Author: sectracker
Date: 2017-01-12 09:10:13 +0000 (Thu, 12 Jan 2017)
New Revision: 47941
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-12 09:09:35 UTC (rev 47940)
+++ data/CVE/list 2017-01-12 09:10:13 UTC (rev 47941)
@@ -270,6 +270,7 @@
CVE-2016-10125 (D-Link DGS-1100 devices with Rev.B firmware 1.01.018 have a
hardcoded ...)
NOT-FOR-US: D-Link
CVE-2016-10127 [XML external entity attack]
+ {DSA-3759-1}
- python-pysaml2 3.0.0-5 (bug #850716)
NOTE: https://github.com/rohe/pysaml2/pull/379
NOTE:
https://github.com/rohe/pysaml2/commit/6e09a25d9b4b7aa7a506853210a9a14100b8bc9b
@@ -3980,7 +3981,7 @@
RESERVED
CVE-2016-9905
RESERVED
- {DSA-3734-1 DLA-743-1}
+ {DSA-3757-1 DSA-3734-1 DLA-743-1}
- firefox <not-affected> (Only affects Firefox 45 ESR series)
- firefox-esr 45.6.0esr-1
[experimental] - icedove 1:45.6.0-1
@@ -3990,7 +3991,7 @@
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2016-96/#CVE-2016-9905
CVE-2016-9904
RESERVED
- {DSA-3734-1 DLA-743-1}
+ {DSA-3757-1 DSA-3734-1 DLA-743-1}
- firefox 50.1.0-1
- firefox-esr 45.6.0esr-1
[experimental] - icedove 1:45.6.0-1
@@ -4017,7 +4018,7 @@
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2016-95/#CVE-2016-9901
CVE-2016-9900
RESERVED
- {DSA-3734-1 DLA-743-1}
+ {DSA-3757-1 DSA-3734-1 DLA-743-1}
- firefox 50.1.0-1
- firefox-esr 45.6.0esr-1
[experimental] - icedove 1:45.6.0-1
@@ -4027,7 +4028,7 @@
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2016-96/#CVE-2016-9900
CVE-2016-9899
RESERVED
- {DSA-3734-1 DLA-743-1}
+ {DSA-3757-1 DSA-3734-1 DLA-743-1}
- firefox 50.1.0-1
- firefox-esr 45.6.0esr-1
[experimental] - icedove 1:45.6.0-1
@@ -4037,7 +4038,7 @@
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2016-96/#CVE-2016-9899
CVE-2016-9898
RESERVED
- {DSA-3734-1 DLA-743-1}
+ {DSA-3757-1 DSA-3734-1 DLA-743-1}
- firefox 50.1.0-1
- firefox-esr 45.6.0esr-1
[experimental] - icedove 1:45.6.0-1
@@ -4047,7 +4048,7 @@
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2016-96/#CVE-2016-9898
CVE-2016-9897
RESERVED
- {DSA-3734-1 DLA-743-1}
+ {DSA-3757-1 DSA-3734-1 DLA-743-1}
- firefox 50.1.0-1
- firefox-esr 45.6.0esr-1
[experimental] - icedove 1:45.6.0-1
@@ -4062,7 +4063,7 @@
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2016-94/#CVE-2016-9896
CVE-2016-9895
RESERVED
- {DSA-3734-1 DLA-743-1}
+ {DSA-3757-1 DSA-3734-1 DLA-743-1}
- firefox 50.1.0-1
- firefox-esr 45.6.0esr-1
[experimental] - icedove 1:45.6.0-1
@@ -4077,7 +4078,7 @@
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2016-94/#CVE-2016-9894
CVE-2016-9893
RESERVED
- {DSA-3734-1 DLA-743-1}
+ {DSA-3757-1 DSA-3734-1 DLA-743-1}
- firefox 50.1.0-1
- firefox-esr 45.6.0esr-1
[experimental] - icedove 1:45.6.0-1
@@ -12417,6 +12418,7 @@
RESERVED
CVE-2016-9444 [An unusually-formed DS record response could cause an assertion
failure]
RESERVED
+ {DSA-3758-1}
- bind9 <unfixed> (bug #851062)
NOTE: https://kb.isc.org/article/AA-01441/0
CVE-2016-9928 [MCabber before 1.0.4 allows remote attackers to modify the
roster and intercept messages via a crafted roster-push IQ stanza]
@@ -13577,6 +13579,7 @@
RESERVED
CVE-2016-9147 [An error handling a query response containing inconsistent
DNSSEC information could cause an assertion failure]
RESERVED
+ {DSA-3758-1}
- bind9 <unfixed> (bug #851063)
NOTE: https://kb.isc.org/article/AA-01440/0
CVE-2015-8969 (git-fastclone before 1.0.5 passes user modifiable strings
directly to a ...)
@@ -13667,6 +13670,7 @@
NOTE: Not believed to be exploitable in practice
CVE-2016-9131 [A malformed response to an ANY query can cause an assertion
failure during recursion]
RESERVED
+ {DSA-3758-1}
- bind9 <unfixed> (bug #851065)
NOTE: https://kb.isc.org/article/AA-01439/0
CVE-2016-9130
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
