Author: sectracker Date: 2017-10-28 21:10:12 +0000 (Sat, 28 Oct 2017) New Revision: 57094
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-10-28 20:53:51 UTC (rev 57093) +++ data/CVE/list 2017-10-28 21:10:12 UTC (rev 57094) @@ -1,3 +1,5 @@ +CVE-2017-15952 + RESERVED CVE-2017-15951 (The KEYS subsystem in the Linux kernel before 4.13.10 does not ...) - linux <unfixed> NOTE: Fixed by: https://git.kernel.org/linus/363b02dab09b3226f3bd1420dad9c72b79a42a76 (v4.14-rc6) @@ -35,7 +37,7 @@ [wheezy] - binutils <ignored> (Minor issue) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=22209 NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=1b86808a86077722ee4f42ff97f836b12420bb2a - NOTE: https://blogs.gentoo.org/ago/2017/10/24/binutils-invalid-memory-read-in-find_abstract_instance_name-dwarf2-c/ + NOTE: https://blogs.gentoo.org/ago/2017/10/24/binutils-invalid-memory-read-in-find_abstract_instance_name-dwarf2-c/ CVE-2017-15937 (Artica Pandora FMS version 7.0 leaks a full installation pathname via ...) NOT-FOR-US: Artica Pandora FMS CVE-2017-15936 (In Artica Pandora FMS version 7.0, an Attacker with write Permission ...) @@ -7411,11 +7413,11 @@ CVE-2017-13091 RESERVED CVE-2017-13090 (The retr.c:fd_read_body() function is called when processing OK ...) - {DLA-1149-1} + {DSA-4008-1 DLA-1149-1} - wget 1.19.2-1 (bug #879957) NOTE: http://git.savannah.gnu.org/cgit/wget.git/commit/?id=ba6b44f6745b14dce414761a8e4b35d31b176bba CVE-2017-13089 (The http.c:skip_short_body() function is called in some circumstances, ...) - {DLA-1149-1} + {DSA-4008-1 DLA-1149-1} - wget 1.19.2-1 (bug #879957) NOTE: http://git.savannah.gnu.org/cgit/wget.git/commit/?id=d892291fb8ace4c3b734ea5125770989c215df3f CVE-2017-13088 (Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows ...) @@ -25750,7 +25752,7 @@ NOT-FOR-US: GamePanelX-V3 CVE-2017-7204 (A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. The ...) NOT-FOR-US: imdbphp -CVE-2017-7203 (A Cross-Site Scripting (XSS) was discovered in ZoneMinder 1.30.2. The ...) +CVE-2017-7203 (A Cross-Site Scripting (XSS) was discovered in ZoneMinder before ...) - zoneminder 1.30.4+dfsg-1 (bug #858329) [wheezy] - zoneminder <no-dsa> (Minor issue) NOTE: https://github.com/ZoneMinder/ZoneMinder/issues/1797 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits