Author: sectracker Date: 2017-06-25 09:10:12 +0000 (Sun, 25 Jun 2017) New Revision: 52897
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-06-25 09:06:49 UTC (rev 52896) +++ data/CVE/list 2017-06-25 09:10:12 UTC (rev 52897) @@ -1,3 +1,35 @@ +CVE-2017-9864 + RESERVED +CVE-2017-9863 + RESERVED +CVE-2017-9862 + RESERVED +CVE-2017-9861 + RESERVED +CVE-2017-9860 + RESERVED +CVE-2017-9859 + RESERVED +CVE-2017-9858 + RESERVED +CVE-2017-9857 + RESERVED +CVE-2017-9856 + RESERVED +CVE-2017-9855 + RESERVED +CVE-2017-9854 + RESERVED +CVE-2017-9853 + RESERVED +CVE-2017-9852 + RESERVED +CVE-2017-9851 + RESERVED +CVE-2017-9850 + RESERVED +CVE-2017-9849 + RESERVED CVE-2017-9848 (SQL injection vulnerability in C_InfoService.asmx in WebServices in ...) NOT-FOR-US: Easysite CVE-2017-9847 (The bdecode function in bdecode.cpp in libtorrent 1.1.3 allows remote ...) @@ -1503,7 +1535,7 @@ - eglibc <removed> NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt CVE-2017-1000369 (Exim supports the use of multiple "-p" command line arguments which ...) - {DSA-3888-1} + {DSA-3888-1 DLA-1001-1} - exim4 4.89-3 NOTE: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt CVE-2017-1000370 (The offset2lib patch as used in the Linux Kernel contains a ...) @@ -2188,12 +2220,14 @@ CVE-2017-9502 (In curl before 7.54.1 on Windows and DOS, libcurl's default protocol ...) - curl <not-affected> (Windows only) CVE-2017-9501 (In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the ...) + {DLA-1000-1} - imagemagick <unfixed> (low) [stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) NOTE: https://github.com/ImageMagick/ImageMagick/issues/491 NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/01843366d6a7b96e22ad7bb67f3df7d9fd4d5d74 CVE-2017-9500 (In ImageMagick 7.0.5-8 Q16, an assertion failure was found in the ...) + {DLA-1000-1} - imagemagick <unfixed> (low) [stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) @@ -2357,6 +2391,7 @@ NOTE: https://github.com/ImageMagick/ImageMagick/issues/462 NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/c2be129c25763680afeca59f4de5d6d4240ca2cf CVE-2017-9439 (In ImageMagick 7.0.5-5, a memory leak was found in the function ...) + {DLA-1000-1} - imagemagick <unfixed> (low; bug #864274) [stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) @@ -2441,6 +2476,7 @@ CVE-2017-9410 RESERVED CVE-2017-9409 (In ImageMagick 7.0.5-5, the ReadMPCImage function in mpc.c allows ...) + {DLA-1000-1} - imagemagick 8:6.9.7.4+dfsg-11 (low; bug #864090) [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) NOTE: https://github.com/ImageMagick/ImageMagick/issues/458 @@ -2452,6 +2488,7 @@ NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=100776 NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=b21b041f7948680c03109f0c404400a9dbc4544c CVE-2017-9407 (In ImageMagick 7.0.5-5, the ReadPALMImage function in palm.c allows ...) + {DLA-1000-1} - imagemagick 8:6.9.7.4+dfsg-11 (low; bug #864089) [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) NOTE: https://github.com/ImageMagick/ImageMagick/issues/459 @@ -2463,6 +2500,7 @@ NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=100775 NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=278439531b13b0b047dbe3a75aa3f1b3407c8bd4 CVE-2017-9405 (In ImageMagick 7.0.5-5, the ReadICONImage function in icon.c:452 allows ...) + {DLA-1000-1} - imagemagick 8:6.9.7.4+dfsg-11 (low; bug #864087) [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) NOTE: https://github.com/ImageMagick/ImageMagick/issues/457 @@ -3008,11 +3046,13 @@ [wheezy] - openvswitch <not-affected> (No controllers implemented, cf. #863655) NOTE: https://mail.openvswitch.org/pipermail/ovs-dev/2017-May/332966.html CVE-2017-9262 (In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c ...) + {DLA-1000-1} - imagemagick 8:6.9.7.4+dfsg-10 (low; bug #863834) [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise) NOTE: https://github.com/ImageMagick/ImageMagick/issues/475 NOTE: https://github.com/ImageMagick/ImageMagick/commit/4649578df8dcbfb2b08d8623d52486dc124da3a8 CVE-2017-9261 (In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c ...) + {DLA-1000-1} - imagemagick 8:6.9.7.4+dfsg-10 (low; bug #863833) [jessie] - imagemagick <no-dsa> (Minor issue) NOTE: https://github.com/ImageMagick/ImageMagick/issues/476 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits