Author: sectracker Date: 2017-07-13 09:10:12 +0000 (Thu, 13 Jul 2017) New Revision: 53441
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-07-13 09:03:34 UTC (rev 53440) +++ data/CVE/list 2017-07-13 09:10:12 UTC (rev 53441) @@ -1,3 +1,27 @@ +CVE-2017-11208 + RESERVED +CVE-2017-11207 + RESERVED +CVE-2017-11206 + RESERVED +CVE-2017-11205 + RESERVED +CVE-2017-11204 + RESERVED +CVE-2017-11203 + RESERVED +CVE-2017-11202 (FineCMS through 2017-07-12 allows XSS in visitors.php because ...) + TODO: check +CVE-2017-11201 (application/core/controller/images.php in FineCMS through 2017-07-12 ...) + TODO: check +CVE-2017-11200 (SQL Injection exists in FineCMS through 2017-07-12 via the ...) + TODO: check +CVE-2017-11199 + RESERVED +CVE-2017-11198 (Cross-site scripting (XSS) vulnerability in ...) + TODO: check +CVE-2017-11197 + RESERVED CVE-2017-XXXX [libsndfile binheader overflow] - libsndfile 1.0.28-3 NOTE: https://github.com/erikd/libsndfile/commit/cf7a8182c2642c50f1cf90dddea9ce96a8bad2e8 @@ -51,10 +75,10 @@ NOTE: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f991af3daabaecff34684fd51fac80319d1baad1 CVE-2017-11175 RESERVED -CVE-2017-11174 - RESERVED -CVE-2017-11173 - RESERVED +CVE-2017-11174 (In install/page_dbsettings.php in the Core distribution of XOOPS ...) + TODO: check +CVE-2017-11173 (Missing anchor in generated regex for rack-cors before 0.4.1 allows a ...) + TODO: check CVE-2017-11172 RESERVED CVE-2017-1000096 @@ -10095,6 +10119,7 @@ RESERVED CVE-2017-7529 RESERVED + {DSA-3908-1 DLA-1024-1} - nginx <unfixed> (bug #868109) NOTE: http://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html CVE-2017-7528 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits