Author: sectracker Date: 2016-02-12 21:10:13 +0000 (Fri, 12 Feb 2016) New Revision: 39637
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-02-12 20:53:58 UTC (rev 39636) +++ data/CVE/list 2016-02-12 21:10:13 UTC (rev 39637) @@ -1,7 +1,39 @@ +CVE-2016-2330 (libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a ...) + TODO: check +CVE-2016-2329 (libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly validate ...) + TODO: check +CVE-2016-2328 (libswscale/swscale_unscaled.c in FFmpeg before 2.8.6 does not validate ...) + TODO: check +CVE-2016-2327 (libavcodec/pngenc.c in FFmpeg before 2.8.5 uses incorrect line sizes ...) + TODO: check +CVE-2016-2326 (Integer overflow in the asf_write_packet function in ...) + TODO: check +CVE-2016-2325 + RESERVED +CVE-2016-2324 + RESERVED +CVE-2016-2323 + RESERVED +CVE-2016-2322 + RESERVED +CVE-2016-2321 + RESERVED +CVE-2016-2320 + RESERVED +CVE-2016-2319 + RESERVED +CVE-2016-2316 + RESERVED +CVE-2016-2315 + RESERVED +CVE-2016-2314 + RESERVED CVE-2016-2318 + RESERVED - graphicsmagick <unfixed> TODO: check other versions (newest 1.3.23 is according to reporter) CVE-2016-2317 + RESERVED - graphicsmagick <unfixed> TODO: check other versions (newest 1.3.23 is according to reporter) CVE-2016-2311 @@ -143,6 +175,7 @@ CVE-2016-2243 RESERVED CVE-2015-8812 [Flaw in CXGB3 driver] + RESERVED - linux <unfixed> - linux-2.6 <removed> NOTE: http://www.openwall.com/lists/oss-security/2016/02/11/1 @@ -1072,8 +1105,8 @@ RESERVED CVE-2016-1987 RESERVED -CVE-2016-1986 - RESERVED +CVE-2016-1986 (HP Continuous Delivery Automation (CDA) 1.30 allows remote attackers ...) + TODO: check CVE-2016-1985 (HPE Operations Manager 8.x and 9.0 on Windows allows remote attackers ...) NOT-FOR-US: HPE Operations Manager CVE-2016-1984 (The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices ...) @@ -2181,6 +2214,7 @@ NOTE: http://xenbits.xen.org/xsa/advisory-167.html TODO: check CVE-2016-1567 (chrony before 1.31.2 and 2.x before 2.2.1 do not verify peer ...) + {DLA-414-1} - chrony <unfixed> (low; bug #812923) [jessie] - chrony <no-dsa> (Minor issue) [wheezy] - chrony <no-dsa> (Minor issue) @@ -2793,16 +2827,16 @@ RESERVED CVE-2016-1325 RESERVED -CVE-2016-1324 - RESERVED -CVE-2016-1323 - RESERVED -CVE-2016-1322 - RESERVED +CVE-2016-1324 (The REST interface in Cisco Spark 2015-06 allows remote attackers to ...) + TODO: check +CVE-2016-1323 (The REST interface in Cisco Spark 2015-06 allows remote authenticated ...) + TODO: check +CVE-2016-1322 (The REST interface in Cisco Spark 2015-07-04 allows remote attackers ...) + TODO: check CVE-2016-1321 RESERVED -CVE-2016-1320 - RESERVED +CVE-2016-1320 (The CLI in Cisco Prime Collaboration 9.0 and 11.0 allows local users ...) + TODO: check CVE-2016-1319 (Cisco Unified Communications Manager (aka CallManager) ...) TODO: check CVE-2016-1318 (Cross-site scripting (XSS) vulnerability in Cisco Application Policy ...) @@ -2811,8 +2845,8 @@ TODO: check CVE-2016-1316 (Cisco TelePresence Video Communication Server (VCS) X8.1 through X8.7, ...) TODO: check -CVE-2016-1315 - RESERVED +CVE-2016-1315 (The proxy engine in Cisco Advanced Malware Protection (AMP), when used ...) + TODO: check CVE-2016-1314 RESERVED CVE-2016-1313 @@ -2867,8 +2901,7 @@ RESERVED CVE-2016-1288 RESERVED -CVE-2016-1287 - RESERVED +CVE-2016-1287 (Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA ...) NOT-FOR-US: Cisco ASA CVE-2016-1286 RESERVED @@ -4413,10 +4446,10 @@ RESERVED CVE-2016-0883 RESERVED -CVE-2016-0882 - RESERVED -CVE-2016-0881 - RESERVED +CVE-2016-0882 (EMC Documentum xCP 2.1 before patch 23 and 2.2 before patch 11 allows ...) + TODO: check +CVE-2016-0881 (EMC Documentum xCP 2.1 before patch 23 and 2.2 before patch 11 allows ...) + TODO: check CVE-2015-8610 RESERVED CVE-2015-8609 @@ -9896,6 +9929,7 @@ NOTE: https://lists.gnu.org/archive/html/qemu-devel/2015-11/msg06341.html CVE-2015-7511 RESERVED + {DSA-3474-1} - libgcrypt20 1.6.5-2 - libgcrypt11 <removed> NOTE: http://www.cs.tau.ac.IL/~tromer/ecdh/ _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits