Author: sectracker Date: 2017-06-13 09:10:15 +0000 (Tue, 13 Jun 2017) New Revision: 52533
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-06-13 08:30:54 UTC (rev 52532) +++ data/CVE/list 2017-06-13 09:10:15 UTC (rev 52533) @@ -1,3 +1,7 @@ +CVE-2017-9603 + RESERVED +CVE-2017-9602 + RESERVED CVE-2017-9601 RESERVED CVE-2017-9600 @@ -8275,42 +8279,42 @@ RESERVED CVE-2017-6698 RESERVED -CVE-2017-6697 - RESERVED -CVE-2017-6696 - RESERVED -CVE-2017-6695 - RESERVED -CVE-2017-6694 - RESERVED -CVE-2017-6693 - RESERVED -CVE-2017-6692 - RESERVED -CVE-2017-6691 - RESERVED -CVE-2017-6690 - RESERVED -CVE-2017-6689 - RESERVED -CVE-2017-6688 - RESERVED -CVE-2017-6687 - RESERVED -CVE-2017-6686 - RESERVED -CVE-2017-6685 - RESERVED -CVE-2017-6684 - RESERVED -CVE-2017-6683 - RESERVED -CVE-2017-6682 - RESERVED -CVE-2017-6681 - RESERVED -CVE-2017-6680 - RESERVED +CVE-2017-6697 (A vulnerability in the web interface of Cisco Elastic Services ...) + TODO: check +CVE-2017-6696 (A vulnerability in the file system of Cisco Elastic Services ...) + TODO: check +CVE-2017-6695 (A vulnerability in the ConfD server in Cisco Ultra Services Platform ...) + TODO: check +CVE-2017-6694 (A vulnerability in the Virtual Network Function Manager's (VNFM) ...) + TODO: check +CVE-2017-6693 (A vulnerability in the ConfD server component of Cisco Elastic Services ...) + TODO: check +CVE-2017-6692 (A vulnerability in Cisco Ultra Services Framework Element Manager could ...) + TODO: check +CVE-2017-6691 (A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers ...) + TODO: check +CVE-2017-6690 (A vulnerability in the file check operation of Cisco ASR 5000 Series ...) + TODO: check +CVE-2017-6689 (A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers ...) + TODO: check +CVE-2017-6688 (A vulnerability in Cisco Elastic Services Controllers could allow an ...) + TODO: check +CVE-2017-6687 (A vulnerability in Cisco Ultra Services Framework Element Manager could ...) + TODO: check +CVE-2017-6686 (A vulnerability in Cisco Ultra Services Framework Element Manager could ...) + TODO: check +CVE-2017-6685 (A vulnerability in Cisco Ultra Services Framework Staging Server could ...) + TODO: check +CVE-2017-6684 (A vulnerability in Cisco Elastic Services Controllers could allow an ...) + TODO: check +CVE-2017-6683 (A vulnerability in the esc_listener.py script of Cisco Elastic Services ...) + TODO: check +CVE-2017-6682 (A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers ...) + TODO: check +CVE-2017-6681 (A vulnerability in the AutoVNF VNFStagingView class of Cisco Ultra ...) + TODO: check +CVE-2017-6680 (A vulnerability in the AutoVNF logging function of Cisco Ultra Services ...) + TODO: check CVE-2017-6679 RESERVED CVE-2017-6678 @@ -8319,26 +8323,26 @@ RESERVED CVE-2017-6676 RESERVED -CVE-2017-6675 - RESERVED -CVE-2017-6674 - RESERVED -CVE-2017-6673 - RESERVED +CVE-2017-6675 (A vulnerability in the web interface of Cisco Industrial Network ...) + TODO: check +CVE-2017-6674 (A vulnerability in the feature-license management functionality of ...) + TODO: check +CVE-2017-6673 (A vulnerability in Cisco Firepower Management Center could allow an ...) + TODO: check CVE-2017-6672 RESERVED -CVE-2017-6671 - RESERVED -CVE-2017-6670 - RESERVED +CVE-2017-6671 (A vulnerability in the email message scanning of Cisco AsyncOS Software ...) + TODO: check +CVE-2017-6670 (A vulnerability in the web-based GUI of Cisco Unified Communications ...) + TODO: check CVE-2017-6669 RESERVED -CVE-2017-6668 - RESERVED -CVE-2017-6667 - RESERVED -CVE-2017-6666 - RESERVED +CVE-2017-6668 (Vulnerabilities in the web-based GUI of Cisco Unified Communications ...) + TODO: check +CVE-2017-6667 (A vulnerability in the update process for the dynamic JAR file of the ...) + TODO: check +CVE-2017-6666 (A vulnerability in the forwarding component of Cisco IOS XR Software ...) + TODO: check CVE-2017-6665 RESERVED CVE-2017-6664 @@ -8347,20 +8351,20 @@ RESERVED CVE-2017-6662 RESERVED -CVE-2017-6661 - RESERVED +CVE-2017-6661 (A vulnerability in the web-based management interface of Cisco Email ...) + TODO: check CVE-2017-6660 RESERVED -CVE-2017-6659 - RESERVED +CVE-2017-6659 (A vulnerability in the web-based management interface of Cisco Prime ...) + TODO: check CVE-2017-6658 (Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread ...) NOT-FOR-US: Cisco CVE-2017-6657 (Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type ...) NOT-FOR-US: Cisco -CVE-2017-6656 - RESERVED -CVE-2017-6655 - RESERVED +CVE-2017-6656 (A vulnerability in Session Initiation Protocol (SIP) call handling of ...) + TODO: check +CVE-2017-6655 (A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol ...) + TODO: check CVE-2017-6654 (A vulnerability in the web-based management interface of Cisco Unified ...) NOT-FOR-US: Cisco CVE-2017-6653 (A vulnerability in the TCP throttling process for the GUI of the Cisco ...) @@ -14111,14 +14115,14 @@ RESERVED CVE-2017-4995 RESERVED -CVE-2017-4994 - RESERVED +CVE-2017-4994 (An issue was discovered in Cloud Foundry Foundation cf-release versions ...) + TODO: check CVE-2017-4993 RESERVED -CVE-2017-4992 - RESERVED -CVE-2017-4991 - RESERVED +CVE-2017-4992 (An issue was discovered in Cloud Foundry Foundation cf-release versions ...) + TODO: check +CVE-2017-4991 (An issue was discovered in Cloud Foundry Foundation cf-release versions ...) + TODO: check CVE-2017-4990 RESERVED CVE-2017-4989 @@ -14149,63 +14153,59 @@ NOT-FOR-US: EMC CVE-2017-4976 RESERVED -CVE-2017-4975 - RESERVED -CVE-2017-4974 - RESERVED -CVE-2017-4973 - RESERVED -CVE-2017-4972 - RESERVED -CVE-2017-4971 - RESERVED +CVE-2017-4975 (An issue was discovered in Pivotal PCF Tile Generator versions prior to ...) + TODO: check +CVE-2017-4974 (An issue was discovered in Cloud Foundry Foundation cf-release versions ...) + TODO: check +CVE-2017-4973 (An issue was discovered in Cloud Foundry Foundation cf-release versions ...) + TODO: check +CVE-2017-4972 (An issue was discovered in Cloud Foundry Foundation cf-release versions ...) + TODO: check +CVE-2017-4971 (An issue was discovered in Pivotal Spring Web Flow through 2.4.4. ...) NOT-FOR-US: Spring Web Flow -CVE-2017-4970 - RESERVED +CVE-2017-4970 (An issue was discovered in Cloud Foundry Foundation cf-release v255 and ...) + TODO: check CVE-2017-4969 (The Cloud Controller in Cloud Foundry cf-release versions prior to v255 ...) NOT-FOR-US: Cloud Foundry CVE-2017-4968 RESERVED -CVE-2017-4967 - RESERVED +CVE-2017-4967 (An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x ...) - rabbitmq-server <unfixed> (low; bug #863586) [stretch] - rabbitmq-server <no-dsa> (Minor issue) [jessie] - rabbitmq-server <no-dsa> (Minor issue) [wheezy] - rabbitmq-server <no-dsa> (Minor issue) -CVE-2017-4966 [authentication details are stored in browser-local storage without expiration] - RESERVED +CVE-2017-4966 (An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x ...) - rabbitmq-server <unfixed> (low; bug #863586) [stretch] - rabbitmq-server <no-dsa> (Minor issue) [jessie] - rabbitmq-server <not-affected> (Vulnerable code introduced later) [wheezy] - rabbitmq-server <not-affected> (Vulnerable code introduced later) NOTE: Fixed by: https://github.com/rabbitmq/rabbitmq-management/commit/2371633f99ad0d293899384f078872ff9e9f3e10 (rabbitmq_v3_6_9) NOTE: Introduced by: https://github.com/rabbitmq/rabbitmq-management/commit/ced47b0bdca862a58e8f31833643e948655f8368 (rabbitmq_v3_4_0) -CVE-2017-4965 - RESERVED +CVE-2017-4965 (An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x ...) - rabbitmq-server <unfixed> (low; bug #863586) [stretch] - rabbitmq-server <no-dsa> (Minor issue) [jessie] - rabbitmq-server <no-dsa> (Minor issue) [wheezy] - rabbitmq-server <no-dsa> (Minor issue) CVE-2017-4964 (Cloud Foundry Foundation BOSH Azure CPI v22 could potentially allow a ...) NOT-FOR-US: Cloud Foundry -CVE-2017-4963 - RESERVED +CVE-2017-4963 (An issue was discovered in Cloud Foundry Foundation Cloud Foundry ...) + TODO: check CVE-2017-4962 RESERVED -CVE-2017-4961 - RESERVED +CVE-2017-4961 (An issue was discovered in Cloud Foundry Foundation BOSH Release 261.x ...) + TODO: check CVE-2017-4960 (An issue was discovered in Cloud Foundry release v247 through v252, UAA ...) NOT-FOR-US: Cloud Foundry -CVE-2017-4959 - RESERVED +CVE-2017-4959 (An issue was discovered in Pivotal PCF Elastic Runtime 1.8.x versions ...) + TODO: check CVE-2017-4958 RESERVED CVE-2017-4957 RESERVED CVE-2017-4956 RESERVED -CVE-2017-4955 - RESERVED +CVE-2017-4955 (An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions ...) + TODO: check CVE-2016-10095 (Stack-based buffer overflow in the _TIFFVGetField function in ...) - tiff 4.0.8-2 (bug #850316) - tiff3 <removed> @@ -19975,8 +19975,8 @@ NOT-FOR-US: Labview CVE-2017-2774 RESERVED -CVE-2017-2773 - RESERVED +CVE-2017-2773 (An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions ...) + TODO: check CVE-2017-2772 RESERVED CVE-2017-2771 @@ -30479,10 +30479,10 @@ NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=d251157ac1928191af851d199a9ff255d330bec9 CVE-2016-8220 RESERVED -CVE-2016-8219 - RESERVED -CVE-2016-8218 - RESERVED +CVE-2016-8219 (An issue was discovered in Cloud Foundry Foundation cf-release versions ...) + TODO: check +CVE-2016-8218 (An issue was discovered in Cloud Foundry Foundation routing-release ...) + TODO: check CVE-2016-8217 (EMC RSA BSAFE Crypto-J versions prior to 6.2.2 has a PKCS#12 Timing ...) NOT-FOR-US: EMC RSA CVE-2016-8216 (EMC Data Domain OS (DD OS) 5.4 all versions, EMC Data Domain OS (DD OS) ...) @@ -35369,8 +35369,8 @@ NOT-FOR-US: Pivotal CVE-2016-6656 (An issue was discovered in Pivotal Greenplum before 4.3.10.0. Creation ...) NOT-FOR-US: Pivotal -CVE-2016-6655 - RESERVED +CVE-2016-6655 (An issue was discovered in Cloud Foundry Foundation Cloud Foundry ...) + TODO: check CVE-2016-6654 REJECTED CVE-2016-6653 (The MariaDB audit_plugin component in Pivotal Cloud Foundry (PCF) ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits