Author: sectracker
Date: 2017-11-01 21:10:17 +0000 (Wed, 01 Nov 2017)
New Revision: 57213
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-01 20:56:37 UTC (rev 57212)
+++ data/CVE/list 2017-11-01 21:10:17 UTC (rev 57213)
@@ -1,3 +1,327 @@
+CVE-2017-16509
+ RESERVED
+CVE-2017-16508
+ RESERVED
+CVE-2017-16507
+ RESERVED
+CVE-2017-16506
+ RESERVED
+CVE-2017-16505
+ RESERVED
+CVE-2017-16504
+ RESERVED
+CVE-2017-16503
+ RESERVED
+CVE-2017-16502
+ RESERVED
+CVE-2017-16501
+ RESERVED
+CVE-2017-16500
+ RESERVED
+CVE-2017-16499
+ RESERVED
+CVE-2017-16498
+ RESERVED
+CVE-2017-16497
+ RESERVED
+CVE-2017-16496
+ RESERVED
+CVE-2017-16495
+ RESERVED
+CVE-2017-16494
+ RESERVED
+CVE-2017-16493
+ RESERVED
+CVE-2017-16492
+ RESERVED
+CVE-2017-16491
+ RESERVED
+CVE-2017-16490
+ RESERVED
+CVE-2017-16489
+ RESERVED
+CVE-2017-16488
+ RESERVED
+CVE-2017-16487
+ RESERVED
+CVE-2017-16486
+ RESERVED
+CVE-2017-16485
+ RESERVED
+CVE-2017-16484
+ RESERVED
+CVE-2017-16483
+ RESERVED
+CVE-2017-16482
+ RESERVED
+CVE-2017-16481
+ RESERVED
+CVE-2017-16480
+ RESERVED
+CVE-2017-16479
+ RESERVED
+CVE-2017-16478
+ RESERVED
+CVE-2017-16477
+ RESERVED
+CVE-2017-16476
+ RESERVED
+CVE-2017-16475
+ RESERVED
+CVE-2017-16474
+ RESERVED
+CVE-2017-16473
+ RESERVED
+CVE-2017-16472
+ RESERVED
+CVE-2017-16471
+ RESERVED
+CVE-2017-16470
+ RESERVED
+CVE-2017-16469
+ RESERVED
+CVE-2017-16468
+ RESERVED
+CVE-2017-16467
+ RESERVED
+CVE-2017-16466
+ RESERVED
+CVE-2017-16465
+ RESERVED
+CVE-2017-16464
+ RESERVED
+CVE-2017-16463
+ RESERVED
+CVE-2017-16462
+ RESERVED
+CVE-2017-16461
+ RESERVED
+CVE-2017-16460
+ RESERVED
+CVE-2017-16459
+ RESERVED
+CVE-2017-16458
+ RESERVED
+CVE-2017-16457
+ RESERVED
+CVE-2017-16456
+ RESERVED
+CVE-2017-16455
+ RESERVED
+CVE-2017-16454
+ RESERVED
+CVE-2017-16453
+ RESERVED
+CVE-2017-16452
+ RESERVED
+CVE-2017-16451
+ RESERVED
+CVE-2017-16450
+ RESERVED
+CVE-2017-16449
+ RESERVED
+CVE-2017-16448
+ RESERVED
+CVE-2017-16447
+ RESERVED
+CVE-2017-16446
+ RESERVED
+CVE-2017-16445
+ RESERVED
+CVE-2017-16444
+ RESERVED
+CVE-2017-16443
+ RESERVED
+CVE-2017-16442
+ RESERVED
+CVE-2017-16441
+ RESERVED
+CVE-2017-16440
+ RESERVED
+CVE-2017-16439
+ RESERVED
+CVE-2017-16438
+ RESERVED
+CVE-2017-16437
+ RESERVED
+CVE-2017-16436
+ RESERVED
+CVE-2017-16435
+ RESERVED
+CVE-2017-16434
+ RESERVED
+CVE-2017-16433
+ RESERVED
+CVE-2017-16432
+ RESERVED
+CVE-2017-16431
+ RESERVED
+CVE-2017-16430
+ RESERVED
+CVE-2017-16429
+ RESERVED
+CVE-2017-16428
+ RESERVED
+CVE-2017-16427
+ RESERVED
+CVE-2017-16426
+ RESERVED
+CVE-2017-16425
+ RESERVED
+CVE-2017-16424
+ RESERVED
+CVE-2017-16423
+ RESERVED
+CVE-2017-16422
+ RESERVED
+CVE-2017-16421
+ RESERVED
+CVE-2017-16420
+ RESERVED
+CVE-2017-16419
+ RESERVED
+CVE-2017-16418
+ RESERVED
+CVE-2017-16417
+ RESERVED
+CVE-2017-16416
+ RESERVED
+CVE-2017-16415
+ RESERVED
+CVE-2017-16414
+ RESERVED
+CVE-2017-16413
+ RESERVED
+CVE-2017-16412
+ RESERVED
+CVE-2017-16411
+ RESERVED
+CVE-2017-16410
+ RESERVED
+CVE-2017-16409
+ RESERVED
+CVE-2017-16408
+ RESERVED
+CVE-2017-16407
+ RESERVED
+CVE-2017-16406
+ RESERVED
+CVE-2017-16405
+ RESERVED
+CVE-2017-16404
+ RESERVED
+CVE-2017-16403
+ RESERVED
+CVE-2017-16402
+ RESERVED
+CVE-2017-16401
+ RESERVED
+CVE-2017-16400
+ RESERVED
+CVE-2017-16399
+ RESERVED
+CVE-2017-16398
+ RESERVED
+CVE-2017-16397
+ RESERVED
+CVE-2017-16396
+ RESERVED
+CVE-2017-16395
+ RESERVED
+CVE-2017-16394
+ RESERVED
+CVE-2017-16393
+ RESERVED
+CVE-2017-16392
+ RESERVED
+CVE-2017-16391
+ RESERVED
+CVE-2017-16390
+ RESERVED
+CVE-2017-16389
+ RESERVED
+CVE-2017-16388
+ RESERVED
+CVE-2017-16387
+ RESERVED
+CVE-2017-16386
+ RESERVED
+CVE-2017-16385
+ RESERVED
+CVE-2017-16384
+ RESERVED
+CVE-2017-16383
+ RESERVED
+CVE-2017-16382
+ RESERVED
+CVE-2017-16381
+ RESERVED
+CVE-2017-16380
+ RESERVED
+CVE-2017-16379
+ RESERVED
+CVE-2017-16378
+ RESERVED
+CVE-2017-16377
+ RESERVED
+CVE-2017-16376
+ RESERVED
+CVE-2017-16375
+ RESERVED
+CVE-2017-16374
+ RESERVED
+CVE-2017-16373
+ RESERVED
+CVE-2017-16372
+ RESERVED
+CVE-2017-16371
+ RESERVED
+CVE-2017-16370
+ RESERVED
+CVE-2017-16369
+ RESERVED
+CVE-2017-16368
+ RESERVED
+CVE-2017-16367
+ RESERVED
+CVE-2017-16366
+ RESERVED
+CVE-2017-16365
+ RESERVED
+CVE-2017-16364
+ RESERVED
+CVE-2017-16363
+ RESERVED
+CVE-2017-16362
+ RESERVED
+CVE-2017-16361
+ RESERVED
+CVE-2017-16360
+ RESERVED
+CVE-2017-16359 (In radare 2.0.1, a pointer wraparound vulnerability exists in
...)
+ TODO: check
+CVE-2017-16358 (In radare 2.0.1, an out-of-bounds read vulnerability exists in
...)
+ TODO: check
+CVE-2017-16357 (In radare 2.0.1, a memory corruption vulnerability exists in
...)
+ TODO: check
+CVE-2017-16356
+ RESERVED
+CVE-2017-16355
+ RESERVED
+CVE-2017-16354
+ RESERVED
+CVE-2017-16353 (GraphicsMagick 1.3.26 is vulnerable to a memory information
disclosure ...)
+ TODO: check
+CVE-2017-16352 (GraphicsMagick 1.3.26 is vulnerable to a heap-based buffer
overflow ...)
+ TODO: check
+CVE-2017-1001001 (PluXml version 5.6 is vulnerable to stored cross-site
scripting ...)
+ TODO: check
+CVE-2017-1000244 (Jenkins Favorite Plugin version 2.2.0 and older is
vulnerable to CSRF ...)
+ TODO: check
+CVE-2017-1000243 (Jenkins Favorite Plugin 2.1.4 and older does not perform
permission ...)
+ TODO: check
+CVE-2017-1000242 (Jenkins Git Client Plugin 2.4.2 and earlier creates
temporary file ...)
+ TODO: check
CVE-2017-16351
RESERVED
CVE-2017-16350
@@ -252,6 +576,7 @@
CVE-2015-9245 (Insecure default configuration in Progress Software OpenEdge
10.2x and ...)
TODO: check
CVE-2017-16232 [memory-based DoS in tiff2bw]
+ RESERVED
- tiff <unfixed> (low)
NOTE: http://seclists.org/oss-sec/2017/q4/168
CVE-2017-16231 [match() stack overflow]
@@ -1317,8 +1642,8 @@
TODO: check
CVE-2017-15920 (In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro
...)
TODO: check
-CVE-2017-15918
- RESERVED
+CVE-2017-15918 (Sera 1.2 stores the user's login password in plain text in
their home ...)
+ TODO: check
CVE-2017-15917 (In Paessler PRTG Network Monitor 17.3.33.2830, it's possible
to create ...)
NOT-FOR-US: Paessler PRTG Network Monitor
CVE-2017-15908 (In systemd 223 through 235, a remote DNS server can respond
with a ...)
@@ -2057,8 +2382,7 @@
NOT-FOR-US: PHPSUGAR PHP Melody
CVE-2017-15567 (The certificate import component in IDEMIA (formerly Morpho)
...)
NOT-FOR-US: IDEMIA
-CVE-2017-15566
- RESERVED
+CVE-2017-15566 (Insecure SPANK environment variable handling exists in SchedMD
Slurm ...)
- slurm-llnl <unfixed> (bug #880530)
[jessie] - slurm-llnl <not-affected> (Vulnerable code introduced later)
[wheezy] - slurm-llnl <not-affected> (Vulnerable code introduced later)
@@ -3666,8 +3990,8 @@
NOTE: https://sourceforge.net/p/graphicsmagick/bugs/512/
CVE-2017-14993
RESERVED
-CVE-2017-14992
- RESERVED
+CVE-2017-14992 (Lack of content verification in Docker-CE (Also known as Moby)
...)
+ TODO: check
CVE-2017-14991 (The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel
before ...)
- linux 4.13.4-1
[stretch] - linux <not-affected> (Vulnerable code introduced later)
@@ -10628,8 +10952,7 @@
RESERVED
CVE-2017-12626
RESERVED
-CVE-2017-12625
- RESERVED
+CVE-2017-12625 (Apache Hive 2.1.x before 2.1.2, 2.2.x before 2.2.1, and 2.3.x
before ...)
NOT-FOR-US: Apache Hive
CVE-2017-12624
RESERVED
@@ -50467,7 +50790,7 @@
NOT-FOR-US: Qualcomm driver for Android
CVE-2016-1000246
RESERVED
-CVE-2017-1000245
+CVE-2017-1000245 (The SSH Plugin stores credentials which allow jobs to access
remote ...)
NOT-FOR-US: Jenkins SSH plugin
CVE-2016-7979 (Ghostscript before 9.21 might allow remote attackers to bypass
the ...)
{DSA-3691-1 DLA-674-1}
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
