Author: sectracker
Date: 2016-06-14 21:10:09 +0000 (Tue, 14 Jun 2016)
New Revision: 42536
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-14 20:57:07 UTC (rev 42535)
+++ data/CVE/list 2016-06-14 21:10:09 UTC (rev 42536)
@@ -338,8 +338,8 @@
RESERVED
CVE-2016-5303
RESERVED
-CVE-2016-5302
- RESERVED
+CVE-2016-5302 (Citrix XenServer 7.0 before Hotfix XS70E003, when a deployment
has ...)
+ TODO: check
CVE-2015-8914
RESERVED
- neutron <unfixed>
@@ -746,8 +746,8 @@
[wheezy] - qemu-kvm <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1341931
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2016-06/msg00150.html
-CVE-2016-5234
- RESERVED
+CVE-2016-5234 (Buffer overflow in Huawei VP9660, VP9650, and VP9630 multipoint
...)
+ TODO: check
CVE-2016-5233 (Huawei Mate 8 smartphones with software NXT-AL10 before ...)
TODO: check
CVE-2016-5232
@@ -1455,8 +1455,7 @@
NOTE: Introduced after:
http://git.qemu.org/?p=qemu.git;a=commit;h=e8f943c3bcc2a578bfd30b825f2ebaf345c63a09
(v1.2.0-rc0)
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg04419.html
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1339583
-CVE-2016-5104
- RESERVED
+CVE-2016-5104 (The socket_create function in common/socket.c in
libimobiledevice and ...)
- libimobiledevice 1.2.0+dfsg-3 (bug #825553)
[jessie] - libimobiledevice <no-dsa> (Minor issue)
[wheezy] - libimobiledevice <not-affected> (Vulnerable code not present)
@@ -1473,12 +1472,14 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/05/25/8
CVE-2016-5096 [int/size_t confusion in fread]
RESERVED
+ {DSA-3602-1}
- php5 5.6.22+dfsg-1
NOTE: PHP bug: https://bugs.php.net/bug.php?id=72114
NOTE: Fixed in 5.6.22, 5.5.36
NOTE: http://www.openwall.com/lists/oss-security/2016/05/25/3
CVE-2016-5095 [don't create strings with lengths outside int range]
RESERVED
+ {DSA-3602-1}
- php5 5.6.22+dfsg-1
NOTE: PHP bug: https://bugs.php.net/bug.php?id=72135
NOTE: Fixed in 5.6.22, 5.5.36
@@ -1486,12 +1487,14 @@
NOTE: For the additional issue reported in the "[2016-05-17 12:55 UTC]"
comment
CVE-2016-5094 [don't create strings with lengths outside int range]
RESERVED
+ {DSA-3602-1}
- php5 5.6.22+dfsg-1
NOTE: PHP bug: https://bugs.php.net/bug.php?id=72135
NOTE: Fixed in 5.6.22, 5.5.36
NOTE: http://www.openwall.com/lists/oss-security/2016/05/25/3
CVE-2016-5093 [get_icu_value_internal out-of-bounds read]
RESERVED
+ {DSA-3602-1}
- php7.0 7.0.7-1
- php5 5.6.22+dfsg-1
NOTE: PHP bug: https://bugs.php.net/bug.php?id=72241
@@ -1499,7 +1502,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/05/25/3
CVE-2013-7456 [Fixed memory overrun bug in gdImageScaleTwoPass]
RESERVED
- {DSA-3587-1}
+ {DSA-3602-1 DSA-3587-1}
- libgd2 2.1.1-1
[wheezy] - libgd2 <not-affected> (Vulnerable code not present)
NOTE:
https://github.com/libgd/libgd/commit/4f65a3e4eedaffa1efcf9ee1eb08f0b504fbc31a
(gd-2.1.1)
@@ -2022,8 +2025,7 @@
RESERVED
- openslp-dfsg <not-affected> (Vulnerable code not present)
NOTE: Issue present only in OpenSLP 2.x where the return from malloc
isn't checked.
-CVE-2016-4911 [Incorrect Audit IDs in Keystone Fernet Tokens can result in
revocation bypass]
- RESERVED
+CVE-2016-4911 (The Fernet Token Provider in OpenStack Identity (Keystone)
9.0.x ...)
- keystone 2:9.0.0-2 (bug #824683)
[jessie] - keystone <not-affected> (affects only 9.0.0)
[wheezy] - keystone <not-affected> (affects only 9.0.0)
@@ -2545,16 +2547,14 @@
[wheezy] - linux <not-affected> (Vulnerable code introduced later)
NOTE: Fixed by:
https://git.kernel.org/linus/5ec0811d30378ae104f250bfc9b3640242d81e3f (v4.6-rc7)
NOTE: Introduced by:
https://git.kernel.org/linus/f2ebb3a921c1ca1e2ddd9242e95a1989a50c4c68
(v3.15-rc1)
-CVE-2016-4579
- RESERVED
+CVE-2016-4579 (Libksba before 1.3.4 allows remote attackers to cause a denial
of ...)
{DLA-470-1}
- libksba 1.3.4-3
[jessie] - libksba 1.3.2-1+deb8u1
NOTE:
http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=commit;h=a7eed17a0b2a1c09ef986f3b4b323cd31cea2b64
CVE-2016-4572
RESERVED
-CVE-2016-4574 [incomplete fix for CVE-2016-4356]
- RESERVED
+CVE-2016-4574 (Off-by-one error in the append_utf8_value function in the DN
decoder ...)
- libksba 1.3.4-3
[jessie] - libksba <not-affected> (Incomplete fix not applied)
[wheezy] - libksba <not-affected> (Incomplete fix not applied)
@@ -2886,7 +2886,7 @@
NOTE: https://gcc.gnu.org/ml/gcc-patches/2016-03/msg01687.html
TODO: check
CVE-2016-4539 (The xml_parse_into_struct function in ext/xml/xml.c in PHP
before ...)
- {DLA-499-1}
+ {DSA-3602-1 DLA-499-1}
- php7.0 7.0.6-1
- php5 5.6.21+dfsg-1
- hhvm <unfixed>
@@ -2896,7 +2896,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/05/05/21
NOTE: HHVM fix:
https://github.com/facebook/hhvm/commit/7290b3bbcaa1e10a8d807fab3242204e9ec3a015
CVE-2016-4537 (The bcpowmod function in ext/bcmath/bcmath.c in PHP before
5.5.35, ...)
- {DLA-499-1}
+ {DSA-3602-1 DLA-499-1}
- php7.0 7.0.6-1
- php5 5.6.21+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=72093
@@ -2904,6 +2904,7 @@
NOTE: Fixed in 7.0.6, 5.6.21, 5.5.35
NOTE: http://www.openwall.com/lists/oss-security/2016/05/05/21
CVE-2016-4538 (The bcpowmod function in ext/bcmath/bcmath.c in PHP before
5.5.35, ...)
+ {DSA-3602-1}
- php7.0 7.0.6-1
- php5 5.6.21+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=72093
@@ -2911,7 +2912,7 @@
NOTE: Fixed in 7.0.6, 5.6.21, 5.5.35
NOTE: http://www.openwall.com/lists/oss-security/2016/05/05/21
CVE-2016-4540 (The grapheme_stripos function in
ext/intl/grapheme/grapheme_string.c ...)
- {DLA-499-1}
+ {DSA-3602-1 DLA-499-1}
- php7.0 7.0.6-1
- php5 5.6.21+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=72061
@@ -2919,7 +2920,7 @@
NOTE: Fixed in 7.0.6, 5.6.21, 5.5.35
NOTE: http://www.openwall.com/lists/oss-security/2016/05/05/21
CVE-2016-4541 (The grapheme_strpos function in
ext/intl/grapheme/grapheme_string.c in ...)
- {DLA-499-1}
+ {DSA-3602-1 DLA-499-1}
- php7.0 7.0.6-1
- php5 5.6.21+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=72061
@@ -2927,7 +2928,7 @@
NOTE: Fixed in 7.0.6, 5.6.21, 5.5.35
NOTE: http://www.openwall.com/lists/oss-security/2016/05/05/21
CVE-2016-4542 (The exif_process_IFD_TAG function in ext/exif/exif.c in PHP
before ...)
- {DLA-499-1}
+ {DSA-3602-1 DLA-499-1}
- php7.0 7.0.6-1
- php5 5.6.21+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=72094
@@ -2935,7 +2936,7 @@
NOTE: Fixed in 7.0.6, 5.6.21, 5.5.35
NOTE: http://www.openwall.com/lists/oss-security/2016/05/05/21
CVE-2016-4543 (The exif_process_IFD_in_JPEG function in ext/exif/exif.c in PHP
before ...)
- {DLA-499-1}
+ {DSA-3602-1 DLA-499-1}
- php7.0 7.0.6-1
- php5 5.6.21+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=72094
@@ -2943,7 +2944,7 @@
NOTE: Fixed in 7.0.6, 5.6.21, 5.5.35
NOTE: http://www.openwall.com/lists/oss-security/2016/05/05/21
CVE-2016-4544 (The exif_process_TIFF_in_JPEG function in ext/exif/exif.c in
PHP ...)
- {DLA-499-1}
+ {DSA-3602-1 DLA-499-1}
- php7.0 7.0.6-1
- php5 5.6.21+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=72094
@@ -3281,9 +3282,9 @@
NOT-FOR-US: HPE Insight Control
CVE-2016-4361 (HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1,
12.01 ...)
NOT-FOR-US: HPE LoadRunner
-CVE-2016-4360 (HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1,
12.01 ...)
+CVE-2016-4360 (The import_csv functionality in HPE LoadRunner 11.52 through
patch 3, ...)
NOT-FOR-US: HPE LoadRunner
-CVE-2016-4359 (HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1,
12.01 ...)
+CVE-2016-4359 (Stack-based buffer overflow in mchan.dll in HPE LoadRunner
11.52 ...)
NOT-FOR-US: HPE LoadRunner
CVE-2016-4358 (HPE Matrix Operating Environment before 7.5.1 allows remote
attackers ...)
NOT-FOR-US: HPE Matrix Operating Environment
@@ -3293,16 +3294,14 @@
NOT-FOR-US: Trend Micro
CVE-2016-4350 (Multiple SQL injection vulnerabilities in the Web Services web
server ...)
NOT-FOR-US: SolarWinds Storage Resource Monitor
-CVE-2014-9773 [A remote attacker could change Atheme's behavior by
registering/dropping certain accounts/nicks]
- RESERVED
+CVE-2014-9773 (modules/chanserv/flags.c in Atheme before 7.2.7 allows remote
...)
- atheme-services 7.0.7-2
[jessie] - atheme-services <not-affected> (Vulnerable code introduced
later)
NOTE: https://github.com/atheme/atheme/issues/397
NOTE: Fixed by:
https://github.com/atheme/atheme/commit/c597156adc60a45b5f827793cd420945f47bc03b
NOTE: Introduced in:
https://github.com/atheme/atheme/commit/5c734f28068cf47b9b450af4dcf37195734b15be
NOTE: http://www.openwall.com/lists/oss-security/2016/05/02/2
-CVE-2016-4478 [denial of service due to a buffer overflow in the XMLRPC
response encoding code]
- RESERVED
+CVE-2016-4478 (Buffer overflow in the xmlrpc_char_encode function in ...)
{DSA-3586-1}
- atheme-services 7.0.7-2
NOTE:
https://github.com/atheme/atheme/commit/87580d767868360d2fed503980129504da84b63e
@@ -3319,8 +3318,7 @@
NOTE: Introduced in:
https://bazaar.launchpad.net/~ltsp-upstream/ltsp/libpam-sshauth/revision/93/src/pam_sshauth.c
NOTE: Fixed in:
https://bazaar.launchpad.net/~ltsp-upstream/ltsp/libpam-sshauth/revision/114
NOTE: http://www.openwall.com/lists/oss-security/2016/05/01/2
-CVE-2016-4414 [denial of service]
- RESERVED
+CVE-2016-4414 (The onReadyRead function in core/coreauthhandler.cpp in Quassel
before ...)
- quassel 1:0.12.4-2 (bug #826402)
[jessie] - quassel <no-dsa> (Minor issue)
[wheezy] - quassel <not-affected> (Vulnerable code introduced with
0.10.0)
@@ -3339,8 +3337,7 @@
NOTE: https://trac.mplayerhq.hu/ticket/2295
NOTE: Fixed in Revision r37857 upstream
NOTE: http://www.openwall.com/lists/oss-security/2016/04/29/3
-CVE-2015-8869 [buffer overflow and information leak]
- RESERVED
+CVE-2015-8869 (OCamel before 4.03.0 does not properly handle sign extensions,
which ...)
{DLA-466-1}
- ocaml <unfixed> (bug #824139)
[jessie] - ocaml <no-dsa> (Minor issue; can be fixed via point release
and sheduling binNMUs there)
@@ -4222,8 +4219,8 @@
- imlib2 1.4.8-1 (bug #821732)
NOTE: Upstream fix:
https://git.enlightenment.org/legacy/imlib2.git/commit/?id=7eba2e4c8ac0e20838947f10f29d0efe1add8227
NOTE: http://www.openwall.com/lists/oss-security/2016/04/14/5
-CVE-2016-4005
- RESERVED
+CVE-2016-4005 (The Huawei Hilink App application before 3.19.2 for Android
does not ...)
+ TODO: check
CVE-2016-4004 (Directory traversal vulnerability in Dell OpenManage Server ...)
NOT-FOR-US: Dell
CVE-2016-4003 (Cross-site scripting (XSS) vulnerability in the URLDecoder
function in ...)
@@ -5123,8 +5120,7 @@
RESERVED
CVE-2016-3699
RESERVED
-CVE-2016-3698 [denial of service due to insufficient validation of source of
NDP messages]
- RESERVED
+CVE-2016-3698 (libndp before 1.6, as used in NetworkManager, does not properly
...)
{DSA-3581-1}
- libndp 1.6-1 (bug #824545)
NOTE:
https://github.com/jpirko/libndp/commit/a4892df306e0532487f1634ba6d4c6d4bb381c7f
@@ -5184,8 +5180,8 @@
NOTE: libv8 not covered by security support
CVE-2016-3678 (Huawei Quidway S9700, S5700, S5300, S9300, and S7700 switches
with ...)
NOT-FOR-US: Huawei
-CVE-2016-3677
- RESERVED
+CVE-2016-3677 (The Huawei Wear App application before 15.0.0.307 for Android
does not ...)
+ TODO: check
CVE-2016-3676 (Huawei E3276s USB modems with software before ...)
NOT-FOR-US: Huawei
CVE-2016-3675 (SQL injection vulnerability in Huawei Policy Center with
software ...)
@@ -5209,8 +5205,8 @@
NOTE: http://x-stream.github.io/changes.html#1.4.9
CVE-2016-3671
RESERVED
-CVE-2016-3670
- RESERVED
+CVE-2016-3670 (Cross-site scripting (XSS) vulnerability in users.jsp in the
Profile ...)
+ TODO: check
CVE-2016-3669
RESERVED
CVE-2016-3668
@@ -6579,7 +6575,7 @@
[wheezy] - eglibc <no-dsa> (Minor issue, can be fixed via point release)
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=19879
CVE-2016-3074 (Integer signedness error in GD Graphics Library 2.1.1 (aka
libgd or ...)
- {DSA-3556-1}
+ {DSA-3602-1 DSA-3556-1}
- libgd2 2.1.1-4.1 (bug #822242)
- php5 5.6.21+dfsg-1 (unimportant)
- php7.0 7.0.6-1 (unimportant)
@@ -6713,6 +6709,7 @@
RESERVED
CVE-2016-3062
RESERVED
+ {DSA-3603-1 DLA-515-1}
- libav <removed>
NOTE:
https://git.libav.org/?p=libav.git;a=commit;h=7e01d48cfd168c3dfc663f03a3b6a98e0ecba328
NOTE:
https://git.libav.org/?p=libav.git;a=commit;h=5fdcbc4a7cd81114a9f47bcb3040ca510bd6360d
(11.7)
@@ -9659,8 +9656,7 @@
- libpdfbox-java 1:1.8.12-1
NOTE: Fixed on upstream 1.8 branch in
https://svn.apache.org/viewvc?view=revision&revision=1739564
NOTE: Fixed on upstream 2.0 branch in
https://svn.apache.org/viewvc?view=revision&revision=1739565
-CVE-2016-2174
- RESERVED
+CVE-2016-2174 (SQL injection vulnerability in the policy admin tool in Apache
Ranger ...)
NOT-FOR-US: Apache Ranger
CVE-2016-2173
RESERVED
@@ -12095,10 +12091,10 @@
NOTE: Fix spread across multiple commits:
https://github.com/tatsuhiro-t/nghttp2/compare/v1.7.0...v1.7.1
NOTE: Commits between 1.7.0 and 1.7.1 seem almost limited to this
issue, cf.
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1308461#c3
-CVE-2016-1543
- RESERVED
-CVE-2016-1542
- RESERVED
+CVE-2016-1543 (The RPC API in RSCD agent in BMC BladeLogic Server Automation
(BSA) ...)
+ TODO: check
+CVE-2016-1542 (The RPC API in RSCD agent in BMC BladeLogic Server Automation
(BSA) ...)
+ TODO: check
CVE-2016-1541 (Heap-based buffer overflow in the zip_read_mac_metadata
function in ...)
{DSA-3574-1}
[experimental] - libarchive 3.2.0-1
@@ -32753,8 +32749,7 @@
- linux-2.6 <not-affected> (TCP Fast Open introduced in v3.6-rc1)
NOTE: http://www.openwall.com/lists/oss-security/2015/04/14/14
NOTE: http://thread.gmane.org/gmane.linux.network/359588
-CVE-2016-4353 [denial of service due to stack overflow in src/ber-decoder.c]
- RESERVED
+CVE-2016-4353 (ber-decoder.c in Libksba before 1.3.3 does not properly handle
decoder ...)
- libksba 1.3.3-1 (low)
[jessie] - libksba 1.3.2-1+deb8u1
[wheezy] - libksba <no-dsa> (Minor issue)
@@ -32762,8 +32757,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/04/13/5
NOTE: http://www.openwall.com/lists/oss-security/2016/04/29/5
NOTE:
http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=commit;h=07116a314f4dcd4d96990bbd74db95a03a9f650a
-CVE-2016-4355
- RESERVED
+CVE-2016-4355 (Multiple integer overflows in ber-decoder.c in Libksba before
1.3.3 ...)
- libksba 1.3.3-1 (low)
[jessie] - libksba 1.3.2-1+deb8u1
[wheezy] - libksba <no-dsa> (Minor issue)
@@ -32771,8 +32765,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/04/13/5
NOTE: http://www.openwall.com/lists/oss-security/2016/04/29/5
NOTE:
http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=commit;h=aea7b6032865740478ca4b706850a5217f1c3887
-CVE-2016-4354
- RESERVED
+CVE-2016-4354 (ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer
data ...)
- libksba 1.3.3-1 (low)
[jessie] - libksba 1.3.2-1+deb8u1
[wheezy] - libksba <no-dsa> (Minor issue)
@@ -32780,8 +32773,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/04/13/5
NOTE: http://www.openwall.com/lists/oss-security/2016/04/29/5
NOTE:
http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=commit;h=aea7b6032865740478ca4b706850a5217f1c3887
-CVE-2016-4356
- RESERVED
+CVE-2016-4356 (The append_utf8_value function in the DN decoder (dn.c) in
Libksba ...)
- libksba 1.3.3-1 (low)
[jessie] - libksba 1.3.2-1+deb8u1
[wheezy] - libksba <no-dsa> (Minor issue)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
