[Secure-testing-commits] r58830 - data/CVE
Author: carnil
Date: 2017-12-22 06:37:32 + (Fri, 22 Dec 2017)
New Revision: 58830
Modified:
data/CVE/list
Log:
Fixes for CVE-2017-16955{5,6} now in linus' tree
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-22 06:32:24 UTC (rev 58829)
+++ data/CVE/list 2017-12-22 06:37:32 UTC (rev 58830)
@@ -8366,13 +8366,13 @@
[stretch] - linux (Vulnerable code introduced later)
[jessie] - linux (Vulnerable code introduced later)
[wheezy] - linux (Vulnerable code introduced later)
- NOTE:
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=0c17d1d2c61936401f4702e1846e2c19b200f958
+ NOTE:
https://git.kernel.org/linus/0c17d1d2c61936401f4702e1846e2c19b200f958
CVE-2017-16995
RESERVED
- linux
[jessie] - linux (Vulnerable code introduced later)
[wheezy] - linux (Vulnerable code introduced later)
- NOTE:
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=95a762e2c8c942780948091f8f2a4f32fce1ac6f
+ NOTE:
https://git.kernel.org/linus/95a762e2c8c942780948091f8f2a4f32fce1ac6f
CVE-2016-10702 (Pebble Smartwatch devices through 4.3 mishandle UUID storage,
which ...)
NOT-FOR-US: Pebble
CVE-2016-10701 (In Hitachi Vantara Pentaho BA Platform through 8.0, a CSRF
issue exists ...)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58829 - data/CVE
Author: carnil Date: 2017-12-22 06:32:24 + (Fri, 22 Dec 2017) New Revision: 58829 Modified: data/CVE/list Log: Mark CVE-2017-15125 as NFU Modified: data/CVE/list === --- data/CVE/list 2017-12-22 05:14:11 UTC (rev 58828) +++ data/CVE/list 2017-12-22 06:32:24 UTC (rev 58829) @@ -14926,6 +14926,7 @@ NOTE: Fixed by: https://git.kernel.org/linus/384632e67e0829deb8015ee6ad916b180049d252 CVE-2017-15125 RESERVED + NOT-FOR-US: Red Hat CloudForms CVE-2017-15124 [memory exhaustion through framebuffer update request message in VNC server] RESERVED - qemu (bug #884806) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58828 - data/CVE
Author: carnil
Date: 2017-12-22 05:14:11 + (Fri, 22 Dec 2017)
New Revision: 58828
Modified:
data/CVE/list
Log:
Remove doubled note
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 22:22:29 UTC (rev 58827)
+++ data/CVE/list 2017-12-22 05:14:11 UTC (rev 58828)
@@ -15519,7 +15519,6 @@
- wordpress 4.8.2+dfsg-2 (bug #877629)
[wheezy] - wordpress (Fix requires database upgrade which is
too intrusive compared to the actual benefit.)
NOTE: https://core.trac.wordpress.org/ticket/38474
- NOTE: Wordpress in Wheezy requires a database upgrade and backports of
new functions
CVE-2017-14989 (A use-after-free in RenderFreetype in MagickCore/annotate.c in
...)
{DSA-4040-1 DSA-4032-1 DLA-1131-1}
- imagemagick (bug #878562)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58827 - in data: . DSA
Author: jmm
Date: 2017-12-21 22:22:29 + (Thu, 21 Dec 2017)
New Revision: 58827
Modified:
data/DSA/list
data/dsa-needed.txt
Log:
bouncycastle DSA
Modified: data/DSA/list
===
--- data/DSA/list 2017-12-21 21:23:02 UTC (rev 58826)
+++ data/DSA/list 2017-12-21 22:22:29 UTC (rev 58827)
@@ -1,3 +1,6 @@
+[21 Dec 2017] DSA-4072-1 bouncycastle - security update
+ {CVE-2017-13098}
+ [stretch] - bouncycastle 1.56-1+deb9u1
[21 Dec 2017] DSA-4071-1 sensible-utils - security update
{CVE-2017-17512}
[jessie] - sensible-utils 0.0.9+deb8u1
Modified: data/dsa-needed.txt
===
--- data/dsa-needed.txt 2017-12-21 21:23:02 UTC (rev 58826)
+++ data/dsa-needed.txt 2017-12-21 22:22:29 UTC (rev 58827)
@@ -16,8 +16,6 @@
--
asterisk
--
-bouncycastle/stable (jmm)
---
gimp (carnil)
--
graphicsmagick
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58826 - data/CVE
Author: carnil Date: 2017-12-21 21:23:02 + (Thu, 21 Dec 2017) New Revision: 58826 Modified: data/CVE/list Log: Process more NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 21:20:15 UTC (rev 58825) +++ data/CVE/list 2017-12-21 21:23:02 UTC (rev 58826) @@ -42373,13 +42373,13 @@ NOTE: https://support.f5.com/csp/article/K21905460 NOTE: https://robotattack.org/ CVE-2017-6167 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6166 (In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, ...) NOT-FOR-US: F5 BIG-IP CVE-2017-6165 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link ...) NOT-FOR-US: F5 BIG-IP CVE-2017-6164 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6163 (In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, PSM ...) NOT-FOR-US: F5 BIG-IP CVE-2017-6162 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, ...) @@ -42405,7 +42405,7 @@ CVE-2017-6152 RESERVED CVE-2017-6151 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6150 RESERVED CVE-2017-6149 @@ -42427,29 +42427,29 @@ CVE-2017-6141 (In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, and ...) NOT-FOR-US: F5 BIG-IP CVE-2017-6140 (On the BIG-IP 2000s, 2200s, 4000s, 4200v, i5600, i5800, i7600, i7800, ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6139 (In F5 BIG-IP APM software version 13.0.0 and 12.1.2, under rare ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6138 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6137 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, ...) NOT-FOR-US: F5 CVE-2017-6136 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6135 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6134 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6133 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6132 (In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6131 (In some circumstances, an F5 BIG-IP version 12.0.0 to 12.1.2 and ...) NOT-FOR-US: F5 CVE-2017-6130 (F5 SSL Intercept iApp 1.5.0 - 1.5.7 and SSL Orchestrator 2.0 is ...) NOT-FOR-US: F5 CVE-2017-6129 (In F5 BIG-IP APM software version 13.0.0 and 12.1.2, in some ...) - TODO: check + NOT-FOR-US: F5 BIG-IP CVE-2017-6128 (An attacker may be able to cause a denial-of-service (DoS) attack ...) NOT-FOR-US: F5 CVE-2017-6188 (Munin before 2.999.6 has a local file write vulnerability when CGI ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58825 - data/CVE
Author: carnil
Date: 2017-12-21 21:20:15 + (Thu, 21 Dec 2017)
New Revision: 58825
Modified:
data/CVE/list
Log:
Process some NFUs
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 21:14:03 UTC (rev 58824)
+++ data/CVE/list 2017-12-21 21:20:15 UTC (rev 58825)
@@ -2852,7 +2852,7 @@
CVE-2017-17693 (Techno - Portfolio Management Panel through 2017-11-16 does
not check ...)
NOT-FOR-US: Techno - Portfolio Management Panel
CVE-2017-17692 (Samsung Internet Browser 5.4.02.3 allows remote attackers to
bypass ...)
- TODO: check
+ NOT-FOR-US: Samsung Internet Browser
CVE-2017-17691
RESERVED
CVE-2017-17690
@@ -5154,7 +5154,7 @@
CVE-2017-17557
RESERVED
CVE-2017-17556 (A debug tool in Synaptics TouchPad drivers allows local users
with ...)
- TODO: check
+ NOT-FOR-US: debug tool in Synaptics TouchPad drivers
CVE-2017-17555 (The swri_audio_convert function in audioconvert.c in FFmpeg
...)
- aubio (low; bug #884232)
[stretch] - aubio (Minor issue)
@@ -6091,11 +6091,11 @@
CVE-2017-17411 (This vulnerability allows remote attackers to execute
arbitrary code ...)
TODO: check
CVE-2017-17410 (This vulnerability allows remote attackers to execute
arbitrary code ...)
- TODO: check
+ NOT-FOR-US: Bitdefender Internet Security 2018
CVE-2017-17409 (This vulnerability allows remote attackers to execute
arbitrary code ...)
- TODO: check
+ NOT-FOR-US: Bitdefender Internet Security 2018
CVE-2017-17408 (This vulnerability allows remote attackers to execute
arbitrary code ...)
- TODO: check
+ NOT-FOR-US: Bitdefender Internet Security 2018
CVE-2017-17407
RESERVED
CVE-2017-17406
@@ -7829,19 +7829,19 @@
CVE-2017-17034
RESERVED
CVE-2017-17033 (A buffer overflow vulnerability in password function in QNAP
QTS ...)
- TODO: check
+ NOT-FOR-US: QNAP QTS
CVE-2017-17032 (A buffer overflow vulnerability in password function in QNAP
QTS ...)
- TODO: check
+ NOT-FOR-US: QNAP QTS
CVE-2017-17031 (A buffer overflow vulnerability in password function in QNAP
QTS ...)
- TODO: check
+ NOT-FOR-US: QNAP QTS
CVE-2017-17030 (A buffer overflow vulnerability in login function in QNAP QTS
version ...)
- TODO: check
+ NOT-FOR-US: QNAP QTS
CVE-2017-17029 (A buffer overflow vulnerability in login function in QNAP QTS
version ...)
- TODO: check
+ NOT-FOR-US: QNAP QTS
CVE-2017-17028 (A buffer overflow vulnerability in external device function in
QNAP ...)
- TODO: check
+ NOT-FOR-US: QNAP QTS
CVE-2017-17027 (A buffer overflow vulnerability in FTP service in QNAP QTS
version ...)
- TODO: check
+ NOT-FOR-US: QNAP QTS
CVE-2017-17045 (An issue was discovered in Xen through 4.9.x allowing HVM
guest OS ...)
{DSA-4050-1}
- xen 4.8.2+xsa245-0+deb9u1
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58824 - data/CVE
Author: carnil Date: 2017-12-21 21:14:03 + (Thu, 21 Dec 2017) New Revision: 58824 Modified: data/CVE/list Log: Remove incorrect note, turns out that was not true, further investigation pending Modified: data/CVE/list === --- data/CVE/list 2017-12-21 21:10:19 UTC (rev 58823) +++ data/CVE/list 2017-12-21 21:14:03 UTC (rev 58824) @@ -8373,8 +8373,6 @@ [jessie] - linux (Vulnerable code introduced later) [wheezy] - linux (Vulnerable code introduced later) NOTE: https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=95a762e2c8c942780948091f8f2a4f32fce1ac6f - NOTE: Starting with v4.14, this is exploitable by unprivileged users as long as - NOTE: the unprivileged_bpf_disabled sysctl isn't set. CVE-2016-10702 (Pebble Smartwatch devices through 4.3 mishandle UUID storage, which ...) NOT-FOR-US: Pebble CVE-2016-10701 (In Hitachi Vantara Pentaho BA Platform through 8.0, a CSRF issue exists ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58823 - data/CVE
Author: sectracker
Date: 2017-12-21 21:10:19 + (Thu, 21 Dec 2017)
New Revision: 58823
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 20:20:47 UTC (rev 58822)
+++ data/CVE/list 2017-12-21 21:10:19 UTC (rev 58823)
@@ -1,3 +1,5 @@
+CVE-2017-17832
+ RESERVED
CVE-2017- [Multiple Enigmail issues]
- enigmail 2:1.9.9-1
[jessie] - enigmail 2:1.9.9-1~deb8u1
@@ -2849,8 +2851,8 @@
NOT-FOR-US: Techno - Portfolio Management Panel
CVE-2017-17693 (Techno - Portfolio Management Panel through 2017-11-16 does
not check ...)
NOT-FOR-US: Techno - Portfolio Management Panel
-CVE-2017-17692
- RESERVED
+CVE-2017-17692 (Samsung Internet Browser 5.4.02.3 allows remote attackers to
bypass ...)
+ TODO: check
CVE-2017-17691
RESERVED
CVE-2017-17690
@@ -5355,7 +5357,7 @@
NOTE:
https://sources.debian.org/src/texlive-bin/2016.20160513.41080.dfsg-2/texk/texlive/linked_scripts/context/stubs/unix/mtxrun/#L3004
NOTE:
https://sources.debian.org/src/context/2017.05.15.20170613-2/texmf-dist/scripts/context/stubs/mswin/mtxrun.lua/?hl=3424#L3424
CVE-2017-17512 (sensible-browser in sensible-utils before 0.0.11 does not
validate ...)
- {DLA-1209-1}
+ {DSA-4071-1 DLA-1209-1}
- sensible-utils 0.0.11 (bug #881767)
NOTE:
https://anonscm.debian.org/git/collab-maint/sensible-utils.git/commit/?id=e16c937c43126df7f08d355277f99dd94cc21ce5
CVE-2017-17511 (KildClient 3.1.0 does not validate strings before launching
the program ...)
@@ -6086,14 +6088,14 @@
RESERVED
CVE-2017-17412
RESERVED
-CVE-2017-17411
- RESERVED
-CVE-2017-17410
- RESERVED
-CVE-2017-17409
- RESERVED
-CVE-2017-17408
- RESERVED
+CVE-2017-17411 (This vulnerability allows remote attackers to execute
arbitrary code ...)
+ TODO: check
+CVE-2017-17410 (This vulnerability allows remote attackers to execute
arbitrary code ...)
+ TODO: check
+CVE-2017-17409 (This vulnerability allows remote attackers to execute
arbitrary code ...)
+ TODO: check
+CVE-2017-17408 (This vulnerability allows remote attackers to execute
arbitrary code ...)
+ TODO: check
CVE-2017-17407
RESERVED
CVE-2017-17406
@@ -7583,18 +7585,22 @@
CVE-2017-17089
RESERVED
CVE-2017-17091 (wp-admin/user-new.php in WordPress before 4.9.1 sets the
newbloguser ...)
+ {DLA-1216-1}
- wordpress 4.9.1+dfsg-1 (bug #883314)
NOTE:
https://github.com/WordPress/WordPress/commit/eaf1cfdc1fe0bdffabd8d879c591b864d833326c
NOTE:
https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
CVE-2017-17093 (wp-includes/general-template.php in WordPress before 4.9.1
does not ...)
+ {DLA-1216-1}
- wordpress 4.9.1+dfsg-1 (bug #883314)
NOTE:
https://github.com/WordPress/WordPress/commit/3713ac5ebc90fb2011e98dfd691420f43da6c09a
NOTE:
https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
CVE-2017-17094 (wp-includes/feed.php in WordPress before 4.9.1 does not
properly ...)
+ {DLA-1216-1}
- wordpress 4.9.1+dfsg-1 (bug #883314)
NOTE:
https://github.com/WordPress/WordPress/commit/f1de7e42df29395c3314bf85bff3d1f4f90541de
NOTE:
https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
CVE-2017-17092 (wp-includes/functions.php in WordPress before 4.9.1 does not
require ...)
+ {DLA-1216-1}
- wordpress 4.9.1+dfsg-1 (bug #883314)
NOTE:
https://github.com/WordPress/WordPress/commit/67d03a98c2cae5f41843c897f206adde299b0509
NOTE:
https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
@@ -7822,20 +7828,20 @@
RESERVED
CVE-2017-17034
RESERVED
-CVE-2017-17033
- RESERVED
-CVE-2017-17032
- RESERVED
-CVE-2017-17031
- RESERVED
-CVE-2017-17030
- RESERVED
-CVE-2017-17029
- RESERVED
-CVE-2017-17028
- RESERVED
-CVE-2017-17027
- RESERVED
+CVE-2017-17033 (A buffer overflow vulnerability in password function in QNAP
QTS ...)
+ TODO: check
+CVE-2017-17032 (A buffer overflow vulnerability in password function in QNAP
QTS ...)
+ TODO: check
+CVE-2017-17031 (A buffer overflow vulnerability in password function in QNAP
QTS ...)
+ TODO: check
+CVE-2017-17030 (A buffer overflow vulnerability in login function in QNAP QTS
version ...)
+ TODO: check
+CVE-2017-17029 (A buffer overflow vulnerability in login function in QNAP QTS
version ...)
+ TODO: check
+CVE-2017-17028 (A buffer overflow vulnerability in external device function in
QNAP ...)
+ TODO: check
+CVE-2017-17027 (A buffer overflow vulnerability in FTP service in QNAP QTS
version ...)
+ TODO: check
CVE-2017-17045 (An issue was discovered in Xen through 4.9
[Secure-testing-commits] r58822 - in data: . DSA
Author: carnil
Date: 2017-12-21 20:20:47 + (Thu, 21 Dec 2017)
New Revision: 58822
Modified:
data/DSA/list
data/dsa-needed.txt
Log:
Reserve DSA number for sensible-utils
Modified: data/DSA/list
===
--- data/DSA/list 2017-12-21 20:06:42 UTC (rev 58821)
+++ data/DSA/list 2017-12-21 20:20:47 UTC (rev 58822)
@@ -1,3 +1,7 @@
+[21 Dec 2017] DSA-4071-1 sensible-utils - security update
+ {CVE-2017-17512}
+ [jessie] - sensible-utils 0.0.9+deb8u1
+ [stretch] - sensible-utils 0.0.9+deb9u1
[21 Dec 2017] DSA-4070-1 enigmail - security update
[jessie] - enigmail 2:1.9.9-1~deb8u1
[stretch] - enigmail 2:1.9.9-1~deb9u1
Modified: data/dsa-needed.txt
===
--- data/dsa-needed.txt 2017-12-21 20:06:42 UTC (rev 58821)
+++ data/dsa-needed.txt 2017-12-21 20:20:47 UTC (rev 58822)
@@ -61,8 +61,6 @@
--
salt
--
-sensible-utils (carnil)
---
simplesamlphp
--
sqlite3/oldstable
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58820 - data/CVE
Author: carnil
Date: 2017-12-21 20:06:30 + (Thu, 21 Dec 2017)
New Revision: 58820
Modified:
data/CVE/list
Log:
Slightly sort one entry
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 19:40:21 UTC (rev 58819)
+++ data/CVE/list 2017-12-21 20:06:30 UTC (rev 58820)
@@ -15512,9 +15512,9 @@
CVE-2017-14990 (WordPress 4.8.2 stores cleartext wp_signups.activation_key
values (but ...)
{DSA-3997-1}
- wordpress 4.8.2+dfsg-2 (bug #877629)
+ [wheezy] - wordpress (Fix requires database upgrade which is
too intrusive compared to the actual benefit.)
NOTE: https://core.trac.wordpress.org/ticket/38474
NOTE: Wordpress in Wheezy requires a database upgrade and backports of
new functions
- [wheezy] - wordpress (Fix requires database upgrade which is
too intrusive compared to the actual benefit.)
CVE-2017-14989 (A use-after-free in RenderFreetype in MagickCore/annotate.c in
...)
{DSA-4040-1 DSA-4032-1 DLA-1131-1}
- imagemagick (bug #878562)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58821 - data/CVE
Author: carnil Date: 2017-12-21 20:06:42 + (Thu, 21 Dec 2017) New Revision: 58821 Modified: data/CVE/list Log: Add upstream reference for CVE-2017-17522 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 20:06:30 UTC (rev 58820) +++ data/CVE/list 2017-12-21 20:06:42 UTC (rev 58821) @@ -5315,6 +5315,7 @@ - python3.7 NOTE: Lib/webbrowser.py does not validate strings before launching the program NOTE: specified by the BROWSER environment variable. + NOTE: https://bugs.python.org/issue32367 CVE-2017-17521 (uiutil.c in FontForge through 20170731 does not validate strings before ...) - fontforge (unimportant) NOTE: https://sources.debian.org/src/fontforge/1:20170731%7Edfsg-1/fontforgeexe/uiutil.c/#L285 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58819 - data
Author: apo Date: 2017-12-21 19:40:21 + (Thu, 21 Dec 2017) New Revision: 58819 Modified: data/dla-needed.txt Log: Readd wordpress to dla-needed.txt because of CVE-2012-6707 Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-12-21 19:38:14 UTC (rev 58818) +++ data/dla-needed.txt 2017-12-21 19:40:21 UTC (rev 58819) @@ -89,5 +89,7 @@ NOTE: 2017-12-12: The maintainer asked us to handle the package NOTE: ourselves. See https://lists.debian.org/cak0odpxnte9c82ltt85jn_piyj_odw7wj3vttam1lnmqa7k...@mail.gmail.com -- +wordpress +-- xen -- ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58818 - data/CVE
Author: apo
Date: 2017-12-21 19:38:14 + (Thu, 21 Dec 2017)
New Revision: 58818
Modified:
data/CVE/list
Log:
CVE-2017-14990,wordpress: Mark as ignored for Wheezy.
Fix requires a database upgrade which is too intrusive compared to the actual
benefit.
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 19:34:16 UTC (rev 58817)
+++ data/CVE/list 2017-12-21 19:38:14 UTC (rev 58818)
@@ -15514,6 +15514,7 @@
- wordpress 4.8.2+dfsg-2 (bug #877629)
NOTE: https://core.trac.wordpress.org/ticket/38474
NOTE: Wordpress in Wheezy requires a database upgrade and backports of
new functions
+ [wheezy] - wordpress (Fix requires database upgrade which is
too intrusive compared to the actual benefit.)
CVE-2017-14989 (A use-after-free in RenderFreetype in MagickCore/annotate.c in
...)
{DSA-4040-1 DSA-4032-1 DLA-1131-1}
- imagemagick (bug #878562)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58817 - data/CVE
Author: jmm Date: 2017-12-21 19:34:16 + (Thu, 21 Dec 2017) New Revision: 58817 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 19:31:41 UTC (rev 58816) +++ data/CVE/list 2017-12-21 19:34:16 UTC (rev 58817) @@ -10252,7 +10252,7 @@ CVE-2017-16790 RESERVED CVE-2017-16789 (Cross-site scripting (XSS) vulnerability in Integration Matters nJAMS ...) - TODO: check + NOT-FOR-US: TIBCO CVE-2017-16788 (Directory traversal vulnerability in the "Upload Groupkey" ...) NOT-FOR-US: Meinberg LANTIME CVE-2017-16787 (The Web Configuration Utility in Meinberg LANTIME devices with ...) @@ -10370,11 +10370,11 @@ CVE-2017-16734 RESERVED CVE-2017-16733 (A SQL Injection issue was discovered in Ecava IntegraXor v 6.1.1030.1 ...) - NOT-FOR-US: Ecava IntegraXor + NOT-FOR-US: Ecava IntegraXor CVE-2017-16732 RESERVED CVE-2017-16731 (An Unprotected Transport of Credentials issue was discovered in ABB ...) - TODO: check + NOT-FOR-US: Ellipse CVE-2017-16730 RESERVED CVE-2017-16729 @@ -12842,7 +12842,7 @@ CVE-2017-15891 (Improper access control vulnerability in SYNO.Cal.EventBase in ...) NOT-FOR-US: Synology Calendar CVE-2017-15890 (Cross-site scripting (XSS) vulnerability in Disclaimer in Synology ...) - TODO: check + NOT-FOR-US: Synology CVE-2017-15889 (Command injection vulnerability in smart.cgi in Synology DiskStation ...) NOT-FOR-US: Synology DiskStation Manager CVE-2017-15888 (Cross-site scripting (XSS) vulnerability in Custom Internet Radio List ...) @@ -15770,15 +15770,15 @@ NOTE: Debian doesn't use zlib 1.2.9 yet NOTE: https://nodejs.org/en/blog/vulnerability/oct-2017-dos/ CVE-2017-14918 (In Android for MSM, Firefox OS for MSM, QRD Android, with all Android ...) - TODO: check + NOT-FOR-US: Qualcomm component for Android CVE-2017-14917 (In Android for MSM, Firefox OS for MSM, QRD Android, with all Android ...) - TODO: check + NOT-FOR-US: Qualcomm component for Android CVE-2017-14916 (In Android for MSM, Firefox OS for MSM, QRD Android, with all Android ...) - TODO: check + NOT-FOR-US: Qualcomm component for Android CVE-2017-14915 RESERVED CVE-2017-14914 (In Android for MSM, Firefox OS for MSM, QRD Android, with all Android ...) - TODO: check + NOT-FOR-US: Qualcomm component for Android CVE-2017-14913 RESERVED CVE-2017-14912 @@ -15788,9 +15788,9 @@ CVE-2017-14910 RESERVED CVE-2017-14909 (In Android for MSM, Firefox OS for MSM, QRD Android, with all Android ...) - TODO: check + NOT-FOR-US: Qualcomm component for Android CVE-2017-14908 (In Android for MSM, Firefox OS for MSM, QRD Android, with all Android ...) - TODO: check + NOT-FOR-US: Qualcomm component for Android CVE-2017-14907 (In Android for MSM, Firefox OS for MSM, QRD Android, with all Android ...) TODO: check CVE-2017-14906 @@ -22616,7 +22616,7 @@ CVE-2017-12631 (Apache CXF Fediz ships with a number of container-specific plugins to ...) NOT-FOR-US: Apache CXF CVE-2017-12630 (In Apache Drill 1.11.0 and earlier when submitting form from Query ...) - TODO: check + NOT-FOR-US: Apache Drill CVE-2017-12629 (Remote code execution occurs in Apache Solr before 7.1 with Apache ...) - lucene-solr NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1501529 @@ -23350,7 +23350,7 @@ CVE-2017-12374 RESERVED CVE-2017-12373 (A vulnerability in the TLS protocol implementation of legacy Cisco ASA ...) - TODO: check + NOT-FOR-US: Cisco CVE-2017-12372 (A "Cisco WebEx Network Recording Player Remote Code Execution ...) NOT-FOR-US: Cisco CVE-2017-12371 (A "Cisco WebEx Network Recording Player Remote Code Execution ...) @@ -24139,7 +24139,7 @@ CVE-2017-12073 RESERVED CVE-2017-12072 (Cross-site scripting (XSS) vulnerability in PixlrEditorHandler.php in ...) - TODO: check + NOT-FOR-US: Synology CVE-2017-12071 (Server-side request forgery (SSRF) vulnerability in file_upload.php in ...) NOT-FOR-US: Synology CVE-2017-12070 @@ -25563,7 +25563,7 @@ CVE-2017-11563 RESERVED CVE-2017-11562 (A Session Fixation Vulnerability exists in the MT4 Networks ...) - TODO: check + NOT-FOR-US: MT4 SenhaSegura CVE-2017-11561 RESERVED CVE-2017-11560 @@ -25814,7 +25814,7 @@ CVE-2017-11481 (Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting ...) - kibana (bug #700337) CVE-2017-11480 (Packetbeat versions prior to 5.6.4 are affected by a denial of service ...) - TODO: check + NOT-FOR-US: Packetbeat CVE-2017-11479 (Kibana versions prior to 5.6.1 had a cross-site scripting (XSS) ...) - kibana (bug #700337) CVE-2017-11477 @@ -25859,7 +25859,7 @@ C
[Secure-testing-commits] r58816 - in data: CVE DSA
Author: jmm
Date: 2017-12-21 19:31:41 + (Thu, 21 Dec 2017)
New Revision: 58816
Modified:
data/CVE/list
data/DSA/list
Log:
enigmail DSA
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 19:28:42 UTC (rev 58815)
+++ data/CVE/list 2017-12-21 19:31:41 UTC (rev 58816)
@@ -1,3 +1,7 @@
+CVE-2017- [Multiple Enigmail issues]
+ - enigmail 2:1.9.9-1
+ [jessie] - enigmail 2:1.9.9-1~deb8u1
+ [stretch] - enigmail 2:1.9.9-1~deb9u1
CVE-2017-17831 (GitHub Git LFS before 2.1.1 allows remote attackers to execute
...)
- git-lfs (Fixed before initial upload to Debian)
NOTE: https://github.com/git-lfs/git-lfs/pull/2242
Modified: data/DSA/list
===
--- data/DSA/list 2017-12-21 19:28:42 UTC (rev 58815)
+++ data/DSA/list 2017-12-21 19:31:41 UTC (rev 58816)
@@ -1,3 +1,6 @@
+[21 Dec 2017] DSA-4070-1 enigmail - security update
+ [jessie] - enigmail 2:1.9.9-1~deb8u1
+ [stretch] - enigmail 2:1.9.9-1~deb9u1
[20 Dec 2017] DSA-4069-1 otrs2 - security update
{CVE-2017-17476}
[jessie] - otrs2 3.3.18-1+deb8u4
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58815 - data/CVE
Author: jmm
Date: 2017-12-21 19:28:42 + (Thu, 21 Dec 2017)
New Revision: 58815
Modified:
data/CVE/list
Log:
one otrs issue ignored
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 19:28:08 UTC (rev 58814)
+++ data/CVE/list 2017-12-21 19:28:42 UTC (rev 58815)
@@ -27654,7 +27654,6 @@
RESERVED
CVE-2017-10908 [h2o 2.2.x: crash when handling malformed HTTP/2 request]
- h2o 2.2.4+dfsg-1 (medium)
- NOTE: fixed in 2.2.4
NOTE: https://github.com/h2o/h2o/issues/1544
CVE-2017-10907
RESERVED
@@ -27728,7 +27727,6 @@
NOT-FOR-US: OpenAM
CVE-2017-10872 [h2o: 2.2.x: crash when logging TLS 1.3 properties in h2o]
- h2o 2.2.4+dfsg-1 (medium)
- NOTE: Fixed in 2.2.4
NOTE: https://github.com/h2o/h2o/issues/1543
CVE-2017-10871 (Buffer overflow in NTT DOCOMO Wi-Fi STATION L-02F Software
version ...)
NOT-FOR-US: NTT DOCOMO Wi-Fi STATION L-02F Software
@@ -27736,11 +27734,9 @@
NOT-FOR-US: Rakuraku Hagaki
CVE-2017-10869 [h2o 2.2.x: stack overflow when sending huge request body to
upstream]
- h2o 2.2.3+dfsg-1 (medium)
- NOTE: Fixed in 2.2.3
NOTE: https://github.com/h2o/h2o/issues/1460
CVE-2017-10868 [h2o 2.2.x: crash when receiving HTTP/1 request with invalid
framing]
- h2o 2.2.3+dfsg-1 (medium)
- NOTE: Fixed in 2.2.3
NOTE: https://github.com/h2o/h2o/issues/1459
CVE-2017-10867
RESERVED
@@ -60684,7 +60680,7 @@
CVE-2016-9139 (Cross-site scripting (XSS) vulnerability in Open Ticket Request
System ...)
{DLA-787-1}
- otrs2 5.0.14-1 (bug #843091)
- [jessie] - otrs2 (Minor issue)
+ [jessie] - otrs2 (Minor issue)
NOTE:
https://www.otrs.com/security-advisory-2016-02-security-update-otrs/
NOTE: http://www.openwall.com/lists/oss-security/2016/11/01/5
NOTE: upstream fix likely
https://github.com/OTRS/otrs/commit/6578a8bcf82529461302291ab3fcb500363b005a
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58814 - data
Author: jmm Date: 2017-12-21 19:28:08 + (Thu, 21 Dec 2017) New Revision: 58814 Modified: data/dsa-needed.txt Log: take poppler Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2017-12-21 19:25:30 UTC (rev 58813) +++ data/dsa-needed.txt 2017-12-21 19:28:08 UTC (rev 58814) @@ -48,7 +48,7 @@ -- pjproject -- -poppler +poppler (jmm) 2017-11-23: santiago will prepare a debdiff 2017-12-02: santiago prepared debdiffs available for review -- ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58813 - data
Author: carnil Date: 2017-12-21 19:25:30 + (Thu, 21 Dec 2017) New Revision: 58813 Modified: data/dsa-needed.txt Log: Take gimp from dsa-needed list Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2017-12-21 19:15:03 UTC (rev 58812) +++ data/dsa-needed.txt 2017-12-21 19:25:30 UTC (rev 58813) @@ -18,7 +18,7 @@ -- bouncycastle/stable (jmm) -- -gimp +gimp (carnil) -- graphicsmagick -- ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58812 - data
Author: apo
Date: 2017-12-21 19:15:03 + (Thu, 21 Dec 2017)
New Revision: 58812
Modified:
data/dla-needed.txt
Log:
Claim graphicsmagick and imagemagick in dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-12-21 19:07:37 UTC (rev 58811)
+++ data/dla-needed.txt 2017-12-21 19:15:03 UTC (rev 58812)
@@ -21,11 +21,11 @@
--
gimp (Emilio Pozuelo)
--
-graphicsmagick
+graphicsmagick (Markus Koschany)
--
icu (Roberto C. Sánchez)
--
-imagemagick
+imagemagick (Markus Koschany)
--
lame (Hugo Lefeuvre)
NOTE: Couldn't reproduce CVE-2017-{69-72}, but successfully reproduced
CVE-2017-150{18,45,46}
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58811 - in data: . DLA
Author: pochu
Date: 2017-12-21 19:07:37 + (Thu, 21 Dec 2017)
New Revision: 58811
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-1217-1 for irssi
Modified: data/DLA/list
===
--- data/DLA/list 2017-12-21 19:05:56 UTC (rev 58810)
+++ data/DLA/list 2017-12-21 19:07:37 UTC (rev 58811)
@@ -1,3 +1,6 @@
+[21 Dec 2017] DLA-1217-1 irssi - security update
+ {CVE-2017-5193 CVE-2017-5194 CVE-2017-5196 CVE-2017-15227
CVE-2017-15228 CVE-2017-15721 CVE-2017-15722}
+ [wheezy] - irssi 0.8.15-5+deb7u4
[21 Dec 2017] DLA-1216-1 wordpress - security update
{CVE-2017-17091 CVE-2017-17092 CVE-2017-17093 CVE-2017-17094}
[wheezy] - wordpress 3.6.1+dfsg-1~deb7u20
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-12-21 19:05:56 UTC (rev 58810)
+++ data/dla-needed.txt 2017-12-21 19:07:37 UTC (rev 58811)
@@ -27,8 +27,6 @@
--
imagemagick
--
-irssi (Emilio Pozuelo)
---
lame (Hugo Lefeuvre)
NOTE: Couldn't reproduce CVE-2017-{69-72}, but successfully reproduced
CVE-2017-150{18,45,46}
NOTE: 20171120: Backporting 3.100 is not conceivable, diff >40k lines.
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58810 - data/CVE
Author: pochu Date: 2017-12-21 19:05:56 + (Thu, 21 Dec 2017) New Revision: 58810 Modified: data/CVE/list Log: drop no-dsa from some irssi issues to be fixed in upcoming wheezy update Modified: data/CVE/list === --- data/CVE/list 2017-12-21 19:03:37 UTC (rev 58809) +++ data/CVE/list 2017-12-21 19:05:56 UTC (rev 58810) @@ -45445,7 +45445,6 @@ CVE-2017-5356 (Irssi before 0.8.21 allows remote attackers to cause a denial of ...) - irssi 0.8.21-1 (low) [jessie] - irssi 0.8.17-1+deb8u3 - [wheezy] - irssi (Minor issue) NOTE: https://github.com/irssi/irssi/commit/6c6c42e3d1b49d90aacc0b67f8540471cae02a1d NOTE: https://blog.fuzzing-project.org/55-Fuzzing-Irssi-with-Perl-Scripts.html NOTE: https://irssi.org/security/irssi_sa_2017_01.txt @@ -45909,14 +45908,12 @@ CVE-2017-5194 (Use-after-free vulnerability in Irssi before 0.8.21 allows remote ...) - irssi 0.8.21-1 (bug #850403) [jessie] - irssi 0.8.17-1+deb8u3 - [wheezy] - irssi (Minor issue) NOTE: http://www.openwall.com/lists/oss-security/2017/01/05/2 NOTE: https://github.com/irssi/irssi/commit/6c6c42e3d1b49d90aacc0b67f8540471cae02a1d NOTE: https://irssi.org/security/irssi_sa_2017_01.txt CVE-2017-5193 (The nickcmp function in Irssi before 0.8.21 allows remote attackers to ...) - irssi 0.8.21-1 (bug #850403) [jessie] - irssi 0.8.17-1+deb8u3 - [wheezy] - irssi (Minor issue) NOTE: http://www.openwall.com/lists/oss-security/2017/01/05/2 NOTE: https://github.com/irssi/irssi/commit/6c6c42e3d1b49d90aacc0b67f8540471cae02a1d NOTE: https://irssi.org/security/irssi_sa_2017_01.txt ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58809 - in data: . DLA
Author: apo
Date: 2017-12-21 19:03:37 + (Thu, 21 Dec 2017)
New Revision: 58809
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-1216-1 for wordpress
Modified: data/DLA/list
===
--- data/DLA/list 2017-12-21 19:01:44 UTC (rev 58808)
+++ data/DLA/list 2017-12-21 19:03:37 UTC (rev 58809)
@@ -1,3 +1,6 @@
+[21 Dec 2017] DLA-1216-1 wordpress - security update
+ {CVE-2017-17091 CVE-2017-17092 CVE-2017-17093 CVE-2017-17094}
+ [wheezy] - wordpress 3.6.1+dfsg-1~deb7u20
[20 Dec 2017] DLA-1215-1 otrs2 - security update
{CVE-2017-17476}
[wheezy] - otrs2 3.3.18-1~deb7u3
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-12-21 19:01:44 UTC (rev 58808)
+++ data/dla-needed.txt 2017-12-21 19:03:37 UTC (rev 58809)
@@ -91,7 +91,5 @@
NOTE: 2017-12-12: The maintainer asked us to handle the package
NOTE: ourselves. See
https://lists.debian.org/cak0odpxnte9c82ltt85jn_piyj_odw7wj3vttam1lnmqa7k...@mail.gmail.com
--
-wordpress (Markus Koschany)
---
xen
--
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58808 - data/CVE
Author: pochu
Date: 2017-12-21 19:01:44 + (Thu, 21 Dec 2017)
New Revision: 58808
Modified:
data/CVE/list
Log:
CVE-2017-15723/irssi n/a on wheezy
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 18:16:32 UTC (rev 58807)
+++ data/CVE/list 2017-12-21 19:01:44 UTC (rev 58808)
@@ -13217,6 +13217,7 @@
CVE-2017-15723 (In Irssi before 1.0.5, overlong nicks or targets may result in
a NULL ...)
{DSA-4016-1}
- irssi 1.0.5-1 (bug #879521)
+ [wheezy] - irssi (Vulnerable code introduced in 0.8.17)
NOTE: https://irssi.org/security/irssi_sa_2017_10.txt
NOTE:
https://github.com/irssi/irssi/commit/43e44d553d44e313003cee87e6ea5e24d68b84a1
CVE-2017-15722 (In certain cases, Irssi before 1.0.5 may fail to verify that a
Safe ...)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58807 - in data: . CVE
Author: pochu Date: 2017-12-21 18:16:32 + (Thu, 21 Dec 2017) New Revision: 58807 Modified: data/CVE/list data/dla-needed.txt Log: CVE-2017-17529/abiword no-dsa on wheezy Modified: data/CVE/list === --- data/CVE/list 2017-12-21 16:59:33 UTC (rev 58806) +++ data/CVE/list 2017-12-21 18:16:32 UTC (rev 58807) @@ -5268,6 +5268,7 @@ - abiword (bug #884923) [stretch] - abiword (Minor issue) [jessie] - abiword (Minor issue) + [wheezy] - abiword (Minor issue) NOTE: https://sources.debian.org/src/abiword/3.0.2-5/src/af/util/xp/ut_go_file.cpp/#L1717 NOTE: Issue can be mitigated by compiling abiword in future with --with-gnomevfs so that NOTE: abiword does not use the problematic fallback_open_uri. Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-12-21 16:59:33 UTC (rev 58806) +++ data/dla-needed.txt 2017-12-21 18:16:32 UTC (rev 58807) @@ -10,8 +10,6 @@ https://wiki.debian.org/LTS/Development#Triage_new_security_issues -- -abiword --- asterisk -- ca-certificates ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58806 - data/CVE
Author: gcs
Date: 2017-12-21 16:59:33 + (Thu, 21 Dec 2017)
New Revision: 58806
Modified:
data/CVE/list
Log:
Add CVE-2017-9935/tiff fixed version in unstable
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 16:41:15 UTC (rev 58805)
+++ data/CVE/list 2017-12-21 16:59:33 UTC (rev 58806)
@@ -28595,7 +28595,7 @@
NOTE: Fixed by:
https://github.com/vadz/libtiff/commit/fe8d7165956b88df4837034a9161dc5fd20cf67a
CVE-2017-9935 (In LibTIFF 4.0.8, there is a heap-based buffer overflow in the
...)
{DLA-1206-1}
- - tiff (bug #866109)
+ - tiff 4.0.9-2 (bug #866109)
- tiff3
[wheezy] - tiff3 (does not build vulnerable tiff2pdf)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2704
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58805 - data/CVE
Author: carnil Date: 2017-12-21 16:41:15 + (Thu, 21 Dec 2017) New Revision: 58805 Modified: data/CVE/list Log: Add CVE-2017-16995 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 16:37:27 UTC (rev 58804) +++ data/CVE/list 2017-12-21 16:41:15 UTC (rev 58805) @@ -8357,6 +8357,12 @@ NOTE: https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=0c17d1d2c61936401f4702e1846e2c19b200f958 CVE-2017-16995 RESERVED + - linux + [jessie] - linux (Vulnerable code introduced later) + [wheezy] - linux (Vulnerable code introduced later) + NOTE: https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=95a762e2c8c942780948091f8f2a4f32fce1ac6f + NOTE: Starting with v4.14, this is exploitable by unprivileged users as long as + NOTE: the unprivileged_bpf_disabled sysctl isn't set. CVE-2016-10702 (Pebble Smartwatch devices through 4.3 mishandle UUID storage, which ...) NOT-FOR-US: Pebble CVE-2016-10701 (In Hitachi Vantara Pentaho BA Platform through 8.0, a CSRF issue exists ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58804 - data/CVE
Author: carnil Date: 2017-12-21 16:37:27 + (Thu, 21 Dec 2017) New Revision: 58804 Modified: data/CVE/list Log: Add CVE-2017-16996/linux Modified: data/CVE/list === --- data/CVE/list 2017-12-21 16:11:04 UTC (rev 58803) +++ data/CVE/list 2017-12-21 16:37:27 UTC (rev 58804) @@ -8350,6 +8350,11 @@ NOTE: Proposed patch: https://sourceware.org/ml/libc-alpha/2017-12/msg00528.html CVE-2017-16996 RESERVED + - linux + [stretch] - linux (Vulnerable code introduced later) + [jessie] - linux (Vulnerable code introduced later) + [wheezy] - linux (Vulnerable code introduced later) + NOTE: https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=0c17d1d2c61936401f4702e1846e2c19b200f958 CVE-2017-16995 RESERVED CVE-2016-10702 (Pebble Smartwatch devices through 4.3 mishandle UUID storage, which ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58803 - data/CVE
Author: jmm Date: 2017-12-21 16:11:04 + (Thu, 21 Dec 2017) New Revision: 58803 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 16:01:32 UTC (rev 58802) +++ data/CVE/list 2017-12-21 16:11:04 UTC (rev 58803) @@ -5122,7 +5122,7 @@ CVE-2017-17567 (Scubez Posty Readymade Classifieds has SQL Injection via the ...) NOT-FOR-US: Scubez Posty Readymade Classifieds CVE-2017-17562 (Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is ...) - TODO: check + NOT-FOR-US: Embedthis GoAhead CVE-2017-17561 (SeaCMS 6.56 allows remote authenticated administrators to execute ...) NOT-FOR-US: SeaCMS CVE-2017-17560 (An issue was discovered on Western Digital MyCloud PR4100 2.30.172 ...) @@ -12852,11 +12852,11 @@ CVE-2017-15878 (A cross-site scripting (XSS) vulnerability exists in ...) NOT-FOR-US: KeystoneJS CVE-2017-15877 (Insecure Permissions vulnerability in db.php file in GPWeb 8.4.61 ...) - TODO: check + NOT-FOR-US: GPWeb CVE-2017-15876 (Unrestricted File Upload vulnerability in GPWeb 8.4.61 allows remote ...) - TODO: check + NOT-FOR-US: GPWeb CVE-2017-15875 (SQL injection vulnerability in Password Recovery in GPWeb 8.4.61 ...) - TODO: check + NOT-FOR-US: GPWeb CVE-2017-15874 (archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an ...) - busybox 1:1.27.2-2 (bug #879732) [stretch] - busybox (Vulnerable code not present) @@ -12877,7 +12877,7 @@ CVE-2017-15871 (** DISPUTED ** The deserialize function in serialize-to-js through ...) NOT-FOR-US: Disputed serialize-to-js issue CVE-2017-15870 (Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers ...) - TODO: check + NOT-FOR-US: Palo Alto Networks GlobalProtect Agent CVE-2017-15869 RESERVED CVE-2017-15868 (The bnep_add_connection function in net/bluetooth/bnep/core.c in the ...) @@ -13630,13 +13630,13 @@ CVE-2017-15533 RESERVED CVE-2017-15532 (Prior to 10.6.4, Symantec Messaging Gateway may be susceptible to a ...) - TODO: check + NOT-FOR-US: Symantec CVE-2017-15531 RESERVED CVE-2017-15530 (Prior to 4.4.1.10, the Norton Family Android App can be susceptible to ...) - TODO: check + NOT-FOR-US: Norton CVE-2017-15529 (Prior to 4.4.1.10, the Norton Family Android App can be susceptible to ...) - TODO: check + NOT-FOR-US: Norton CVE-2017-15528 (Prior to v 7.6, the Install Norton Security (INS) product can be ...) NOT-FOR-US: Install Norton Security CVE-2017-15527 (Prior to ITMS 8.1 RU4, the Symantec Management Console can be ...) @@ -13646,7 +13646,7 @@ CVE-2017-15525 (Prior to SEE v11.1.3MP1, Symantec Endpoint Encryption can be ...) NOT-FOR-US: Symantec CVE-2017-15524 (The Application Firewall Pack (AFP, aka Web Application Firewall) ...) - TODO: check + NOT-FOR-US: Kemp Load Balancer CVE-2017-15523 RESERVED CVE-2017-15522 @@ -15205,9 +15205,9 @@ CVE-2017-15050 RESERVED CVE-2017-15049 (The ZoomLauncher binary in the Zoom client for Linux before ...) - TODO: check + NOT-FOR-US: Zoom CVE-2017-15048 (Stack-based buffer overflow in the ZoomLauncher binary in the Zoom ...) - TODO: check + NOT-FOR-US: Zoom CVE-2017-15047 (The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows ...) - redis 4:4.0.2-5 (bug #878076; unimportant) [jessie] - redis (Vulnerable code introduced later) @@ -17274,7 +17274,7 @@ CVE-2017-14387 (The NFS service in EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, and ...) NOT-FOR-US: EMC Isilon OneFS CVE-2017-14386 (The web user interface of Dell 2335dn and 2355dn Multifunction Laser ...) - TODO: check + NOT-FOR-US: Dell CVE-2017-14385 (An issue was discovered in EMC Data Domain DD OS 5.7 family, versions ...) NOT-FOR-US: EMC Data Domain DD OS CVE-2017-14384 @@ -18052,7 +18052,7 @@ CVE-2017-14135 (enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the ...) NOT-FOR-US: webadmin plugin for opendreambox CVE-2017-14134 (A Reflected XSS Vulnerability affects the forgotten password page of ...) - TODO: check + NOT-FOR-US: Maplesoft Maple CVE-2017-14133 RESERVED CVE-2017-14132 (JasPer 2.0.13 allows remote attackers to cause a denial of service ...) @@ -18178,7 +18178,7 @@ NOTE: http://lists.roaringpenguin.com/pipermail/mimedefang/2017-August/038077.html NOTE: http://lists.roaringpenguin.com/pipermail/mimedefang/2017-August/038085.html CVE-2017-14101 (A security researcher found an XML External Entity (XXE) vulnerability ...) - TODO: check + NOT-FOR-US: Conserus Image Repository CVE-2017-14097 RESERVED CVE-2017-14096 @@ -20438,13 +20438,13 @@ CVE-2017-13174 (An elevation of privilege v
[Secure-testing-commits] r58802 - data
Author: jmm Date: 2017-12-21 16:01:32 + (Thu, 21 Dec 2017) New Revision: 58802 Modified: data/dsa-needed.txt Log: add gimp to dsa-needed Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2017-12-21 15:21:36 UTC (rev 58801) +++ data/dsa-needed.txt 2017-12-21 16:01:32 UTC (rev 58802) @@ -18,6 +18,8 @@ -- bouncycastle/stable (jmm) -- +gimp +-- graphicsmagick -- libav/oldstable ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58801 - data/CVE
Author: agx Date: 2017-12-21 15:21:36 + (Thu, 21 Dec 2017) New Revision: 58801 Modified: data/CVE/list Log: CVE-2017-17405: add commits for ruby2.3 which is in stable Modified: data/CVE/list === --- data/CVE/list 2017-12-21 13:14:36 UTC (rev 58800) +++ data/CVE/list 2017-12-21 15:21:36 UTC (rev 58801) @@ -6101,6 +6101,8 @@ - ruby1.8 NOTE: https://www.ruby-lang.org/en/news/2017/12/14/net-ftp-command-injection-cve-2017-17405/ NOTE: https://github.com/ruby/ruby/commit/6d3f72e5be2312be312f2acbf3465b05293c1431 + NOTE: ruby2.3: https://github.com/ruby/ruby/commit/1cfe43fd85c66a9e2b5068480b3e043c31e6b8ca + NOTE: ruby2.3: https://github.com/ruby/ruby/commit/3ec034c597e6d40543bb844dc8f96645bef4bed2 CVE-2017-17404 RESERVED CVE-2017-17403 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58800 - data/CVE
Author: carnil Date: 2017-12-21 13:14:36 + (Thu, 21 Dec 2017) New Revision: 58800 Modified: data/CVE/list Log: Add bug reference for CVE-2017-17787, #884927 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 13:11:28 UTC (rev 58799) +++ data/CVE/list 2017-12-21 13:14:36 UTC (rev 58800) @@ -291,7 +291,7 @@ NOTE: Cannot be reproduced in wheezy with "valgrind --trace-children=yes gimp " NOTE: Some OOB read/write can be reproduced in sid with "valgrind --trace-children=yes gimp " CVE-2017-17787 (In GIMP 2.8.22, there is a heap-based buffer over-read in ...) - - gimp (unimportant) + - gimp (unimportant; bug #884927) NOTE: https://git.gnome.org/browse/GIMP/commit/?id=eb2980683e6472aff35a3117587c4f814515c74d (master) NOTE: https://git.gnome.org/browse/GIMP/commit/?id=87ba505fff85989af795f4ab6a047713f4d9381d (gimp-2-8) NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790853 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58799 - data/CVE
Author: carnil Date: 2017-12-21 13:11:28 + (Thu, 21 Dec 2017) New Revision: 58799 Modified: data/CVE/list Log: Add bug reference for CVE-2017-17784, #884925 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 13:03:56 UTC (rev 58798) +++ data/CVE/list 2017-12-21 13:11:28 UTC (rev 58799) @@ -278,7 +278,7 @@ NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790783 NOTE: Crash in desktop tool, no/negligable security impact CVE-2017-17784 (In GIMP 2.8.22, there is a heap-based buffer over-read in load_image in ...) - - gimp (unimportant) + - gimp (unimportant; bug #884925) NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790784 NOTE: https://git.gnome.org/browse/gimp/commit/?id=06d24a79af94837d615d0024916bb95a01bf3c59 (master) NOTE: https://git.gnome.org/browse/gimp/commit/?id=c57f9dcf1934a9ab0cd67650f2dea18cb0902270 (gimp-2-8) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58798 - data/CVE
Author: carnil Date: 2017-12-21 13:03:56 + (Thu, 21 Dec 2017) New Revision: 58798 Modified: data/CVE/list Log: Reference fixes for CVE-2017-17787 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 13:02:58 UTC (rev 58797) +++ data/CVE/list 2017-12-21 13:03:56 UTC (rev 58798) @@ -292,6 +292,8 @@ NOTE: Some OOB read/write can be reproduced in sid with "valgrind --trace-children=yes gimp " CVE-2017-17787 (In GIMP 2.8.22, there is a heap-based buffer over-read in ...) - gimp (unimportant) + NOTE: https://git.gnome.org/browse/GIMP/commit/?id=eb2980683e6472aff35a3117587c4f814515c74d (master) + NOTE: https://git.gnome.org/browse/GIMP/commit/?id=87ba505fff85989af795f4ab6a047713f4d9381d (gimp-2-8) NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790853 NOTE: Crash in desktop tool, no/negligable security impact CVE-2017-17760 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58797 - data/CVE
Author: carnil Date: 2017-12-21 13:02:58 + (Thu, 21 Dec 2017) New Revision: 58797 Modified: data/CVE/list Log: Reference fix for CVE-2017-17784 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 13:01:56 UTC (rev 58796) +++ data/CVE/list 2017-12-21 13:02:58 UTC (rev 58797) @@ -280,6 +280,8 @@ CVE-2017-17784 (In GIMP 2.8.22, there is a heap-based buffer over-read in load_image in ...) - gimp (unimportant) NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=790784 + NOTE: https://git.gnome.org/browse/gimp/commit/?id=06d24a79af94837d615d0024916bb95a01bf3c59 (master) + NOTE: https://git.gnome.org/browse/gimp/commit/?id=c57f9dcf1934a9ab0cd67650f2dea18cb0902270 (gimp-2-8) NOTE: Crash in desktop tool, no/negligable security impact CVE-2017-17789 (In GIMP 2.8.22, there is a heap-based buffer overflow in ...) - gimp (bug #884837) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58796 - data/CVE
Author: carnil Date: 2017-12-21 13:01:56 + (Thu, 21 Dec 2017) New Revision: 58796 Modified: data/CVE/list Log: Add bug reference for CVE-2017-17529 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 13:00:57 UTC (rev 58795) +++ data/CVE/list 2017-12-21 13:01:56 UTC (rev 58796) @@ -5261,7 +5261,7 @@ - geomview (unimportant) NOTE: https://sources.debian.org/src/geomview/1.9.5-1/src/bin/geomview/common/help.c/?hl=51#L83 CVE-2017-17529 (af/util/xp/ut_go_file.cpp in AbiWord 3.0.2-2 does not validate strings ...) - - abiword + - abiword (bug #884923) [stretch] - abiword (Minor issue) [jessie] - abiword (Minor issue) NOTE: https://sources.debian.org/src/abiword/3.0.2-5/src/af/util/xp/ut_go_file.cpp/#L1717 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58795 - data/CVE
Author: carnil
Date: 2017-12-21 13:00:57 + (Thu, 21 Dec 2017)
New Revision: 58795
Modified:
data/CVE/list
Log:
Update details for CVE-2017-16927/xrdp
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 12:53:21 UTC (rev 58794)
+++ data/CVE/list 2017-12-21 13:00:57 UTC (rev 58795)
@@ -9352,11 +9352,13 @@
RESERVED
CVE-2017-16927 (The scp_v0s_accept function in sesman/libscp/libscp_v0.c in
the session ...)
{DLA-1203-1}
- - xrdp 0.9.4-2 (bug #882463)
+ - xrdp 0.9.4-3 (bug #882463)
[stretch] - xrdp (Minor issue)
[jessie] - xrdp (Minor issue)
NOTE: Proposed pull request:
https://github.com/neutrinolabs/xrdp/pull/958
NOTE: https://groups.google.com/forum/#!topic/xrdp-devel/PmVfMuy_xBA
+ NOTE: Originally fixed with upstream patch in 0.9.4-2 but which caused
regression
+ NOTE: thus marking it only as fixed in the followup version, cf. #884702
CVE-2017-16926 (Ohcount 3.0.0 is prone to a command injection via specially
crafted ...)
- ohcount (bug #882372)
[stretch] - ohcount (Minor issue)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58794 - data/CVE
Author: carnil Date: 2017-12-21 12:53:21 + (Thu, 21 Dec 2017) New Revision: 58794 Modified: data/CVE/list Log: Update information on CVE-2017-17529 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 12:52:08 UTC (rev 58793) +++ data/CVE/list 2017-12-21 12:53:21 UTC (rev 58794) @@ -5262,7 +5262,11 @@ NOTE: https://sources.debian.org/src/geomview/1.9.5-1/src/bin/geomview/common/help.c/?hl=51#L83 CVE-2017-17529 (af/util/xp/ut_go_file.cpp in AbiWord 3.0.2-2 does not validate strings ...) - abiword + [stretch] - abiword (Minor issue) + [jessie] - abiword (Minor issue) NOTE: https://sources.debian.org/src/abiword/3.0.2-5/src/af/util/xp/ut_go_file.cpp/#L1717 + NOTE: Issue can be mitigated by compiling abiword in future with --with-gnomevfs so that + NOTE: abiword does not use the problematic fallback_open_uri. CVE-2017-17528 (backends/platform/sdl/posix/posix.cpp in ScummVM 1.9.0 does not ...) - scummvm (unimportant) [wheezy] - scummvm (Vulnerable code not there) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58793 - data/CVE
Author: sramacher
Date: 2017-12-21 12:52:08 + (Thu, 21 Dec 2017)
New Revision: 58793
Modified:
data/CVE/list
Log:
Link upstream issue
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 12:47:32 UTC (rev 58792)
+++ data/CVE/list 2017-12-21 12:52:08 UTC (rev 58793)
@@ -20497,6 +20497,7 @@
CVE-2017-13135 (A NULL Pointer Dereference exists in VideoLAN x265, as used in
libbpg ...)
- x265
NOTE: https://github.com/ebel34/bpg-web-encoder/issues/1
+ NOTE: https://bitbucket.org/multicoreware/x265/issues/385/cve-2017-13135
TODO: check
CVE-2017-13134 (In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based
buffer ...)
{DSA-4040-1 DSA-4032-1 DLA-1170-1 DLA-1081-1}
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58792 - data/packages
Author: hertzog Date: 2017-12-21 12:47:32 + (Thu, 21 Dec 2017) New Revision: 58792 Modified: data/packages/lts-do-not-call Log: Add ruby1.8 and ruby1.9.1 to lts-do-not-call As requested by Antonio in https://lists.debian.org/debian-lts/2017/12/msg00090.html Modified: data/packages/lts-do-not-call === --- data/packages/lts-do-not-call 2017-12-21 12:38:11 UTC (rev 58791) +++ data/packages/lts-do-not-call 2017-12-21 12:47:32 UTC (rev 58792) @@ -23,5 +23,7 @@ php5 (once upon a time during Squeeze LTS) poppler no answer to https://lists.debian.org/debian-lts/2016/04/msg00128.html, all LTS uploads by LTS team radare2 https://lists.debian.org/debian-lts/2017/02/msg00076.html +ruby1.8 https://lists.debian.org/debian-lts/2017/12/msg00090.html +ruby1.9.1 https://lists.debian.org/debian-lts/2017/12/msg00090.html tiff (once upon a time) tiff3 (once upon a time) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58791 - data/CVE
Author: carnil Date: 2017-12-21 12:38:11 + (Thu, 21 Dec 2017) New Revision: 58791 Modified: data/CVE/list Log: Convert brackets for temporary descripion Assuming the CVEs are not subitted to MITRE. On automatic update we would otherwise loose the description since it was not used the brackets for temprary descrpitions. Modified: data/CVE/list === --- data/CVE/list 2017-12-21 12:31:26 UTC (rev 58790) +++ data/CVE/list 2017-12-21 12:38:11 UTC (rev 58791) @@ -27626,7 +27626,7 @@ RESERVED CVE-2017-10909 RESERVED -CVE-2017-10908 (h2o 2.2.x: crash when handling malformed HTTP/2 request) +CVE-2017-10908 [h2o 2.2.x: crash when handling malformed HTTP/2 request] - h2o 2.2.4+dfsg-1 (medium) NOTE: fixed in 2.2.4 NOTE: https://github.com/h2o/h2o/issues/1544 @@ -27700,7 +27700,7 @@ NOT-FOR-US: PWR-Q200 CVE-2017-10873 (OpenAM (Open Source Edition) allows an attacker to bypass ...) NOT-FOR-US: OpenAM -CVE-2017-10872 (h2o: 2.2.x: crash when logging TLS 1.3 properties in h2o) +CVE-2017-10872 [h2o: 2.2.x: crash when logging TLS 1.3 properties in h2o] - h2o 2.2.4+dfsg-1 (medium) NOTE: Fixed in 2.2.4 NOTE: https://github.com/h2o/h2o/issues/1543 @@ -27708,11 +27708,11 @@ NOT-FOR-US: NTT DOCOMO Wi-Fi STATION L-02F Software CVE-2017-10870 (Memory corruption vulnerability in Rakuraku Hagaki (Rakuraku Hagaki ...) NOT-FOR-US: Rakuraku Hagaki -CVE-2017-10869 (h2o 2.2.x: stack overflow when sending huge request body to upstream) +CVE-2017-10869 [h2o 2.2.x: stack overflow when sending huge request body to upstream] - h2o 2.2.3+dfsg-1 (medium) NOTE: Fixed in 2.2.3 NOTE: https://github.com/h2o/h2o/issues/1460 -CVE-2017-10868 (h2o 2.2.x: crash when receiving HTTP/1 request with invalid framing) +CVE-2017-10868 [h2o 2.2.x: crash when receiving HTTP/1 request with invalid framing] - h2o 2.2.3+dfsg-1 (medium) NOTE: Fixed in 2.2.3 NOTE: https://github.com/h2o/h2o/issues/1459 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58790 - data/CVE
Author: carnil
Date: 2017-12-21 12:31:26 + (Thu, 21 Dec 2017)
New Revision: 58790
Modified:
data/CVE/list
Log:
Adjust source package name for CVE-2017-13135
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 12:29:15 UTC (rev 58789)
+++ data/CVE/list 2017-12-21 12:31:26 UTC (rev 58790)
@@ -20495,7 +20495,8 @@
CVE-2017-13136 (The image_alloc function in bpgenc.c in libbpg 0.9.7 has an
integer ...)
NOT-FOR-US: libbpg
CVE-2017-13135 (A NULL Pointer Dereference exists in VideoLAN x265, as used in
libbpg ...)
- - vlc
+ - x265
+ NOTE: https://github.com/ebel34/bpg-web-encoder/issues/1
TODO: check
CVE-2017-13134 (In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based
buffer ...)
{DSA-4040-1 DSA-4032-1 DLA-1170-1 DLA-1081-1}
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58789 - data/CVE
Author: geissert Date: 2017-12-21 12:29:15 + (Thu, 21 Dec 2017) New Revision: 58789 Modified: data/CVE/list Log: more NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 12:27:39 UTC (rev 58788) +++ data/CVE/list 2017-12-21 12:29:15 UTC (rev 58789) @@ -24413,7 +24413,7 @@ CVE-2017-11928 RESERVED CVE-2017-11927 (Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2017-11926 RESERVED CVE-2017-11925 @@ -24441,7 +24441,7 @@ CVE-2017-11914 (ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, ...) NOT-FOR-US: Microsoft ChakraCore CVE-2017-11913 (Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2017-11912 (ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows ...) NOT-FOR-US: Microsoft ChakraCore CVE-2017-11911 (ChakraCore and Windows 10 1511, 1607, 1703, 1709, and Windows Server ...) @@ -24453,23 +24453,23 @@ CVE-2017-11908 (ChakraCore and Windows 10 1709 allows an attacker to execute arbitrary ...) NOT-FOR-US: Microsoft ChakraCore CVE-2017-11907 (Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2017-11906 (Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2017-11905 (ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, ...) NOT-FOR-US: Microsoft ChakraCore CVE-2017-11904 RESERVED CVE-2017-11903 (Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2017-11902 RESERVED CVE-2017-11901 (Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2017-11900 RESERVED CVE-2017-11899 (Device Guard in Windows 10 1511, 1607, 1703 and 1709, Windows Server ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2017-11898 RESERVED CVE-2017-11897 @@ -24487,17 +24487,17 @@ CVE-2017-11891 RESERVED CVE-2017-11890 (Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2017-11889 (ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, ...) NOT-FOR-US: Microsoft ChakraCore CVE-2017-11888 (Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, ...) - TODO: check + NOT-FOR-US: Microsoft Edge CVE-2017-11887 (Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2017-11886 (Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2017-11885 (Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2017-11884 (Microsoft Excel 2016 Click-to-Run (C2R) allows an attacker to run ...) NOT-FOR-US: Microsoft CVE-2017-11883 (.NET Core 1.0, 1.1, and 2.0 allow an unauthenticated attacker to ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58788 - data/CVE
Author: carnil Date: 2017-12-21 12:27:39 + (Thu, 21 Dec 2017) New Revision: 58788 Modified: data/CVE/list Log: Update CVe-2017-17831/git-lfs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 12:25:34 UTC (rev 58787) +++ data/CVE/list 2017-12-21 12:27:39 UTC (rev 58788) @@ -1,6 +1,7 @@ CVE-2017-17831 (GitHub Git LFS before 2.1.1 allows remote attackers to execute ...) - - git-lfs - TODO: check + - git-lfs (Fixed before initial upload to Debian) + NOTE: https://github.com/git-lfs/git-lfs/pull/2242 + NOTE: https://github.com/git-lfs/git-lfs/releases/tag/v2.1.1 CVE-2017-17830 (Bus Booking Script has CSRF via admin/new_master.php. ...) NOT-FOR-US: Bus Booking Script CVE-2017-17829 (Bus Booking Script has SQL Injection via the admin/view_seatseller.php ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58786 - data/CVE
Author: carnil Date: 2017-12-21 12:24:47 + (Thu, 21 Dec 2017) New Revision: 58786 Modified: data/CVE/list Log: Add references for nasm issues Modified: data/CVE/list === --- data/CVE/list 2017-12-21 12:20:34 UTC (rev 58785) +++ data/CVE/list 2017-12-21 12:24:47 UTC (rev 58786) @@ -23,36 +23,51 @@ TODO: check CVE-2017-17820 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) - nasm + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392433 TODO: check CVE-2017-17819 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) - nasm + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392435 + NOTE: http://repo.or.cz/nasm.git/commit/7524cfd91492e6e3719b959498be584a9ced13af TODO: check CVE-2017-17818 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...) - nasm + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392428 TODO: check CVE-2017-17817 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) - nasm + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392427 TODO: check CVE-2017-17816 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) - nasm + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392426 TODO: check CVE-2017-17815 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) - nasm + NOTE: http://repo.or.cz/nasm.git/commit/c9244eaadd05b27637cde06021bac3fa1d920aa3 + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392436 TODO: check CVE-2017-17814 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) - nasm + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392430 TODO: check CVE-2017-17813 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in the ...) - nasm + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392429 TODO: check CVE-2017-17812 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...) - nasm + NOTE: http://repo.or.cz/nasm.git/commit/9b7ee09abfd426b99aa1ea81d19a3b2818eeabf9 + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392424 TODO: check CVE-2017-17811 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...) - nasm + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392432 TODO: check CVE-2017-17810 (In Netwide Assembler (NASM) 2.14rc0, there is a "SEGV on unknown ...) - nasm + NOTE: http://repo.or.cz/nasm.git/commit/59ce1c67b16967c652765e62aa130b7e43f21dd4 + NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392431 TODO: check CVE-2017-17809 (In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the vyprvpnservice ...) NOT-FOR-US: Golden Frog VyprVPN ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58787 - bin data/CVE
Author: geissert
Date: 2017-12-21 12:25:34 + (Thu, 21 Dec 2017)
New Revision: 58787
Modified:
bin/check-new-issues
data/CVE/list
Log:
more auto NFUs
Modified: bin/check-new-issues
===
--- bin/check-new-issues2017-12-21 12:24:47 UTC (rev 58786)
+++ bin/check-new-issues2017-12-21 12:25:34 UTC (rev 58787)
@@ -517,7 +517,7 @@
my ($name, $type) = ($1, $2);
return "$name $type for WordPress";
}
- if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|Trend\s+Micro|(?:SAP|IBM|EMC).+?(?=tool|is|[\d(,]))/)
{
+ if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|Trend\s+Micro|(?:SAP|IBM|EMC|NetApp|Micro\sFocus).+?(?=tool|is|version|[\d(,]))/)
{
my $name = $1;
return $name;
}
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 12:24:47 UTC (rev 58786)
+++ data/CVE/list 2017-12-21 12:25:34 UTC (rev 58787)
@@ -16690,7 +16690,7 @@
CVE-2017-14584
RESERVED
CVE-2017-14583 (NetApp Clustered Data ONTAP versions 9.x prior to 9.1P10 and
9.2P2 are ...)
- TODO: check
+ NOT-FOR-US: NetApp Clustered Data ONTAP
CVE-2017-14582 (The Zoho Site24x7 Mobile Network Poller application before
1.1.5 for ...)
NOT-FOR-US: Zoho
CVE-2017- [pcb code injection by malicious layout file]
@@ -17309,9 +17309,9 @@
CVE-2017-14363
RESERVED
CVE-2017-14362 (Cross-Site Request Forgery vulnerability in Micro Focus
Project and ...)
- TODO: check
+ NOT-FOR-US: Micro Focus Project and Portfolio Management Center
CVE-2017-14361 (Man-In-The-Middle vulnerability in Micro Focus Project and
Portfolio ...)
- TODO: check
+ NOT-FOR-US: Micro Focus Project and Portfolio Management Center
CVE-2017-14360 (A potential security vulnerability has been identified in HPE
Content ...)
NOT-FOR-US: HPE
CVE-2017-14359 (A potential security vulnerability has been identified in HPE
...)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58785 - bin data/CVE
Author: geissert
Date: 2017-12-21 12:20:34 + (Thu, 21 Dec 2017)
New Revision: 58785
Modified:
bin/check-new-issues
data/CVE/list
Log:
Trend Micro auto NFU
Modified: bin/check-new-issues
===
--- bin/check-new-issues2017-12-21 12:19:15 UTC (rev 58784)
+++ bin/check-new-issues2017-12-21 12:20:34 UTC (rev 58785)
@@ -517,7 +517,7 @@
my ($name, $type) = ($1, $2);
return "$name $type for WordPress";
}
- if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|(?:SAP|IBM|EMC).+?(?=tool|is|[\d(,]))/)
{
+ if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|Trend\s+Micro|(?:SAP|IBM|EMC).+?(?=tool|is|[\d(,]))/)
{
my $name = $1;
return $name;
}
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 12:19:15 UTC (rev 58784)
+++ data/CVE/list 2017-12-21 12:20:34 UTC (rev 58785)
@@ -26030,7 +26030,7 @@
CVE-2017-11398
RESERVED
CVE-2017-11397 (A service DLL preloading vulnerability in Trend Micro
Encryption for ...)
- TODO: check
+ NOT-FOR-US: Trend Micro
CVE-2017-11396 (Vulnerability issues with the web service inspection of input
...)
NOT-FOR-US: Trend Micro Web Security Virtual Appliance
CVE-2017-11395 (Command injection vulnerability in Trend Micro Smart
Protection Server ...)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58784 - bin data/CVE
Author: geissert
Date: 2017-12-21 12:19:15 + (Thu, 21 Dec 2017)
New Revision: 58784
Modified:
bin/check-new-issues
data/CVE/list
Log:
one more IBM NFU
Modified: bin/check-new-issues
===
--- bin/check-new-issues2017-12-21 12:15:02 UTC (rev 58783)
+++ bin/check-new-issues2017-12-21 12:19:15 UTC (rev 58784)
@@ -517,7 +517,7 @@
my ($name, $type) = ($1, $2);
return "$name $type for WordPress";
}
- if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|(?:SAP|IBM|EMC).+?(?=tool|[\d(,]))/)
{
+ if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|(?:SAP|IBM|EMC).+?(?=tool|is|[\d(,]))/)
{
my $name = $1;
return $name;
}
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 12:15:02 UTC (rev 58783)
+++ data/CVE/list 2017-12-21 12:19:15 UTC (rev 58784)
@@ -55809,7 +55809,7 @@
CVE-2017-1422 (IBM MaaS360 DTM all versions up to 3.81 does not perform proper
...)
NOT-FOR-US: IBM
CVE-2017-1421 (IBM iNotes is vulnerable to cross-site scripting. This
vulnerability ...)
- TODO: check
+ NOT-FOR-US: IBM iNotes
CVE-2017-1420
RESERVED
CVE-2017-1419
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58783 - bin data/CVE
Author: geissert
Date: 2017-12-21 12:15:02 + (Thu, 21 Dec 2017)
New Revision: 58783
Modified:
bin/check-new-issues
data/CVE/list
Log:
EMC auto NFU issues and rule
Modified: bin/check-new-issues
===
--- bin/check-new-issues2017-12-21 12:13:22 UTC (rev 58782)
+++ bin/check-new-issues2017-12-21 12:15:02 UTC (rev 58783)
@@ -517,7 +517,7 @@
my ($name, $type) = ($1, $2);
return "$name $type for WordPress";
}
- if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|(?:SAP|IBM).+?(?=tool|[\d(,]))/)
{
+ if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|(?:SAP|IBM|EMC).+?(?=tool|[\d(,]))/)
{
my $name = $1;
return $name;
}
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 12:13:22 UTC (rev 58782)
+++ data/CVE/list 2017-12-21 12:15:02 UTC (rev 58783)
@@ -17244,11 +17244,11 @@
CVE-2017-14388 (Cloud Foundry Foundation GrootFS release 0.3.x versions prior
to 0.30.0 ...)
NOT-FOR-US: Cloud Foundry Foundation GrootFS
CVE-2017-14387 (The NFS service in EMC Isilon OneFS 8.1.0.0, 8.0.1.0 -
8.0.1.1, and ...)
- TODO: check
+ NOT-FOR-US: EMC Isilon OneFS
CVE-2017-14386 (The web user interface of Dell 2335dn and 2355dn Multifunction
Laser ...)
TODO: check
CVE-2017-14385 (An issue was discovered in EMC Data Domain DD OS 5.7 family,
versions ...)
- TODO: check
+ NOT-FOR-US: EMC Data Domain DD OS
CVE-2017-14384
RESERVED
CVE-2017-14383
@@ -17258,7 +17258,7 @@
CVE-2017-14381
RESERVED
CVE-2017-14380 (In EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, 8.0.0.0 -
8.0.0.4, ...)
- TODO: check
+ NOT-FOR-US: EMC Isilon OneFS
CVE-2017-14379 (EMC RSA Authentication Manager before 8.2 SP1 P6 has a
cross-site ...)
NOT-FOR-US: EMC RSA
CVE-2017-14378 (EMC RSA Authentication Agent API 8.5 for C and RSA
Authentication Agent ...)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58782 - data/CVE
Author: geissert
Date: 2017-12-21 12:13:22 + (Thu, 21 Dec 2017)
New Revision: 58782
Modified:
data/CVE/list
Log:
vlc
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 12:10:28 UTC (rev 58781)
+++ data/CVE/list 2017-12-21 12:13:22 UTC (rev 58782)
@@ -20479,6 +20479,7 @@
CVE-2017-13136 (The image_alloc function in bpgenc.c in libbpg 0.9.7 has an
integer ...)
NOT-FOR-US: libbpg
CVE-2017-13135 (A NULL Pointer Dereference exists in VideoLAN x265, as used in
libbpg ...)
+ - vlc
TODO: check
CVE-2017-13134 (In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based
buffer ...)
{DSA-4040-1 DSA-4032-1 DLA-1170-1 DLA-1081-1}
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58781 - data/CVE
Author: carnil
Date: 2017-12-21 12:10:28 + (Thu, 21 Dec 2017)
New Revision: 58781
Modified:
data/CVE/list
Log:
CVE-2017-16855 was rejected
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 12:09:32 UTC (rev 58780)
+++ data/CVE/list 2017-12-21 12:10:28 UTC (rev 58781)
@@ -9975,7 +9975,6 @@
NOT-FOR-US: Atlassian Confluence
CVE-2017-16855
REJECTED
- - ipsilon (bug #826838)
CVE-2017-16854 (In Open Ticket Request System (OTRS) through 3.3.20, 4 through
4.0.26, ...)
{DSA-4066-1 DLA-1212-1}
- otrs2 6.0.2-1
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58780 - bin
Author: geissert
Date: 2017-12-21 12:09:32 + (Thu, 21 Dec 2017)
New Revision: 58780
Modified:
bin/check-new-issues
Log:
more auto NFUs rules
Modified: bin/check-new-issues
===
--- bin/check-new-issues2017-12-21 12:08:57 UTC (rev 58779)
+++ bin/check-new-issues2017-12-21 12:09:32 UTC (rev 58780)
@@ -517,7 +517,7 @@
my ($name, $type) = ($1, $2);
return "$name $type for WordPress";
}
- if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader)/) {
+ if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader|Cambium\s+Networks\s+.+?\s+firmware|(?:SAP|IBM).+?(?=tool|[\d(,]))/)
{
my $name = $1;
return $name;
}
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58779 - data/CVE
Author: geissert Date: 2017-12-21 12:08:57 + (Thu, 21 Dec 2017) New Revision: 58779 Modified: data/CVE/list Log: auto NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 12:01:22 UTC (rev 58778) +++ data/CVE/list 2017-12-21 12:08:57 UTC (rev 58779) @@ -10431,15 +10431,15 @@ CVE-2017-16683 (Denial of Service (DOS) in SAP Business Objects Platform, Enterprise ...) NOT-FOR-US: SAP Business Objects Platform CVE-2017-16682 (SAP NetWeaver Internet Transaction Server (ITS), SAP Basis from 7.00 ...) - TODO: check + NOT-FOR-US: SAP NetWeaver Internet Transaction Server CVE-2017-16681 (Cross-Site Scripting (XSS) vulnerability in SAP Business Intelligence ...) - TODO: check + NOT-FOR-US: SAP Business Intelligence Promotion Management Application CVE-2017-16680 (Two potential audit log injections in SAP HANA extended application ...) - TODO: check + NOT-FOR-US: SAP HANA extended application services CVE-2017-16679 (URL redirection vulnerability in SAP's Startup Service, SAP KERNEL 32 ...) - TODO: check + NOT-FOR-US: SAP's Startup Service CVE-2017-16678 (Server Side Request Forgery (SSRF) vulnerability in SAP NetWeaver ...) - TODO: check + NOT-FOR-US: SAP NetWeaver Knowledge Management Configuration Service CVE-2017-16677 RESERVED CVE-2017-16676 @@ -55131,13 +55131,13 @@ CVE-2017-1761 RESERVED CVE-2017-1760 (IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow a local user to crash ...) - TODO: check + NOT-FOR-US: IBM WebSphere MQ CVE-2017-1759 RESERVED CVE-2017-1758 RESERVED CVE-2017-1757 (IBM Security Guardium 10.0 is vulnerable to SQL injection. A remote ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1756 RESERVED CVE-2017-1755 @@ -55149,7 +55149,7 @@ CVE-2017-1752 RESERVED CVE-2017-1751 (IBM Robotic Process Automation with Automation Anywhere 10.0.0 is ...) - TODO: check + NOT-FOR-US: IBM Robotic Process Automation with Automation Anywhere CVE-2017-1750 RESERVED CVE-2017-1749 @@ -55159,7 +55159,7 @@ CVE-2017-1747 RESERVED CVE-2017-1746 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is ...) - TODO: check + NOT-FOR-US: IBM Jazz for Service Management CVE-2017-1745 RESERVED CVE-2017-1744 @@ -55219,7 +55219,7 @@ CVE-2017-1717 RESERVED CVE-2017-1716 (IBM Tivoli Workload Scheduler 8.6.0, 9.1.0, and 9.2.0 could disclose ...) - TODO: check + NOT-FOR-US: IBM Tivoli Workload Scheduler CVE-2017-1715 RESERVED CVE-2017-1714 @@ -55259,11 +55259,11 @@ CVE-2017-1697 RESERVED CVE-2017-1696 (IBM QRadar 7.2 and 7.3 could allow a remote authenticated attacker to ...) - TODO: check + NOT-FOR-US: IBM QRadar CVE-2017-1695 RESERVED CVE-2017-1694 (IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain ...) - TODO: check + NOT-FOR-US: IBM Integration Bus CVE-2017-1693 RESERVED CVE-2017-1692 @@ -55285,7 +55285,7 @@ CVE-2017-1684 RESERVED CVE-2017-1683 (IBM Connections Engagement Center 6.0 is vulnerable to cross-site ...) - TODO: check + NOT-FOR-US: IBM Connections Engagement Center CVE-2017-1682 RESERVED CVE-2017-1681 @@ -55381,15 +55381,15 @@ CVE-2017-1636 RESERVED CVE-2017-1635 (IBM Tivoli Monitoring V6 6.2.2.x could allow a remote attacker to ...) - TODO: check + NOT-FOR-US: IBM Tivoli Monitoring CVE-2017-1634 RESERVED CVE-2017-1633 RESERVED CVE-2017-1632 (IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. ...) - TODO: check + NOT-FOR-US: IBM Sterling File Gateway CVE-2017-1631 (IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is ...) - TODO: check + NOT-FOR-US: IBM Jazz for Service Management CVE-2017-1630 RESERVED CVE-2017-1629 @@ -55425,7 +55425,7 @@ CVE-2017-1614 RESERVED CVE-2017-1613 (IBM Connections 6.0 could allow an unauthenticated remote attacker to ...) - TODO: check + NOT-FOR-US: IBM Connections CVE-2017-1612 RESERVED CVE-2017-1611 @@ -55439,7 +55439,7 @@ CVE-2017-1607 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to cross-site ...) NOT-FOR-US: IBM CVE-2017-1606 (IBM Financial Transaction Manager (FTM) for Multi-Platform (MP) ...) - TODO: check + NOT-FOR-US: IBM Financial Transaction Manager CVE-2017-1605 RESERVED CVE-2017-1604 @@ -55451,17 +55451,17 @@ CVE-2017-1601 RESERVED CVE-2017-1600 (IBM Security Guardium 10.0 Database Activity Monitor is vulnerable to ...) - TODO: check + NOT-FOR-US: IBM Security Guardium CVE-2017-1599 RESERVED CVE-2017-1598 (IBM Security Guardium 10.0 Database Activity Monitor uses weaker than ...)
[Secure-testing-commits] r58778 - bin
Author: geissert
Date: 2017-12-21 12:01:22 + (Thu, 21 Dec 2017)
New Revision: 58778
Modified:
bin/check-new-issues
Log:
check-new-issues: add -b, to auto process entries
Modified: bin/check-new-issues
===
--- bin/check-new-issues2017-12-21 12:00:07 UTC (rev 58777)
+++ bin/check-new-issues2017-12-21 12:01:22 UTC (rev 58778)
@@ -7,7 +7,7 @@
use Term::ReadLine;
my %opts;
-getopts('ln:fhi:t:Tca:e:uUsD', \%opts);
+getopts('ln:fhi:t:Tca:e:uUsDb', \%opts);
sub print_commands {
print <<'EOF';
@@ -58,6 +58,7 @@
-s: skip automatic apt-cache/apt-file searches, suggest the
command to run instead
-D: skip the download operations
+-b: auto process entries (e.g. NFUs)
EOF
@@ -221,6 +222,21 @@
exit 0;
}
+if ($opts{b}) {
+ # auto process
+ foreach my $todo (sort {$b <=> $a} @todos) {
+ if ($data->{$todo}->{CVE}) {
+ my $nfu_entry = auto_nfu($todo);
+ if ($nfu_entry) {
+ ${$data->{$todo}->{entry}} =~
+ s/^\s*TODO: check/\tNOT-FOR-US:
$nfu_entry/m ;
+ next;
+ }
+ }
+ }
+ save_datafile();
+ exit 0;
+}
my $term = new Term::ReadLine 'check-new-issues';
if ($term->ReadLine() eq 'Term::ReadLine::Stub') {
@@ -274,10 +290,13 @@
foreach my $todo (sort {$b <=> $a} @todos) {
last unless present_issue($todo);
}
+save_datafile();
-open(my $fh, ">", $datafile);
-print $fh @{$entries};
-close($fh);
+sub save_datafile {
+ open(my $fh, ">", $datafile);
+ print $fh @{$entries};
+ close($fh);
+}
sub present_issue {
my $name = shift;
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58777 - data/CVE
Author: geissert Date: 2017-12-21 12:00:07 + (Thu, 21 Dec 2017) New Revision: 58777 Modified: data/CVE/list Log: more NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 11:53:24 UTC (rev 58776) +++ data/CVE/list 2017-12-21 12:00:07 UTC (rev 58777) @@ -10241,7 +10241,7 @@ CVE-2017-16777 (If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) ...) NOT-FOR-US: HashiCorp Vagrant VMware Fusion plugin CVE-2017-16776 (Security researchers discovered an authentication bypass vulnerability ...) - TODO: check + NOT-FOR-US: Conserus Workflow Intelligence CVE-2017-16775 RESERVED CVE-2017-16774 @@ -10413,23 +10413,23 @@ CVE-2017-16692 RESERVED CVE-2017-16691 (SAP Note Assistant tool (SAP BASIS from 7.00 to 7.02, from 7.10 to ...) - TODO: check + NOT-FOR-US: SAP Note Assistant CVE-2017-16690 (A malicious DLL preload attack possible on NwSapSetup and Installation ...) - TODO: check + NOT-FOR-US: SAP Plant Connectivity CVE-2017-16689 (A Trusted RFC connection in SAP KERNEL 32NUC, SAP KERNEL 32Unicode, ...) - TODO: check + NOT-FOR-US: SAP KERNEL CVE-2017-16688 RESERVED CVE-2017-16687 (The user self-service tools of SAP HANA extended application services, ...) - TODO: check + NOT-FOR-US: SAP HANA CVE-2017-16686 RESERVED CVE-2017-16685 (Cross-Site scripting (XSS) in SAP Business Warehouse Universal Data ...) - TODO: check + NOT-FOR-US: SAP Business Warehouse Universal Data Integration CVE-2017-16684 (SAP Business Intelligence Promotion Management Application, Enterprise ...) - TODO: check + NOT-FOR-US: SAP Business Intelligence Promotion Management Application CVE-2017-16683 (Denial of Service (DOS) in SAP Business Objects Platform, Enterprise ...) - TODO: check + NOT-FOR-US: SAP Business Objects Platform CVE-2017-16682 (SAP NetWeaver Internet Transaction Server (ITS), SAP Basis from 7.00 ...) TODO: check CVE-2017-16681 (Cross-Site Scripting (XSS) vulnerability in SAP Business Intelligence ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58776 - data/CVE
Author: jmm Date: 2017-12-21 11:53:24 + (Thu, 21 Dec 2017) New Revision: 58776 Modified: data/CVE/list Log: piwigo removed Modified: data/CVE/list === --- data/CVE/list 2017-12-21 11:49:15 UTC (rev 58775) +++ data/CVE/list 2017-12-21 11:53:24 UTC (rev 58776) @@ -8,22 +8,17 @@ CVE-2017-17828 (Bus Booking Script has XSS via the results.php datepicker parameter or ...) NOT-FOR-US: Bus Booking Script CVE-2017-17827 (Piwigo 2.9.2 is vulnerable to Cross-Site Request Forgery via ...) - TODO: check + - piwigo CVE-2017-17826 (The Configuration component of Piwigo 2.9.2 is vulnerable to Persistent ...) - - piwigo - TODO: check + - piwigo CVE-2017-17825 (The Batch Manager component of Piwigo 2.9.2 is vulnerable to Persistent ...) - - piwigo - TODO: check + - piwigo CVE-2017-17824 (The Batch Manager component of Piwigo 2.9.2 is vulnerable to SQL ...) - - piwigo - TODO: check + - piwigo CVE-2017-17823 (The Configuration component of Piwigo 2.9.2 is vulnerable to SQL ...) - - piwigo - TODO: check + - piwigo CVE-2017-17822 (The List Users API of Piwigo 2.9.2 is vulnerable to SQL Injection via ...) - - piwigo - TODO: check + - piwigo CVE-2017-17821 (WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology ...) TODO: check CVE-2017-17820 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58775 - data/CVE
Author: geissert Date: 2017-12-21 11:49:15 + (Thu, 21 Dec 2017) New Revision: 58775 Modified: data/CVE/list Log: auto NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 11:40:21 UTC (rev 58774) +++ data/CVE/list 2017-12-21 11:49:15 UTC (rev 58775) @@ -45590,25 +45590,25 @@ CVE-2017-5264 (Versions of Nexpose prior to 6.4.66 fail to adequately validate the ...) NOT-FOR-US: Nexpose CVE-2017-5263 (Versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware lack ...) - TODO: check + NOT-FOR-US: Cambium Networks cnPilot firmware CVE-2017-5262 (In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, ...) - TODO: check + NOT-FOR-US: Cambium Networks cnPilot firmware CVE-2017-5261 (In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, ...) - TODO: check + NOT-FOR-US: Cambium Networks cnPilot firmware CVE-2017-5260 (In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, ...) - TODO: check + NOT-FOR-US: Cambium Networks cnPilot firmware CVE-2017-5259 (In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, ...) - TODO: check + NOT-FOR-US: Cambium Networks cnPilot firmware CVE-2017-5258 (In version 3.5 and prior of Cambium Networks ePMP firmware, an ...) - TODO: check + NOT-FOR-US: Cambium Networks ePMP firmware CVE-2017-5257 (In version 3.5 and prior of Cambium Networks ePMP firmware, an ...) - TODO: check + NOT-FOR-US: Cambium Networks ePMP firmware CVE-2017-5256 (In version 3.5 and prior of Cambium Networks ePMP firmware, all ...) - TODO: check + NOT-FOR-US: Cambium Networks ePMP firmware CVE-2017-5255 (In version 3.5 and prior of Cambium Networks ePMP firmware, a lack of ...) - TODO: check + NOT-FOR-US: Cambium Networks ePMP firmware CVE-2017-5254 (In version 3.5 and prior of Cambium Networks ePMP firmware, the ...) - TODO: check + NOT-FOR-US: Cambium Networks ePMP firmware CVE-2017-5253 RESERVED CVE-2017-5252 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58774 - data/CVE
Author: geissert Date: 2017-12-21 11:40:21 + (Thu, 21 Dec 2017) New Revision: 58774 Modified: data/CVE/list Log: nasm, piwigo, git-lfs, and some NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 10:02:34 UTC (rev 58773) +++ data/CVE/list 2017-12-21 11:40:21 UTC (rev 58774) @@ -1,49 +1,66 @@ CVE-2017-17831 (GitHub Git LFS before 2.1.1 allows remote attackers to execute ...) + - git-lfs TODO: check CVE-2017-17830 (Bus Booking Script has CSRF via admin/new_master.php. ...) - TODO: check + NOT-FOR-US: Bus Booking Script CVE-2017-17829 (Bus Booking Script has SQL Injection via the admin/view_seatseller.php ...) - TODO: check + NOT-FOR-US: Bus Booking Script CVE-2017-17828 (Bus Booking Script has XSS via the results.php datepicker parameter or ...) - TODO: check + NOT-FOR-US: Bus Booking Script CVE-2017-17827 (Piwigo 2.9.2 is vulnerable to Cross-Site Request Forgery via ...) TODO: check CVE-2017-17826 (The Configuration component of Piwigo 2.9.2 is vulnerable to Persistent ...) + - piwigo TODO: check CVE-2017-17825 (The Batch Manager component of Piwigo 2.9.2 is vulnerable to Persistent ...) + - piwigo TODO: check CVE-2017-17824 (The Batch Manager component of Piwigo 2.9.2 is vulnerable to SQL ...) + - piwigo TODO: check CVE-2017-17823 (The Configuration component of Piwigo 2.9.2 is vulnerable to SQL ...) + - piwigo TODO: check CVE-2017-17822 (The List Users API of Piwigo 2.9.2 is vulnerable to SQL Injection via ...) + - piwigo TODO: check CVE-2017-17821 (WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology ...) TODO: check CVE-2017-17820 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) + - nasm TODO: check CVE-2017-17819 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) + - nasm TODO: check CVE-2017-17818 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...) + - nasm TODO: check CVE-2017-17817 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) + - nasm TODO: check CVE-2017-17816 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) + - nasm TODO: check CVE-2017-17815 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...) + - nasm TODO: check CVE-2017-17814 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...) + - nasm TODO: check CVE-2017-17813 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in the ...) + - nasm TODO: check CVE-2017-17812 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...) + - nasm TODO: check CVE-2017-17811 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...) + - nasm TODO: check CVE-2017-17810 (In Netwide Assembler (NASM) 2.14rc0, there is a "SEGV on unknown ...) + - nasm TODO: check CVE-2017-17809 (In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the vyprvpnservice ...) - TODO: check + NOT-FOR-US: Golden Frog VyprVPN CVE-2017-17808 RESERVED CVE-2018-3599 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58772 - in data: . CVE
Author: hertzog
Date: 2017-12-21 10:02:22 + (Thu, 21 Dec 2017)
New Revision: 58772
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Reclassify mp3gain CVE since I marked the package as unsupported
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 09:51:33 UTC (rev 58771)
+++ data/CVE/list 2017-12-21 10:02:22 UTC (rev 58772)
@@ -17164,24 +17164,31 @@
NOT-FOR-US: D-Link
CVE-2017-14412 (An invalid memory write was discovered in copy_mp in
interface.c in ...)
- mp3gain
+ [wheezy] - mp3gain
NOTE:
https://blogs.gentoo.org/ago/2017/09/08/mp3gain-invalid-memory-write-in-copy_mp-mpglibdblinterface-c/
CVE-2017-14411 (A stack-based buffer overflow was discovered in copy_mp in
interface.c ...)
- mp3gain
+ [wheezy] - mp3gain
NOTE:
https://blogs.gentoo.org/ago/2017/09/08/mp3gain-stack-based-buffer-overflow-in-copy_mp-mpglibdblinterface-c/
CVE-2017-14410 (A buffer over-read was discovered in III_i_stereo in layer3.c
in ...)
- mp3gain
+ [wheezy] - mp3gain
NOTE:
https://blogs.gentoo.org/ago/2017/09/08/mp3gain-global-buffer-overflow-in-iii_i_stereo-mpglibdbllayer3-c/
CVE-2017-14409 (A buffer overflow was discovered in III_dequantize_sample in
layer3.c ...)
- mp3gain
+ [wheezy] - mp3gain
NOTE:
https://blogs.gentoo.org/ago/2017/09/08/mp3gain-global-buffer-overflow-in-iii_dequantize_sample-mpglibdbllayer3-c/
CVE-2017-14408 (A stack-based buffer over-read was discovered in dct36 in
layer3.c in ...)
- mp3gain
+ [wheezy] - mp3gain
NOTE:
https://blogs.gentoo.org/ago/2017/09/08/mp3gain-stack-based-buffer-overflow-in-dct36-mpglibdbllayer3-c/
CVE-2017-14407 (A stack-based buffer over-read was discovered in filterYule in
...)
- mp3gain
+ [wheezy] - mp3gain
NOTE:
https://blogs.gentoo.org/ago/2017/09/08/mp3gain-stack-based-buffer-overflow-in-filteryule-gain_analysis-c/
CVE-2017-14406 (A NULL pointer dereference was discovered in sync_buffer in
interface.c ...)
- mp3gain
+ [wheezy] - mp3gain
NOTE:
https://blogs.gentoo.org/ago/2017/09/08/mp3gain-null-pointer-dereference-in-sync_buffer-mpglibdblinterface-c/
CVE-2017-14405 (The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows
remote ...)
NOT-FOR-US: EyesOfNetwork (EON)
@@ -21198,9 +21205,11 @@
RESERVED
CVE-2017-12912 (The "mpglibDBL/layer3.c" file in MP3Gain 1.5.2.r2
has a vulnerability ...)
- mp3gain
+ [wheezy] - mp3gain
NOTE: https://drive.google.com/open?id=0B9DojFnTUSNGeS1hZlJkeGVkYlU
CVE-2017-12911 (The "apetag.c" file in MP3Gain 1.5.2.r2 has a
vulnerability which ...)
- mp3gain
+ [wheezy] - mp3gain
NOTE: https://drive.google.com/open?id=0B9DojFnTUSNGeS1hZlJkeGVkYlU
CVE-2017-12910 (SQL injection vulnerability in massmail.php in NexusPHP 1.5
allows ...)
NOT-FOR-US: NexusPHP
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-12-21 09:51:33 UTC (rev 58771)
+++ data/dla-needed.txt 2017-12-21 10:02:22 UTC (rev 58772)
@@ -59,16 +59,7 @@
NOTE: 20171120: wip, currently working on it with upstream, might take a
while
NOTE: Some issues currently in upstream's bug tracker are missing a CVE
number, so number of issues might increase in the next weeks
--
-mp3gain
- NOTE: Successfully reproduced CVE-2017-144{09, 07} but couldn't reproduce
CVE-2017-144{06, 08, 10, 11, 12} (valgrind in Wheezy, gcc+asan in Jessie).
- NOTE: Bundles a modified, old version of mpg123 under mpglibDBL/, so issues
might be already discovered/fixed in mpg123 or lame:
- NOTE: For CVE-2017-14409,
https://security-tracker.debian.org/tracker/CVE-2017-9872 might be of interest,
files are very similar
- NOTE: adapting/writing patches seems to be very time consuming, mp3gain is
dead upstream so this might be a candidate for no-dsa -- Hugo Lefeuvre
---
ohcount
- NOTE: No upstream bug tracker found (except on old copies of the code on
- NOTE: github). Pinged sourceforge project owner with sourceforge's
- NOTE: integrated messaging feature. -- Raphaël Hertzog
--
python2.6
NOTE: webbrowser.py as binary is hard to exploit, but when using it as an
import then it may be possible to trigger something. Should be fixed to be on
the safe side even though it is not an urgent problem.
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58773 - in data: . CVE
Author: hertzog Date: 2017-12-21 10:02:34 + (Thu, 21 Dec 2017) New Revision: 58773 Modified: data/CVE/list data/dla-needed.txt Log: Drop global from dla-needed.txt, issue is unimportant Still filed a bug because the underlying code should really be improved even if it's generally not used on malicious URLs. Modified: data/CVE/list === --- data/CVE/list 2017-12-21 10:02:22 UTC (rev 58772) +++ data/CVE/list 2017-12-21 10:02:34 UTC (rev 58773) @@ -5227,7 +5227,7 @@ NOTE: https://sources.debian.org/src/kiwi/1.9.22-4/examples/framework/news/news3.py/?hl=88#L88 NOTE: Only in examples code, negligible impact CVE-2017-17531 (gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before ...) - - global (unimportant) + - global (unimportant; bug #884912) NOTE: https://sources.debian.org/src/global/4.8.6-2/gozilla/gozilla.c/#L269 CVE-2017-17530 (common/help.c in Geomview 1.9.5 does not validate strings before ...) - geomview (unimportant) Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-12-21 10:02:22 UTC (rev 58772) +++ data/dla-needed.txt 2017-12-21 10:02:34 UTC (rev 58773) @@ -23,8 +23,6 @@ -- gimp (Emilio Pozuelo) -- -global --- graphicsmagick -- icu (Roberto C. Sánchez) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58771 - data/CVE
Author: apoikos Date: 2017-12-21 09:51:33 + (Thu, 21 Dec 2017) New Revision: 58771 Modified: data/CVE/list Log: Add h2o CVE info Modified: data/CVE/list === --- data/CVE/list 2017-12-21 09:10:13 UTC (rev 58770) +++ data/CVE/list 2017-12-21 09:51:33 UTC (rev 58771) @@ -27588,8 +27588,10 @@ RESERVED CVE-2017-10909 RESERVED -CVE-2017-10908 - RESERVED +CVE-2017-10908 (h2o 2.2.x: crash when handling malformed HTTP/2 request) + - h2o 2.2.4+dfsg-1 (medium) + NOTE: fixed in 2.2.4 + NOTE: https://github.com/h2o/h2o/issues/1544 CVE-2017-10907 RESERVED CVE-2017-10906 (Escape sequence injection vulnerability in Fluentd versions 0.12.29 ...) @@ -27660,16 +27662,22 @@ NOT-FOR-US: PWR-Q200 CVE-2017-10873 (OpenAM (Open Source Edition) allows an attacker to bypass ...) NOT-FOR-US: OpenAM -CVE-2017-10872 - RESERVED +CVE-2017-10872 (h2o: 2.2.x: crash when logging TLS 1.3 properties in h2o) + - h2o 2.2.4+dfsg-1 (medium) + NOTE: Fixed in 2.2.4 + NOTE: https://github.com/h2o/h2o/issues/1543 CVE-2017-10871 (Buffer overflow in NTT DOCOMO Wi-Fi STATION L-02F Software version ...) NOT-FOR-US: NTT DOCOMO Wi-Fi STATION L-02F Software CVE-2017-10870 (Memory corruption vulnerability in Rakuraku Hagaki (Rakuraku Hagaki ...) NOT-FOR-US: Rakuraku Hagaki -CVE-2017-10869 - RESERVED -CVE-2017-10868 - RESERVED +CVE-2017-10869 (h2o 2.2.x: stack overflow when sending huge request body to upstream) + - h2o 2.2.3+dfsg-1 (medium) + NOTE: Fixed in 2.2.3 + NOTE: https://github.com/h2o/h2o/issues/1460 +CVE-2017-10868 (h2o 2.2.x: crash when receiving HTTP/1 request with invalid framing) + - h2o 2.2.3+dfsg-1 (medium) + NOTE: Fixed in 2.2.3 + NOTE: https://github.com/h2o/h2o/issues/1459 CVE-2017-10867 RESERVED CVE-2017-10866 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58770 - data/CVE
Author: sectracker
Date: 2017-12-21 09:10:13 + (Thu, 21 Dec 2017)
New Revision: 58770
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2017-12-21 09:04:18 UTC (rev 58769)
+++ data/CVE/list 2017-12-21 09:10:13 UTC (rev 58770)
@@ -1,3 +1,51 @@
+CVE-2017-17831 (GitHub Git LFS before 2.1.1 allows remote attackers to execute
...)
+ TODO: check
+CVE-2017-17830 (Bus Booking Script has CSRF via admin/new_master.php. ...)
+ TODO: check
+CVE-2017-17829 (Bus Booking Script has SQL Injection via the
admin/view_seatseller.php ...)
+ TODO: check
+CVE-2017-17828 (Bus Booking Script has XSS via the results.php datepicker
parameter or ...)
+ TODO: check
+CVE-2017-17827 (Piwigo 2.9.2 is vulnerable to Cross-Site Request Forgery via
...)
+ TODO: check
+CVE-2017-17826 (The Configuration component of Piwigo 2.9.2 is vulnerable to
Persistent ...)
+ TODO: check
+CVE-2017-17825 (The Batch Manager component of Piwigo 2.9.2 is vulnerable to
Persistent ...)
+ TODO: check
+CVE-2017-17824 (The Batch Manager component of Piwigo 2.9.2 is vulnerable to
SQL ...)
+ TODO: check
+CVE-2017-17823 (The Configuration component of Piwigo 2.9.2 is vulnerable to
SQL ...)
+ TODO: check
+CVE-2017-17822 (The List Users API of Piwigo 2.9.2 is vulnerable to SQL
Injection via ...)
+ TODO: check
+CVE-2017-17821 (WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari
Technology ...)
+ TODO: check
+CVE-2017-17820 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free
in ...)
+ TODO: check
+CVE-2017-17819 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal
address access ...)
+ TODO: check
+CVE-2017-17818 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based
buffer ...)
+ TODO: check
+CVE-2017-17817 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free
in ...)
+ TODO: check
+CVE-2017-17816 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free
in ...)
+ TODO: check
+CVE-2017-17815 (In Netwide Assembler (NASM) 2.14rc0, there is an illegal
address access ...)
+ TODO: check
+CVE-2017-17814 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free
in ...)
+ TODO: check
+CVE-2017-17813 (In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free
in the ...)
+ TODO: check
+CVE-2017-17812 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based
buffer ...)
+ TODO: check
+CVE-2017-17811 (In Netwide Assembler (NASM) 2.14rc0, there is a heap-based
buffer ...)
+ TODO: check
+CVE-2017-17810 (In Netwide Assembler (NASM) 2.14rc0, there is a "SEGV on
unknown ...)
+ TODO: check
+CVE-2017-17809 (In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the
vyprvpnservice ...)
+ TODO: check
+CVE-2017-17808
+ RESERVED
CVE-2018-3599
RESERVED
CVE-2018-3598
@@ -78,13 +126,13 @@
RESERVED
CVE-2018-3560
RESERVED
-CVE-2017-17807 [KEYS: add missing permission check for request_key()
destination]
+CVE-2017-17807 (The KEYS subsystem in the Linux kernel before 4.14.6 omitted
an ...)
- linux
NOTE: Fixed by:
https://git.kernel.org/linus/4dca6ea1d9432052afb06baf2e3ae78188a4410b
(v4.15-rc3)
-CVE-2017-17806 [crypto: hmac - require that the underlying hash algorithm is
unkeyed]
+CVE-2017-17806 (The HMAC implementation (crypto/hmac.c) in the Linux kernel
before ...)
- linux
NOTE: Fixed by:
https://git.kernel.org/linus/af3ff8045bbf3e32f1a448542e73abb4c8ceb6f1
(v4.15-rc4)
-CVE-2017-17805 [crypto: salsa20 - fix blkcipher_walk API usage]
+CVE-2017-17805 (The Salsa20 encryption algorithm in the Linux kernel before
4.14.8 does ...)
- linux
NOTE: Fixed by:
https://git.kernel.org/linus/ecaaab5649781c5a0effdaf298a925063020500e (4.15-rc4)
CVE-2017-17804 (In IKARUS anti.virus 2.16.20, the driver file (ntguard.SYS)
allows ...)
@@ -178,7 +226,7 @@
CVE-2017-17761 (An issue was discovered on Ichano AtHome IP Camera devices.
The device ...)
NOT-FOR-US: Ichano AtHome IP Camera
CVE-2017-17476 (Open Ticket Request System (OTRS) 4.0.x before 4.0.28, 5.0.x
before ...)
- {DSA-4069-1}
+ {DSA-4069-1 DLA-1215-1}
- otrs2 6.0.3-1 (bug #884801)
NOTE:
https://www.otrs.com/security-advisory-2017-10-security-update-otrs-framework/
NOTE: OTRS-6:
https://github.com/OTRS/otrs/commit/36e3be99cfe8a9e09afa1b75fdc39f3e28f561fc
@@ -5885,7 +5933,7 @@
[wheezy] - eglibc (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2017/12/11/4
CVE-2017-17432 (OpenAFS 1.x before 1.6.22 does not properly validate Rx ack
packets, ...)
- {DSA-4067-1}
+ {DSA-4067-1 DLA-1213-1}
- openafs 1.6.22-1 (bug #883602)
NOTE: https://www.openafs.org/pages/security/OPENAFS-SA-2017-001.txt
CVE-2018-1180
@@ -9913,7 +9961,8 @@
[Secure-testing-commits] r58769 - data/CVE
Author: jmm Date: 2017-12-21 09:04:18 + (Thu, 21 Dec 2017) New Revision: 58769 Modified: data/CVE/list Log: phabricator is in the archive, marking initially as unfixed Modified: data/CVE/list === --- data/CVE/list 2017-12-21 08:51:14 UTC (rev 58768) +++ data/CVE/list 2017-12-21 09:04:18 UTC (rev 58769) @@ -5160,7 +5160,7 @@ CVE-2018-1341 RESERVED CVE-2017-17536 (Phabricator before 2017-11-10 does not block the --config and ...) - NOT-FOR-US: Phabricator + - phabricator CVE-2017-17535 (lib/gui.py in Bob Hepple gjots2 2.4.1 does not validate strings before ...) - gjots2 (unimportant) NOTE: https://sources.debian.org/src/gjots2/2.4.1-2/lib/gui.py/?hl=2188#L2188 ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58768 - bin
Author: geissert
Date: 2017-12-21 08:51:14 + (Thu, 21 Dec 2017)
New Revision: 58768
Modified:
bin/check-new-issues
Log:
remove an unused var and useless code
Modified: bin/check-new-issues
===
--- bin/check-new-issues2017-12-21 08:48:25 UTC (rev 58767)
+++ bin/check-new-issues2017-12-21 08:51:14 UTC (rev 58768)
@@ -499,8 +499,8 @@
return "$name $type for WordPress";
}
if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader)/) {
- my ($name, $type) = ($1);
- return "$name";
+ my $name = $1;
+ return $name;
}
return '';
}
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58767 - bin
Author: geissert
Date: 2017-12-21 08:48:25 + (Thu, 21 Dec 2017)
New Revision: 58767
Modified:
bin/check-new-issues
Log:
add a few auto NFUs rules
Modified: bin/check-new-issues
===
--- bin/check-new-issues2017-12-21 08:47:39 UTC (rev 58766)
+++ bin/check-new-issues2017-12-21 08:48:25 UTC (rev 58767)
@@ -498,7 +498,7 @@
my ($name, $type) = ($1, $2);
return "$name $type for WordPress";
}
- if ($desc =~ m/\b(FS\s+.+?\s+Clone)/) {
+ if ($desc =~
m/\b(FS\s+.+?\s+Clone|Meinberg\s+LANTIME|Ecava\s+IntegraXor|Foxit\s+Reader)/) {
my ($name, $type) = ($1);
return "$name";
}
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58766 - data/CVE
Author: geissert Date: 2017-12-21 08:47:39 + (Thu, 21 Dec 2017) New Revision: 58766 Modified: data/CVE/list Log: auto NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 08:42:06 UTC (rev 58765) +++ data/CVE/list 2017-12-21 08:47:39 UTC (rev 58766) @@ -10150,11 +10150,11 @@ CVE-2017-16789 (Cross-site scripting (XSS) vulnerability in Integration Matters nJAMS ...) TODO: check CVE-2017-16788 (Directory traversal vulnerability in the "Upload Groupkey" ...) - TODO: check + NOT-FOR-US: Meinberg LANTIME CVE-2017-16787 (The Web Configuration Utility in Meinberg LANTIME devices with ...) - TODO: check + NOT-FOR-US: Meinberg LANTIME CVE-2017-16786 (The Web Configuration Utility in Meinberg LANTIME devices with ...) - TODO: check + NOT-FOR-US: Meinberg LANTIME CVE-2017-16784 (In CMS Made Simple 2.2.2, there is Reflected XSS via the ...) NOT-FOR-US: CMS Made Simple CVE-2017-16783 (In CMS Made Simple 2.1.6, there is Server-Side Template Injection via ...) @@ -10262,7 +10262,7 @@ CVE-2017-16736 RESERVED CVE-2017-16735 (A SQL Injection issue was discovered in Ecava IntegraXor v 6.1.1030.1 ...) - TODO: check + NOT-FOR-US: Ecava IntegraXor CVE-2017-16734 RESERVED CVE-2017-16733 (A SQL Injection issue was discovered in Ecava IntegraXor v 6.1.1030.1 ...) @@ -10655,43 +10655,43 @@ CVE-2017-16590 RESERVED CVE-2017-16589 (This vulnerability allows remote attackers to disclose sensitive ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16588 (This vulnerability allows remote attackers to disclose sensitive ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16587 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16586 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16585 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16584 (This vulnerability allows remote attackers to disclose sensitive ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16583 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16582 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16581 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16580 (This vulnerability allows remote attackers to disclose sensitive ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16579 (This vulnerability allows remote attackers to disclose sensitive ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16578 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16577 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16576 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16575 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16574 (This vulnerability allows remote attackers to disclose sensitive ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16573 (This vulnerability allows remote attackers to disclose sensitive ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16572 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16571 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-16570 (KeystoneJS before 4.0.0-beta.7 allows application-wide CSRF bypass by ...) NOT-FOR-US: KeystoneJS CVE-2017-16569 (An Open URL Redirect issue exists in Zurmo 3.2.1.57987acc3018 via an ...) @@ -15894,45 +15894,45 @@ CVE-2017-14838 (TeamWork Job Links allows Arbitrary File Upload in profileChange and ...) NOT-FOR-US: TeamWork Job Links CVE-2017-14837 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-14836 (This vulnerability allows remote attackers to execute arbitrary code ...) - TODO: check + NOT-FOR-US: Foxit Reader CVE-2017-14835 (This vulnerability allows remote attackers to execute arbitrary code ...) -
[Secure-testing-commits] r58765 - data
Author: hertzog
Date: 2017-12-21 08:42:06 + (Thu, 21 Dec 2017)
New Revision: 58765
Modified:
data/dla-needed.txt
Log:
Drop jasperreports from dla-needed.txt
Issues are marked undetermined and upstream seems unwilling to help us.
Instead we will mark the package as unsupported (filed as #884907).
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-12-21 08:38:13 UTC (rev 58764)
+++ data/dla-needed.txt 2017-12-21 08:42:06 UTC (rev 58765)
@@ -33,9 +33,6 @@
--
irssi (Emilio Pozuelo)
--
-jasperreports
- NOTE: 20171031: No details available. Asked upstream for clarification.
---
lame (Hugo Lefeuvre)
NOTE: Couldn't reproduce CVE-2017-{69-72}, but successfully reproduced
CVE-2017-150{18,45,46}
NOTE: 20171120: Backporting 3.100 is not conceivable, diff >40k lines.
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58764 - data/CVE
Author: geissert Date: 2017-12-21 08:38:13 + (Thu, 21 Dec 2017) New Revision: 58764 Modified: data/CVE/list Log: more NFUs, one itp Modified: data/CVE/list === --- data/CVE/list 2017-12-21 08:07:55 UTC (rev 58763) +++ data/CVE/list 2017-12-21 08:38:13 UTC (rev 58764) @@ -5036,17 +5036,17 @@ CVE-2017-17570 (FS Expedia Clone 1.0 has SQL Injection via the pages.php or content.php ...) NOT-FOR-US: FS Expedia Clone CVE-2017-17569 (Scubez Posty Readymade Classifieds has XSS via the ...) - TODO: check + NOT-FOR-US: Scubez Posty Readymade Classifieds CVE-2017-17568 (Scubez Posty Readymade Classifieds has Incorrect Access Control for ...) - TODO: check + NOT-FOR-US: Scubez Posty Readymade Classifieds CVE-2017-17567 (Scubez Posty Readymade Classifieds has SQL Injection via the ...) - TODO: check + NOT-FOR-US: Scubez Posty Readymade Classifieds CVE-2017-17562 (Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is ...) TODO: check CVE-2017-17561 (SeaCMS 6.56 allows remote authenticated administrators to execute ...) - TODO: check + NOT-FOR-US: SeaCMS CVE-2017-17560 (An issue was discovered on Western Digital MyCloud PR4100 2.30.172 ...) - TODO: check + NOT-FOR-US: Western Digital MyCloud CVE-2017-17559 RESERVED CVE-2017-17565 (An issue was discovered in Xen through 4.9.x allowing PV guest OS users ...) @@ -5136,9 +5136,9 @@ CVE-2017-17539 RESERVED CVE-2017-17538 (MikroTik v6.40.5 devices allow remote attackers to cause a denial of ...) - TODO: check + NOT-FOR-US: MikroTik CVE-2017-17537 (MikroTik RouterBOARD v6.39.2 and v6.40.5 allows an unauthenticated ...) - TODO: check + NOT-FOR-US: MikroTik CVE-2018-1350 RESERVED CVE-2018-1349 @@ -5160,7 +5160,7 @@ CVE-2018-1341 RESERVED CVE-2017-17536 (Phabricator before 2017-11-10 does not block the --config and ...) - TODO: check + NOT-FOR-US: Phabricator CVE-2017-17535 (lib/gui.py in Bob Hepple gjots2 2.4.1 does not validate strings before ...) - gjots2 (unimportant) NOTE: https://sources.debian.org/src/gjots2/2.4.1-2/lib/gui.py/?hl=2188#L2188 @@ -7512,7 +7512,7 @@ NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2750 NOTE: Crash in CLI tool not treated as a security issue CVE-2017-17088 (The Enterprise version of SyncBreeze 10.2.12 and earlier is affected ...) - TODO: check + NOT-FOR-US: SyncBreeze CVE-2017-17087 (fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp ...) - vim [stretch] - vim (Minor issue) @@ -9181,7 +9181,7 @@ CVE-2017-16951 (Winamp Pro 5.66 Build 3512 allows remote attackers to cause a denial ...) NOT-FOR-US: Winamp CVE-2017-16950 (Cross - site scripting (XSS) vulnerability in UrBackup Server before ...) - TODO: check + - urbackup-server (bug #697325) CVE-2017-16949 (An issue was discovered in the AccessKeys AccessPress Anonymous Post ...) NOT-FOR-US: AccessKeys AccessPress Anonymous Post Pro plugin for WordPress CVE-2017-16948 (TG Soft Vir.IT eXplorer Lite 8.5.42 allows local users to cause a ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58758 - data
Author: hertzog Date: 2017-12-21 07:46:05 + (Thu, 21 Dec 2017) New Revision: 58758 Modified: data/dla-needed.txt Log: Last CVE against tkabber was wrong Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-12-21 05:08:13 UTC (rev 58757) +++ data/dla-needed.txt 2017-12-21 07:46:05 UTC (rev 58758) @@ -102,8 +102,6 @@ -- tiff3 -- -tkabber --- tor -- wireshark (Thorsten Alteholz) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58763 - data/CVE
Author: carnil Date: 2017-12-21 08:07:55 + (Thu, 21 Dec 2017) New Revision: 58763 Modified: data/CVE/list Log: Add bug reference for CVE-2017-17782, #884905 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 08:04:22 UTC (rev 58762) +++ data/CVE/list 2017-12-21 08:07:55 UTC (rev 58763) @@ -132,7 +132,7 @@ NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=60932931559a NOTE: https://sourceforge.net/p/graphicsmagick/bugs/529/ CVE-2017-17782 (In GraphicsMagick 1.3.27a, there is a heap-based buffer over-read in ...) - - graphicsmagick + - graphicsmagick (bug #884905) NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=8e3d2264109c NOTE: https://sourceforge.net/p/graphicsmagick/bugs/530/ CVE-2017-17781 (In Horde Groupware through 5.2.22, SQL Injection exists via the group ...) ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58762 - data/CVE
Author: carnil Date: 2017-12-21 08:04:22 + (Thu, 21 Dec 2017) New Revision: 58762 Modified: data/CVE/list Log: Add bug reference for CVE-2017-17783 Modified: data/CVE/list === --- data/CVE/list 2017-12-21 07:59:01 UTC (rev 58761) +++ data/CVE/list 2017-12-21 08:04:22 UTC (rev 58762) @@ -126,7 +126,7 @@ NOTE: https://github.com/ruby/ruby/pull/1777 NOTE: Fixed by: https://github.com/ruby/ruby/commit/e7464561b5151501beb356fc750d5dd1a88014f7 CVE-2017-17783 (In GraphicsMagick 1.3.27a, there is a buffer over-read in ReadPALMImage ...) - - graphicsmagick + - graphicsmagick (bug #884904) [stretch] - graphicsmagick (Minor issue, built with QuantumDepth=16) [jessie] - graphicsmagick (Minor issue) NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=60932931559a ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
[Secure-testing-commits] r58761 - in data: . CVE
Author: hertzog Date: 2017-12-21 07:59:01 + (Thu, 21 Dec 2017) New Revision: 58761 Modified: data/CVE/list data/dla-needed.txt Log: Reclassify CVE-2017-15377 on suricata as no-dsa on wheezy (like jessie/stretch) Modified: data/CVE/list === --- data/CVE/list 2017-12-21 07:58:19 UTC (rev 58760) +++ data/CVE/list 2017-12-21 07:59:01 UTC (rev 58761) @@ -14068,6 +14068,7 @@ - suricata 1:4.0.0-1 (low) [stretch] - suricata (Minor issue) [jessie] - suricata (Minor issue) + [wheezy] - suricata (Minor issue) NOTE: https://github.com/OISF/suricata/pull/2680/commits/47afc577ff763150f9b47f10331f5ef9eb847a57 NOTE: https://redmine.openinfosecfoundation.org/issues/2231 CVE-2017-15376 (The TELNET service in Mobatek MobaXterm 10.4 does not require ...) Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-12-21 07:58:19 UTC (rev 58760) +++ data/dla-needed.txt 2017-12-21 07:59:01 UTC (rev 58761) @@ -91,9 +91,6 @@ rtpproxy NOTE: it's not clear to me if a fix is even possible. -- Raphaël Hertzog -- -suricata - NOTE: 2017-10-27: At a quick glance, I can't see that this is vulnerable. --lamby --- swftools (Guido Günther) NOTE: 20171118: At least CVE-2017-16797 is present. (lamby) NOTE: 20171210: likely to be turned into a pkg with limited sec support ___ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
