Author: sectracker
Date: 2017-07-06 09:10:13 +0000 (Thu, 06 Jul 2017)
New Revision: 53213
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-06 08:46:48 UTC (rev 53212)
+++ data/CVE/list 2017-07-06 09:10:13 UTC (rev 53213)
@@ -1,3 +1,85 @@
+CVE-2017-10969
+ RESERVED
+CVE-2017-10968
+ RESERVED
+CVE-2017-10967
+ RESERVED
+CVE-2017-10966
+ RESERVED
+CVE-2017-10965
+ RESERVED
+CVE-2017-10964
+ RESERVED
+CVE-2017-10963
+ RESERVED
+CVE-2017-10962
+ RESERVED
+CVE-2017-10961
+ RESERVED
+CVE-2017-10960
+ RESERVED
+CVE-2017-10959
+ RESERVED
+CVE-2017-10958
+ RESERVED
+CVE-2017-10957
+ RESERVED
+CVE-2017-10956
+ RESERVED
+CVE-2017-10955
+ RESERVED
+CVE-2017-10954
+ RESERVED
+CVE-2017-10953
+ RESERVED
+CVE-2017-10952
+ RESERVED
+CVE-2017-10951
+ RESERVED
+CVE-2017-10950
+ RESERVED
+CVE-2017-10949
+ RESERVED
+CVE-2017-10948
+ RESERVED
+CVE-2017-10947
+ RESERVED
+CVE-2017-10946
+ RESERVED
+CVE-2017-10945
+ RESERVED
+CVE-2017-10944
+ RESERVED
+CVE-2017-10943
+ RESERVED
+CVE-2017-10942
+ RESERVED
+CVE-2017-10941
+ RESERVED
+CVE-2017-10940
+ RESERVED
+CVE-2017-10939
+ RESERVED
+CVE-2017-10938
+ RESERVED
+CVE-2017-10937
+ RESERVED
+CVE-2017-10936
+ RESERVED
+CVE-2017-10935
+ RESERVED
+CVE-2017-10934
+ RESERVED
+CVE-2017-10933
+ RESERVED
+CVE-2017-10932
+ RESERVED
+CVE-2017-10931
+ RESERVED
+CVE-2017-10930
+ RESERVED
+CVE-2016-10396 (The racoon daemon in IPsec-Tools 0.8.2 contains a remotely
exploitable ...)
+ TODO: check
CVE-2017-10929 (The grub_memmove function in shlr/grub/kern/misc.c in radare2
1.5.0 ...)
- radare2 <unfixed> (bug #867369)
[stretch] - radare2 <no-dsa> (Minor issue)
@@ -2433,7 +2515,7 @@
CVE-2017-9779
RESERVED
CVE-2012-6706 (A VMSF_DELTA memory corruption was discovered in unrar before
5.5.5, as ...)
- {DLA-1003-1}
+ {DLA-1014-1 DLA-1003-1}
- unrar-nonfree 1:5.5.5-1 (bug #865461)
[stretch] - unrar-nonfree <no-dsa> (Non-free not supported)
[jessie] - unrar-nonfree <no-dsa> (Non-free not supported)
@@ -3572,7 +3654,7 @@
[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe
issues arise)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/457
CVE-2017-9404 (In LibTIFF 4.0.7, a memory leak vulnerability was found in the
function ...)
- {DSA-3903-1 DLA-984-1 DLA-983-1}
+ {DLA-984-1 DLA-983-1}
- tiff 4.0.8-1
[jessie] - tiff 4.0.3-12.3+deb8u4
- tiff3 <removed>
@@ -3589,7 +3671,7 @@
NOTE: with backtrace following the methods in
http://bugzilla.maptools.org/show_bug.cgi?id=2688
NOTE: is shown.
CVE-2017-9403 (In LibTIFF 4.0.7, a memory leak vulnerability was found in the
function ...)
- {DSA-3903-1 DLA-984-1 DLA-983-1}
+ {DLA-984-1 DLA-983-1}
- tiff 4.0.8-1
[jessie] - tiff 4.0.3-12.3+deb8u4
- tiff3 <removed>
@@ -4501,7 +4583,7 @@
NOTE: http://freeradius.org/security.html#session-resumption-2017
NOTE:
https://anonscm.debian.org/cgit/pkg-freeradius/freeradius.git/commit/?id=8d681449aa95ee4388b5e3c266bdb070a264f563
CVE-2017-9147 (LibTIFF 4.0.7 has an invalid read in the _TIFFVGetField
function in ...)
- {DSA-3903-1 DLA-984-1 DLA-983-1}
+ {DLA-984-1 DLA-983-1}
- tiff 4.0.8-2 (bug #863185)
[jessie] - tiff 4.0.3-12.3+deb8u4
- tiff3 <removed>
@@ -9142,7 +9224,7 @@
RESERVED
CVE-2017-7526 [Use of left-to-right sliding window method allows full RSA key
recovery]
RESERVED
- {DSA-3901-1}
+ {DSA-3901-1 DLA-1015-1}
- libgcrypt20 1.7.8-1
- libgcrypt11 <removed>
NOTE: https://eprint.iacr.org/2017/627
@@ -11646,22 +11728,22 @@
NOT-FOR-US: Cisco
CVE-2017-6715 (A vulnerability in the web framework of Cisco Firepower
Management ...)
NOT-FOR-US: Cisco
-CVE-2017-6714
- RESERVED
-CVE-2017-6713
- RESERVED
-CVE-2017-6712
- RESERVED
-CVE-2017-6711
- RESERVED
+CVE-2017-6714 (A vulnerability in the AutoIT service of Cisco Ultra Services
Framework ...)
+ TODO: check
+CVE-2017-6713 (A vulnerability in the Play Framework of Cisco Elastic Services
...)
+ TODO: check
+CVE-2017-6712 (A vulnerability in certain commands of Cisco Elastic Services
...)
+ TODO: check
+CVE-2017-6711 (A vulnerability in the Ultra Automation Service (UAS) of the
Cisco ...)
+ TODO: check
CVE-2017-6710
RESERVED
-CVE-2017-6709
- RESERVED
-CVE-2017-6708
- RESERVED
-CVE-2017-6707
- RESERVED
+CVE-2017-6709 (A vulnerability in the AutoVNF tool for the Cisco Ultra
Services ...)
+ TODO: check
+CVE-2017-6708 (A vulnerability in the symbolic link (symlink) creation
functionality ...)
+ TODO: check
+CVE-2017-6707 (A vulnerability in the CLI command-parsing code of the Cisco
StarOS ...)
+ TODO: check
CVE-2017-6706 (A vulnerability in the logging subsystem of the Cisco Prime ...)
NOT-FOR-US: Cisco
CVE-2017-6705 (A vulnerability in the filesystem of the Cisco Prime
Collaboration ...)
@@ -17641,7 +17723,7 @@
CVE-2017-4955 (An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x
versions ...)
NOT-FOR-US: Pivotal PCF Elastic Runtime
CVE-2016-10095 (Stack-based buffer overflow in the _TIFFVGetField function in
...)
- {DSA-3903-1 DLA-984-1 DLA-983-1}
+ {DLA-984-1 DLA-983-1}
- tiff 4.0.8-2 (bug #850316)
[jessie] - tiff 4.0.3-12.3+deb8u4
- tiff3 <removed>
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
