New Revision: 57992 Modified: data/CVE/list Log: Add CVE-2017-16939/linux Modified: data/CVE/list === --- data/CVE/list 2017-11-24 11:23:10 UTC (rev 57991) +++ data/CVE/list 2017-11-24 11:32:54 UTC (rev 57992) @@ -1,3 +1,6 @@ +CVE-2017-16939 [ipsec: Fix aborted xfrm policy dump crash] + - linux 4.13.13-1 + NOTE: Fixed by: https://git.kernel.org/linus/1137b5e2529a8f5ca8ee709288ecba3e68044df2 CVE-2017-16938 (A global buffer overflow in OptiPNG 0.7.6 allows remote attackers to ...) - optipng (bug #878839) NOTE: https://sourceforge.net/p/optipng/bugs/69/ ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57991 - data/CVE
Author: carnil Date: 2017-11-24 11:23:10 + (Fri, 24 Nov 2017) New Revision: 57991 Modified: data/CVE/list Log: Add CVE-2016-10700/cacti, incomplete fix for CVE-2016-2313 Modified: data/CVE/list === --- data/CVE/list 2017-11-24 11:15:52 UTC (rev 57990) +++ data/CVE/list 2017-11-24 11:23:10 UTC (rev 57991) @@ -12,7 +12,12 @@ CVE-2017-16933 (etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.0 has a chown ...) TODO: check CVE-2016-10700 (auth_login.php in Cacti before 1.0.0 allows remote authenticated users ...) - TODO: check + - cacti 0.8.8h+ds1-5 (bug #833420) + [jessie] - cacti 0.8.8b+dfsg-8+deb8u6 + [wheezy] - cacti 0.8.8a+dfsg-5+deb7u9 + NOTE: https://web.archive.org/web/20160817090458/http://bugs.cacti.net/view.php?id=2697 + NOTE: https://github.com/Cacti/cacti/commit/69983495cd41bf0903fe02baeef84b1fa85f2846 + NOTE: Fix for the incomplete fix for CVE-2016-2313 CVE-2017-16932 (parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in ...) - libxml2 NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=759579 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57990 - data/CVE
Author: carnil Date: 2017-11-24 11:15:52 + (Fri, 24 Nov 2017) New Revision: 57990 Modified: data/CVE/list Log: Add CVE-2017-16938/optipng, #878839 Modified: data/CVE/list === --- data/CVE/list 2017-11-24 09:57:06 UTC (rev 57989) +++ data/CVE/list 2017-11-24 11:15:52 UTC (rev 57990) @@ -1,5 +1,6 @@ CVE-2017-16938 (A global buffer overflow in OptiPNG 0.7.6 allows remote attackers to ...) - TODO: check + - optipng (bug #878839) + NOTE: https://sourceforge.net/p/optipng/bugs/69/ CVE-2017-16937 RESERVED CVE-2017-16936 (Directory Traversal vulnerability in app_data_center on Shenzhen Tenda ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57989 - data/CVE
Author: carnil Date: 2017-11-24 09:57:06 + (Fri, 24 Nov 2017) New Revision: 57989 Modified: data/CVE/list Log: Process some Huawei specific CVEs as NFU Modified: data/CVE/list === --- data/CVE/list 2017-11-24 09:56:41 UTC (rev 57988) +++ data/CVE/list 2017-11-24 09:57:06 UTC (rev 57989) @@ -25679,7 +25679,7 @@ CVE-2017-8152 (Huawei Honor 5S smart phones with software the versions before ...) NOT-FOR-US: Huawei CVE-2017-8151 (Huawei Honor 5S smart phones with software the versions before ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-8150 (The boot loaders of P10 and P10 Plus Huawei mobile phones with ...) NOT-FOR-US: Huawei CVE-2017-8149 (The boot loaders of P10 and P10 Plus Huawei mobile phones with ...) @@ -42944,105 +42944,105 @@ CVE-2017-2740 RESERVED CVE-2017-2739 (The upgrade package of Huawei Vmall APP Earlier than HwVmall 1.5.3.0 ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2738 (VCM5010 with software versions earlier before V100R002C50SPC100 has an ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2737 (VCM5010 with software versions earlier before V100R002C50SPC100 has an ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2736 (VCM5010 with software versions earlier before V100R002C50SPC100 has a ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2735 (TIT-AL00 smartphones with software versions earlier before ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2734 (P9 Plus smartphones with software versions earlier before ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2733 (Honor 6X smartphones with software versions earlier than ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2732 (Huawei Hilink APP Versions earlier before 5.0.25.306 has an ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2731 (The vibrator service in P9 Plus smart phones with software versions ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2730 (HUAWEI HiLink APP (for IOS) versions earlier before 5.0.25.306 and ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2729 (The boot loaders in Honor 5A smart phones with software Versions ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2728 (Some HHuawei mobile phones Honor 6X Berlin-L22C636B150 and earlier ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2727 (Huawei P9 smart phones with software versions earlier before ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2726 (Bastet in P10 Plus and P10 smart phones with software Eariler than ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2725 (Bastet in P10 Plus and P10 smart phones with software Eariler than ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2724 (Bastet in P10 Plus and P10 smart phones with software Eariler than ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2723 (The Files APP 7.1.1.308 and earlier versions in some Huawei mobile ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2722 (DP300 V500R002C00,TE60 with software V100R001C01, V100R001C10, ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2721 (Some Huawei smart phones with software ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2720 (FusionSphere OpenStack V100R006C00 has an information exposure ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2719 (FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2718 (FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2717 (honor 8 Pro with software Duke-L09C10B120 and earlier ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2716 (The camerafs driver in Mate 9 Versions earlier than MHA-AL00BC00B173 ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2715 (The Files APP 7.1.1.309 and earlier versions in some Huawei mobile ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2714 (The GaussDB in FusionSphere OpenStack V100R005C10SPC705 and earlier ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2713 (HUAWEI P9 smartphones with software versions earlier before ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2712 (S3300 V100R006C05 have an Ethernet in the First Mile (EFM) flapping ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2711 (P9 Plus smartphones with software earlier than VIE-AL10C00B352 ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2710 (BTV-W09C229B002CUSTC229D005,BTV-W09C233B029, earlier than ...) - TODO: check + NOT-FOR-US: Huawei CVE-2017-2709 (HiGame with software earlier than 7.3.0 versions, SkyTone with ...) - TODO: check + NOT-FOR
[Secure-testing-commits] r57988 - data
Author: pochu Date: 2017-11-24 09:56:41 + (Fri, 24 Nov 2017) New Revision: 57988 Modified: data/dla-needed.txt Log: dla: claim otrs2 Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-11-24 09:10:15 UTC (rev 57987) +++ data/dla-needed.txt 2017-11-24 09:56:41 UTC (rev 57988) @@ -75,7 +75,7 @@ openexr (Guido Günther) NOTE: 20170902: CVE-2017-12596: bug reported upstream but no response yet (lamby) -- -otrs2 +otrs2 (Emilio Pozuelo) -- python-werkzeug (Thorsten Alteholz) -- ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r57987 - data/CVE
Author: sectracker
Date: 2017-11-24 09:10:15 + (Fri, 24 Nov 2017)
New Revision: 57987
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2017-11-24 07:08:06 UTC (rev 57986)
+++ data/CVE/list 2017-11-24 09:10:15 UTC (rev 57987)
@@ -1,11 +1,25 @@
-CVE-2017-16932
+CVE-2017-16938 (A global buffer overflow in OptiPNG 0.7.6 allows remote
attackers to ...)
+ TODO: check
+CVE-2017-16937
+ RESERVED
+CVE-2017-16936 (Directory Traversal vulnerability in app_data_center on
Shenzhen Tenda ...)
+ TODO: check
+CVE-2017-16935 (Ametys before 4.0.3 requires authentication only for URIs
containing a ...)
+ TODO: check
+CVE-2017-16934 (The web server on DBL DBLTek devices allows remote attackers
to execute ...)
+ TODO: check
+CVE-2017-16933 (etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.0 has a
chown ...)
+ TODO: check
+CVE-2016-10700 (auth_login.php in Cacti before 1.0.0 allows remote
authenticated users ...)
+ TODO: check
+CVE-2017-16932 (parser.c in libxml2 before 2.9.5 does not prevent infinite
recursion in ...)
- libxml2
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=759579
NOTE:
https://github.com/GNOME/libxml2/commit/899a5d9f0ed13b8e32449a08a361e0de127dd961
-CVE-2017-16931
+CVE-2017-16931 (parser.c in libxml2 before 2.9.5 mishandles parameter-entity
references ...)
- libxml2 2.9.4+dfsg1-3.1
-[stretch] - libxml2 2.9.4+dfsg1-2.2+deb9u1
-[jessie] - libxml2 2.9.1+dfsg1-5+deb8u5
+ [stretch] - libxml2 2.9.4+dfsg1-2.2+deb9u1
+ [jessie] - libxml2 2.9.1+dfsg1-5+deb8u5
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=766956
NOTE:
https://github.com/GNOME/libxml2/commit/e26630548e7d138d2c560844c43820b6767251e3
NOTE: Not a duplicate but a variant of the issue of CVE-2017-9049 and
CVE-2017-9050
@@ -1063,6 +1077,7 @@
CVE-2017-16665 (RemObjects Remoting SDK 9 1.0.0.0 for Delphi is vulnerable to
a ...)
NOT-FOR-US: RemObjects Remoting SDK
CVE-2017-16664 (Code injection exists in Kernel/System/Spelling.pm in Open
Ticket ...)
+ {DSA-4047-1}
- otrs2 5.0.24-1 (bug #882370)
NOTE:
https://www.otrs.com/security-advisory-2017-07-security-update-otrs-framework/
NOTE: OTRS 5:
https://github.com/OTRS/otrs/commit/4c36932d0c42343f21246a107e17a2ebbd9c2c7d
@@ -9548,14 +9563,14 @@
NOT-FOR-US: Moxa
CVE-2017-13702 (An issue was discovered on MOXA EDS-G512E 5.1 build 16072215
devices. ...)
NOT-FOR-US: Moxa
-CVE-2017-13701
- RESERVED
+CVE-2017-13701 (An issue was discovered on MOXA EDS-G512E 5.1 build 16072215
devices. ...)
+ TODO: check
CVE-2017-13700 (An issue was discovered on MOXA EDS-G512E 5.1 build 16072215
devices. ...)
NOT-FOR-US: Moxa
-CVE-2017-13699
- RESERVED
-CVE-2017-13698
- RESERVED
+CVE-2017-13699 (An issue was discovered on MOXA EDS-G512E 5.1 build 16072215
devices. ...)
+ TODO: check
+CVE-2017-13698 (An issue was discovered on MOXA EDS-G512E 5.1 build 16072215
devices. ...)
+ TODO: check
CVE-2017-13697 (controllers/member/api.php in dayrui FineCms 5.0.11 has XSS
related to ...)
NOT-FOR-US: FineCMS
CVE-2017-13696
@@ -19600,7 +19615,7 @@
CVE-2017-10389 (Vulnerability in the Oracle Hospitality Suite8 component of
Oracle ...)
NOT-FOR-US: Oracle
CVE-2017-10388 (Vulnerability in the Java SE, Java SE Embedded component of
Oracle ...)
- {DSA-4015-1 DLA-1187-1}
+ {DSA-4048-1 DSA-4015-1 DLA-1187-1}
- openjdk-9 9.0.1+11-1
- openjdk-8 8u151-b12-1
[experimental] - openjdk-7 7u151-2.6.11-2
@@ -19685,7 +19700,7 @@
CVE-2017-10358 (Vulnerability in the Oracle Hyperion Financial Reporting
component of ...)
NOT-FOR-US: Oracle
CVE-2017-10357 (Vulnerability in the Java SE, Java SE Embedded component of
Oracle ...)
- {DSA-4015-1 DLA-1187-1}
+ {DSA-4048-1 DSA-4015-1 DLA-1187-1}
- openjdk-9 9.0.1+11-1
- openjdk-8 8u151-b12-1
[experimental] - openjdk-7 7u151-2.6.11-2
@@ -19693,7 +19708,7 @@
- openjdk-6
[wheezy] - openjdk-6
CVE-2017-10356 (Vulnerability in the Java SE, Java SE Embedded, JRockit
component of ...)
- {DSA-4015-1 DLA-1187-1}
+ {DSA-4048-1 DSA-4015-1 DLA-1187-1}
- openjdk-9 9.0.1+11-1
- openjdk-8 8u151-b12-1
[experimental] - openjdk-7 7u151-2.6.11-2
@@ -19701,7 +19716,7 @@
- openjdk-6
[wheezy] - openjdk-6
CVE-2017-10355 (Vulnerability in the Java SE, Java SE Embedded, JRockit
component of ...)
- {DSA-4015-1 DLA-1187-1}
+ {DSA-4048-1 DSA-4015-1 DLA-1187-1}
- openjdk-9 9.0.1+11-1
- openjdk-8 8u151-b12-1
[experimental] - openjdk-7 7u151-2.6.11-2
@@ -19717,13 +19732,13 @@
CVE-2017-10351 (Vulnerability in the PeopleSoft Enterprise PT PeopleTools
component of ...)
