Author: sectracker
Date: 2016-12-17 09:10:32 +0000 (Sat, 17 Dec 2016)
New Revision: 47166
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-17 08:07:29 UTC (rev 47165)
+++ data/CVE/list 2016-12-17 09:10:32 UTC (rev 47166)
@@ -9,27 +9,27 @@
NOTE: https://bugs.exim.org/show_bug.cgi?id=1996
NOTE: http://www.openwall.com/lists/oss-security/2016/12/16/1
CVE-2016-9961
- {DSA-3735-1}
+ {DSA-3735-1 DLA-750-1}
- game-music-emu 0.6.0-4 (bug #848071)
NOTE:
http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
CVE-2016-9960
- {DSA-3735-1}
+ {DSA-3735-1 DLA-750-1}
- game-music-emu 0.6.0-4 (bug #848071)
NOTE:
http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
CVE-2016-9959
- {DSA-3735-1}
+ {DSA-3735-1 DLA-750-1}
- game-music-emu 0.6.0-4 (bug #848071)
NOTE:
http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
CVE-2016-9958
- {DSA-3735-1}
+ {DSA-3735-1 DLA-750-1}
- game-music-emu 0.6.0-4 (bug #848071)
NOTE:
http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
CVE-2016-9957
- {DSA-3735-1}
+ {DSA-3735-1 DLA-750-1}
- game-music-emu 0.6.0-4 (bug #848071)
NOTE:
http://scarybeastsecurity.blogspot.de/2016/12/redux-compromising-linux-using-snes.html
NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
@@ -113,6 +113,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/12/12/2
CVE-2016-9935 [Invalid read when wddx decodes empty boolean element]
RESERVED
+ {DSA-3737-1}
- php7.0 7.0.14-1
- php5 <unfixed>
NOTE: Fixed in PHP 5.6.29 and 7.0.14
@@ -7577,6 +7578,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/12/02/5
CVE-2016-9774 [tomcat8: privilege escalation during package upgrade]
RESERVED
+ {DLA-746-1}
- tomcat8 8.5.8-2 (bug #845393)
- tomcat7 7.0.72-3
NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
@@ -8034,12 +8036,14 @@
NOT-FOR-US: Samsung
CVE-2016-9566 [privilege escalation]
RESERVED
+ {DLA-751-1}
- nagios3 <removed>
NOTE:
https://github.com/NagiosEnterprises/nagioscore/commit/c29557dec91eba2306f5fb11b8da4474ba63f8c4
NOTE:
https://legalhackers.com/advisories/Nagios-Exploit-Root-PrivEsc-CVE-2016-9566.html
NOTE: nagios < 3.5 is not vulnerable through the regular logfile, but
through the debug logfile
CVE-2016-9565 [Curl Command Injection]
RESERVED
+ {DLA-751-1}
- nagios3 3.5.1-1
NOTE:
https://legalhackers.com/advisories/Nagios-Exploit-Command-Injection-CVE-2016-9565-2008-4796.html
NOTE: The RSS feed and call-home was removed in src:nagios3 3.5.1-1
where the affected
@@ -8275,7 +8279,7 @@
NOTE: unlikely PHP configuration required, unclear impact
CVE-2014-9911
RESERVED
- {DSA-3725-1}
+ {DSA-3725-1 DLA-744-1}
- icu 55.1-3
NOTE: http://bugs.icu-project.org/trac/ticket/10891
NOTE: Fixed by: http://bugs.icu-project.org/trac/changeset/35699
@@ -10428,6 +10432,7 @@
NOTE: upstream fix
https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=commitdiff;h=8bd0c12d53bea6f299e92d20ee0a23b16a7f65bc
CVE-2016-8863 [Buffer overflow in create_url_list]
RESERVED
+ {DSA-3736-1 DLA-748-1 DLA-747-1}
- libupnp 1:1.6.19+git20160116-1.2 (bug #842093)
- libupnp4 <removed>
NOTE: https://sourceforge.net/p/pupnp/bugs/133/
@@ -15095,7 +15100,7 @@
NOTE:
https://github.com/owncloud/gallery/commit/6933d27afe518967bd1b60e6a7eacd88288929fc
NOTE: https://hackerone.com/reports/145355
CVE-2016-7418 (The php_wddx_push_element function in ext/wddx/wddx.c in PHP
before ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.11-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73065
@@ -15104,21 +15109,21 @@
NOTE: The scope of this CVE also includes all of the "other four
similar issues"
NOTE: in the "[2016-09-12 06:44 UTC]" comment.
CVE-2016-7417 (ext/spl/spl_array.c in PHP before 5.6.26 and 7.x before 7.0.11
...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.11-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73029
NOTE: Fixed in 7.0.11, 5.6.26
NOTE:
https://github.com/php/php-src/commit/ecb7f58a069be0dec4a6131b6351a761f808f22e?w=1
CVE-2016-7416 (ext/intl/msgformat/msgformat_format.c in PHP before 5.6.26 and
7.x ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.11-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73007
NOTE: Fixed in 7.0.11, 5.6.26
NOTE:
https://github.com/php/php-src/commit/6d55ba265637d6adf0ba7e9c9ef11187d1ec2f5b?w=1
CVE-2016-7415 (Stack-based buffer overflow in the Locale class in
common/locid.cpp in ...)
- {DSA-3725-1}
+ {DSA-3725-1 DLA-744-1}
[experimental] - icu 58.1-1
- icu 57.1-5 (bug #838694)
NOTE: Related code in
http://source.icu-project.org/repos/icu/icu/trunk/source/common/locid.cpp file
@@ -15126,28 +15131,28 @@
NOTE: PHP fix:
https://github.com/php/php-src/commit/6d55ba265637d6adf0ba7e9c9ef11187d1ec2f5b?w=1
NOTE: Upstream bug: http://bugs.icu-project.org/trac/ticket/12745
CVE-2016-7414 (The ZIP signature-verification feature in PHP before 5.6.26 and
7.x ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.11-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72928
NOTE: Fixed in 7.0.11, 5.6.26
NOTE:
https://github.com/php/php-src/commit/0bfb970f43acd1e81d11be1154805f86655f15d5?w=1
CVE-2016-7413 (Use-after-free vulnerability in the wddx_stack_destroy function
in ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.11-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72860
NOTE: Fixed in 7.0.11, 5.6.26
NOTE:
https://github.com/php/php-src/commit/b88393f08a558eec14964a55d3c680fe67407712?w=1
CVE-2016-7412 (ext/mysqlnd/mysqlnd_wireprotocol.c in PHP before 5.6.26 and 7.x
before ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.11-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72293
NOTE: Fixed in 7.0.11, 5.6.26
NOTE:
https://github.com/php/php-src/commit/28f80baf3c53e267c9ce46a2a0fadbb981585132?w=1
CVE-2016-7411 (ext/standard/var_unserializer.re in PHP before 5.6.26
mishandles ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 <not-affected> (Only affects 5.x)
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73052
@@ -15979,7 +15984,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/09/02/5
NOTE:
https://github.com/php/php-src/commit/c2a13ced4272f2e65d2773e2ea6ca11c1ce4a911?w=1
CVE-2016-7132 (ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10
allows ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.10-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72799
@@ -15989,7 +15994,7 @@
NOTE: 72790 and 72799 are associated with the same commit. Not all of
the
NOTE: commit is about the pop issue in 72799.
CVE-2016-7131 (ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10
allows ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.10-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72790
@@ -16000,7 +16005,7 @@
NOTE: 72790 and 72799 are associated with the same commit. Not all of
the
NOTE: commit is about the pop issue in 72799.
CVE-2016-7130 (The php_wddx_pop_element function in ext/wddx/wddx.c in PHP
before ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.10-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72750
@@ -16008,7 +16013,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/09/02/5
NOTE:
https://github.com/php/php-src/commit/698a691724c0a949295991e5df091ce16f899e02?w=1
CVE-2016-7129 (The php_wddx_process_data function in ext/wddx/wddx.c in PHP
before ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.10-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72749
@@ -16016,7 +16021,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/09/02/5
NOTE:
https://github.com/php/php-src/commit/426aeb2808955ee3d3f52e0cfb102834cdb836a5?w=1
CVE-2016-7128 (The exif_process_IFD_in_TIFF function in ext/exif/exif.c in PHP
before ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.10-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72627
@@ -16052,7 +16057,7 @@
NOTE: Scope of CVE also includes the "The similar issue also exist in
session php_binary
NOTE: handler" part of 72681.
CVE-2016-7124 (ext/standard/var_unserializer.c in PHP before 5.6.25 and 7.x
before ...)
- {DSA-3689-1}
+ {DSA-3689-1 DLA-749-1}
- php7.0 7.0.10-1
- php5 5.6.26+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72663
@@ -19330,7 +19335,7 @@
NOTE: This is not a vulnerability in Spring itself, just how
applications are using it
CVE-2016-6255 [write files via POST]
RESERVED
- {DLA-597-1}
+ {DSA-3736-1 DLA-597-1}
- libupnp 1:1.6.19+git20160116-1.1 (bug #831857)
NOTE: https://twitter.com/mjg59/status/755062278513319936
NOTE: Proposed fix:
https://github.com/mjg59/pupnp-code/commit/be0a01bdb83395d9f3a5ea09c1308a4f1a972cbd
@@ -21912,7 +21917,7 @@
NOTE: No part of Go does set HTTP_PROXY based on a Proxy: header, 1.6.3
and 1.7
NOTE: provide hardening to discard HTTP_PROXY
CVE-2016-5385 (PHP through 7.0.8 does not attempt to address RFC 3875 section
4.1.18 ...)
- {DSA-3631-1}
+ {DSA-3631-1 DLA-749-1}
- php7.0 7.0.9-1
- php5 5.6.24+dfsg-1
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72573
@@ -36297,6 +36302,7 @@
RESERVED
CVE-2016-1253 [shell injection attack using LZMA-compressed files]
RESERVED
+ {DLA-745-1}
- most 5.0.0a-3 (bug #848132)
[jessie] - most <no-dsa> (Minor issue; will be fixed via point release)
CVE-2016-1252
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
