Author: sectracker
Date: 2016-09-14 21:10:12 +0000 (Wed, 14 Sep 2016)
New Revision: 44593
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-14 20:26:50 UTC (rev 44592)
+++ data/CVE/list 2016-09-14 21:10:12 UTC (rev 44593)
@@ -1,3 +1,43 @@
+CVE-2016-8220
+ RESERVED
+CVE-2016-8219
+ RESERVED
+CVE-2016-8218
+ RESERVED
+CVE-2016-8217
+ RESERVED
+CVE-2016-8216
+ RESERVED
+CVE-2016-8215
+ RESERVED
+CVE-2016-8214
+ RESERVED
+CVE-2016-8213
+ RESERVED
+CVE-2016-8212
+ RESERVED
+CVE-2016-8211
+ RESERVED
+CVE-2016-8210
+ RESERVED
+CVE-2016-8209
+ RESERVED
+CVE-2016-8208
+ RESERVED
+CVE-2016-8207
+ RESERVED
+CVE-2016-8206
+ RESERVED
+CVE-2016-8205
+ RESERVED
+CVE-2016-8204
+ RESERVED
+CVE-2016-8203
+ RESERVED
+CVE-2016-8202
+ RESERVED
+CVE-2016-8201
+ RESERVED
CVE-2016-XXXX [GNUTLS-SA-2016-3: missing OCSP response serial length check]
- gnutls28 3.5.3-4
NOTE:
http://lists.gnutls.org/pipermail/gnutls-devel/2016-September/008146.html
@@ -4117,6 +4157,7 @@
RESERVED
CVE-2016-6662 [privilege escalation through ld_preload hijacking and my.cnf
rewrite]
RESERVED
+ {DSA-3666-1}
- mariadb-10.0 10.0.27-1
- mysql-5.6 <unfixed>
- mysql-5.5 <removed>
@@ -14943,82 +14984,82 @@
RESERVED
CVE-2016-3382
RESERVED
-CVE-2016-3381
- RESERVED
+CVE-2016-3381 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel
2013 ...)
+ TODO: check
CVE-2016-3380
RESERVED
-CVE-2016-3379
- RESERVED
-CVE-2016-3378
- RESERVED
-CVE-2016-3377
- RESERVED
+CVE-2016-3379 (Cross-site scripting (XSS) vulnerability in Microsoft Exchange
Server ...)
+ TODO: check
+CVE-2016-3378 (Open redirect vulnerability in Microsoft Exchange Server 2013
SP1, ...)
+ TODO: check
+CVE-2016-3377 (The Chakra JavaScript engine in Microsoft Edge allows remote
attackers ...)
+ TODO: check
CVE-2016-3376
RESERVED
-CVE-2016-3375
- RESERVED
-CVE-2016-3374
- RESERVED
-CVE-2016-3373
- RESERVED
-CVE-2016-3372
- RESERVED
-CVE-2016-3371
- RESERVED
-CVE-2016-3370
- RESERVED
-CVE-2016-3369
- RESERVED
-CVE-2016-3368
- RESERVED
-CVE-2016-3367
- RESERVED
-CVE-2016-3366
- RESERVED
-CVE-2016-3365
- RESERVED
-CVE-2016-3364
- RESERVED
-CVE-2016-3363
- RESERVED
-CVE-2016-3362
- RESERVED
-CVE-2016-3361
- RESERVED
-CVE-2016-3360
- RESERVED
-CVE-2016-3359
- RESERVED
-CVE-2016-3358
- RESERVED
-CVE-2016-3357
- RESERVED
-CVE-2016-3356
- RESERVED
-CVE-2016-3355
- RESERVED
-CVE-2016-3354
- RESERVED
-CVE-2016-3353
- RESERVED
-CVE-2016-3352
- RESERVED
-CVE-2016-3351
- RESERVED
-CVE-2016-3350
- RESERVED
-CVE-2016-3349
- RESERVED
-CVE-2016-3348
- RESERVED
+CVE-2016-3375 (The OLE Automation mechanism and VBScript scripting engine in
...)
+ TODO: check
+CVE-2016-3374 (The PDF library in Microsoft Edge, Windows 8.1, Windows Server
2012 ...)
+ TODO: check
+CVE-2016-3373 (The kernel API in Microsoft Windows Vista SP2, Windows Server
2008 SP2 ...)
+ TODO: check
+CVE-2016-3372 (The kernel API in Microsoft Windows Vista SP2 and Windows
Server 2008 ...)
+ TODO: check
+CVE-2016-3371 (The kernel API in Microsoft Windows Vista SP2, Windows Server
2008 SP2 ...)
+ TODO: check
+CVE-2016-3370 (The PDF library in Microsoft Edge, Windows 8.1, Windows Server
2012 ...)
+ TODO: check
+CVE-2016-3369 (Microsoft Windows 10 Gold and 1511 allows attackers to cause a
denial ...)
+ TODO: check
+CVE-2016-3368 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2
SP1, ...)
+ TODO: check
+CVE-2016-3367 (StringBuilder in Microsoft Silverlight 5 before 5.1.50709.0
does not ...)
+ TODO: check
+CVE-2016-3366 (Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1,
...)
+ TODO: check
+CVE-2016-3365 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel
2013 ...)
+ TODO: check
+CVE-2016-3364 (Microsoft Visio 2016 allows remote attackers to execute
arbitrary code ...)
+ TODO: check
+CVE-2016-3363 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel
2013 ...)
+ TODO: check
+CVE-2016-3362 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel
2013 ...)
+ TODO: check
+CVE-2016-3361 (Microsoft Excel 2010 SP2 allows remote attackers to execute
arbitrary ...)
+ TODO: check
+CVE-2016-3360 (Microsoft PowerPoint 2007 SP3, PowerPoint 2010 SP2, PowerPoint
2013 ...)
+ TODO: check
+CVE-2016-3359 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Office Compatibility
Pack ...)
+ TODO: check
+CVE-2016-3358 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel
2013 ...)
+ TODO: check
+CVE-2016-3357 (Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1,
Office ...)
+ TODO: check
+CVE-2016-3356 (The Graphics Device Interface (GDI) in Microsoft Windows 10
1607 ...)
+ TODO: check
+CVE-2016-3355 (The Graphics Device Interface (GDI) in Microsoft Windows Vista
SP2, ...)
+ TODO: check
+CVE-2016-3354 (The Graphics Device Interface (GDI) in Microsoft Windows Vista
SP2, ...)
+ TODO: check
+CVE-2016-3353 (Microsoft Internet Explorer 9 through 11 mishandles .url files
from ...)
+ TODO: check
+CVE-2016-3352 (Microsoft Windows 8.1, Windows RT 8.1, and Windows 10 Gold,
1511, and ...)
+ TODO: check
+CVE-2016-3351 (Microsoft Internet Explorer 9 through 11 and Microsoft Edge
allow ...)
+ TODO: check
+CVE-2016-3350 (The Chakra JavaScript engine in Microsoft Edge allows remote
attackers ...)
+ TODO: check
+CVE-2016-3349 (The kernel-mode drivers in Microsoft Windows 8.1, Windows
Server 2012 ...)
+ TODO: check
+CVE-2016-3348 (The kernel-mode drivers in Microsoft Windows Vista SP2, Windows
Server ...)
+ TODO: check
CVE-2016-3347
RESERVED
-CVE-2016-3346
- RESERVED
-CVE-2016-3345
- RESERVED
-CVE-2016-3344
- RESERVED
+CVE-2016-3346 (Microsoft Windows 10 Gold, 1511, and 1607 does not properly
enforce ...)
+ TODO: check
+CVE-2016-3345 (The SMBv1 server in Microsoft Windows Vista SP2, Windows Server
2008 ...)
+ TODO: check
+CVE-2016-3344 (The Secure Kernel Mode feature in Microsoft Windows 10 Gold and
1511 ...)
+ TODO: check
CVE-2016-3343
RESERVED
CVE-2016-3342
@@ -15045,8 +15086,8 @@
RESERVED
CVE-2016-3331
RESERVED
-CVE-2016-3330
- RESERVED
+CVE-2016-3330 (Microsoft Edge allows remote attackers to execute arbitrary
code or ...)
+ TODO: check
CVE-2016-3329 (Microsoft Internet Explorer 9 through 11 and Edge allow remote
...)
TODO: check
CVE-2016-3328
@@ -15055,10 +15096,10 @@
TODO: check
CVE-2016-3326 (Microsoft Internet Explorer 9 through 11 and Edge allow remote
...)
TODO: check
-CVE-2016-3325
- RESERVED
-CVE-2016-3324
- RESERVED
+CVE-2016-3325 (Microsoft Internet Explorer 11 and Microsoft Edge allow remote
...)
+ TODO: check
+CVE-2016-3324 (Microsoft Internet Explorer 9 through 11 allows remote
attackers to ...)
+ TODO: check
CVE-2016-3323
RESERVED
CVE-2016-3322 (Microsoft Internet Explorer 11 and Edge allow remote attackers
to ...)
@@ -15093,16 +15134,16 @@
TODO: check
CVE-2016-3307
RESERVED
-CVE-2016-3306
- RESERVED
-CVE-2016-3305
- RESERVED
+CVE-2016-3306 (The kernel in Microsoft Windows Vista SP2, Windows Server 2008
SP2 and ...)
+ TODO: check
+CVE-2016-3305 (The kernel in Microsoft Windows Vista SP2, Windows Server 2008
SP2 and ...)
+ TODO: check
CVE-2016-3304 (The Windows font library in Microsoft Windows Vista SP2,
Windows ...)
TODO: check
CVE-2016-3303 (The Windows font library in Microsoft Windows Vista SP2,
Windows ...)
TODO: check
-CVE-2016-3302
- RESERVED
+CVE-2016-3302 (Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1,
and ...)
+ TODO: check
CVE-2016-3301 (The Windows font library in Microsoft Windows Vista SP2;
Windows ...)
TODO: check
CVE-2016-3300 (The Netlogon service in Microsoft Windows 8.1, Windows Server
2012 ...)
@@ -15111,20 +15152,20 @@
TODO: check
CVE-2016-3298
RESERVED
-CVE-2016-3297
- RESERVED
+CVE-2016-3297 (Microsoft Internet Explorer 9 through 11 and Microsoft Edge
allow ...)
+ TODO: check
CVE-2016-3296 (The Chakra JavaScript engine in Microsoft Edge allows remote
attackers ...)
TODO: check
-CVE-2016-3295
- RESERVED
-CVE-2016-3294
- RESERVED
+CVE-2016-3295 (Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow
remote ...)
+ TODO: check
+CVE-2016-3294 (Microsoft Edge allows remote attackers to execute arbitrary
code or ...)
+ TODO: check
CVE-2016-3293 (Microsoft Internet Explorer 9 through 11 and Edge allow remote
...)
TODO: check
-CVE-2016-3292
- RESERVED
-CVE-2016-3291
- RESERVED
+CVE-2016-3292 (Microsoft Internet Explorer 10 and 11 mishandles integrity
settings ...)
+ TODO: check
+CVE-2016-3291 (Microsoft Internet Explorer 11 and Microsoft Edge mishandle ...)
+ TODO: check
CVE-2016-3290 (Microsoft Internet Explorer 11 allows remote attackers to
execute ...)
TODO: check
CVE-2016-3289 (Microsoft Internet Explorer 11 and Edge allow remote attackers
to ...)
@@ -15211,8 +15252,8 @@
TODO: check
CVE-2016-3248 (The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra
JavaScript ...)
NOT-FOR-US: Microsoft
-CVE-2016-3247
- RESERVED
+CVE-2016-3247 (Microsoft Internet Explorer 11 and Microsoft Edge allow remote
...)
+ TODO: check
CVE-2016-3246 (Microsoft Edge allows remote attackers to execute arbitrary
code or ...)
TODO: check
CVE-2016-3245 (Microsoft Internet Explorer 9 through 11 allows remote
attackers to ...)
@@ -25928,16 +25969,16 @@
NOT-FOR-US: Microsoft Windows
CVE-2016-0142
RESERVED
-CVE-2016-0141
- RESERVED
+CVE-2016-0141 (The Visual Basic macros in Microsoft Office 2007 SP3, 2010 SP2,
2013 ...)
+ TODO: check
CVE-2016-0140 (Microsoft Office 2007 SP3, Office 2010 SP2, Word Automation
Services ...)
TODO: check
CVE-2016-0139 (Microsoft Excel 2010 SP2, Word for Mac 2011, and Excel Viewer
allow ...)
NOT-FOR-US: Microsoft Excel
-CVE-2016-0138
- RESERVED
-CVE-2016-0137
- RESERVED
+CVE-2016-0138 (Microsoft Exchange Server 2007 SP3, 2010 SP3, 2013 SP1, 2013
...)
+ TODO: check
+CVE-2016-0137 (The Click-to-Run (C2R) implementation in Microsoft Office 2013
SP1 and ...)
+ TODO: check
CVE-2016-0136 (Microsoft Excel 2007 SP3, Excel 2010 SP2, Office Compatibility
Pack ...)
NOT-FOR-US: Microsoft Excel
CVE-2016-0135 (The Secondary Logon Service in Microsoft Windows 10 Gold and
1511 ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
