Author: sectracker
Date: 2017-06-29 21:10:13 +0000 (Thu, 29 Jun 2017)
New Revision: 53021
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-29 19:57:32 UTC (rev 53020)
+++ data/CVE/list 2017-06-29 21:10:13 UTC (rev 53021)
@@ -1,3 +1,19 @@
+CVE-2017-10677
+ RESERVED
+CVE-2017-10676
+ RESERVED
+CVE-2017-10675
+ RESERVED
+CVE-2017-10674
+ RESERVED
+CVE-2015-9105
+ RESERVED
+CVE-2015-9104
+ RESERVED
+CVE-2015-9103
+ RESERVED
+CVE-2015-9102
+ RESERVED
CVE-2017-10673 (admin/profile.php in GetSimple CMS 3.x has XSS in a name
field. ...)
NOT-FOR-US: GetSimple CMS
CVE-2017-10672 (Use-after-free in the XML-LibXML module through 2.0129 for
Perl allows ...)
@@ -2854,6 +2870,7 @@
CVE-2017-9448 (Cross-site scripting (XSS) vulnerabilities in BigTree CMS
through ...)
NOT-FOR-US: BigTree CMS
CVE-2017-9462 (In Mercurial before 4.1.3, "hg serve --stdio" allows
remote ...)
+ {DLA-1005-1}
- mercurial <unfixed> (bug #861243)
[stretch] - mercurial <no-dsa> (Minor issue)
[jessie] - mercurial <no-dsa> (Minor issue)
@@ -5351,8 +5368,8 @@
RESERVED
CVE-2017-8614
RESERVED
-CVE-2017-8613
- RESERVED
+CVE-2017-8613 (Azure AD Connect Password writeback, if misconfigured during
...)
+ TODO: check
CVE-2017-8612
RESERVED
CVE-2017-8611
@@ -5419,16 +5436,16 @@
RESERVED
CVE-2017-8580
RESERVED
-CVE-2017-8579
- RESERVED
+CVE-2017-8579 (The DirectX component in Microsoft Windows 10 Gold, 1511, 1607,
1703, ...)
+ TODO: check
CVE-2017-8578
RESERVED
CVE-2017-8577
RESERVED
-CVE-2017-8576
- RESERVED
-CVE-2017-8575
- RESERVED
+CVE-2017-8576 (The graphics component in Microsoft Windows 10 Gold, 1511,
1607, 1703, ...)
+ TODO: check
+CVE-2017-8575 (The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and
Windows ...)
+ TODO: check
CVE-2017-8574
RESERVED
CVE-2017-8573
@@ -5461,16 +5478,16 @@
RESERVED
CVE-2017-8559
RESERVED
-CVE-2017-8558
- RESERVED
+CVE-2017-8558 (The Microsoft Malware Protection Engine running on Microsoft
Forefront ...)
+ TODO: check
CVE-2017-8557
RESERVED
CVE-2017-8556
RESERVED
CVE-2017-8555 (Microsoft Edge in Microsoft Windows 10 1703 allows an attacker
to ...)
NOT-FOR-US: Microsoft
-CVE-2017-8554
- RESERVED
+CVE-2017-8554 (The kernel in Microsoft Windows 7 SP1, Windows Server 2008 SP2
and R2 ...)
+ TODO: check
CVE-2017-8553 (An information disclosure vulnerability exists in Microsoft
Windows ...)
NOT-FOR-US: Microsoft
CVE-2017-8552 (A kernel-mode driver in Microsoft Windows XP SP3, Windows XP
x64 XP2, ...)
@@ -14786,10 +14803,10 @@
RESERVED
CVE-2017-5530
RESERVED
-CVE-2017-5529
- RESERVED
-CVE-2017-5528
- RESERVED
+CVE-2017-5529 (JasperReports library components contain an information
disclosure ...)
+ TODO: check
+CVE-2017-5528 (Multiple JasperReports Server components contain
vulnerabilities ...)
+ TODO: check
CVE-2017-5527 (TIBCO Spotfire Server 7.0.X before 7.0.2, 7.5.x before 7.5.1,
7.6.x ...)
NOT-FOR-US: TIBCO Spotfire Server
CVE-2016-10162 (The php_wddx_pop_element function in ext/wddx/wddx.c in PHP
7.0.x ...)
@@ -16919,8 +16936,8 @@
RESERVED
CVE-2017-4998
RESERVED
-CVE-2017-4997
- RESERVED
+CVE-2017-4997 (EMC VASA Provider Virtual Appliance versions 8.3.x and prior
has an ...)
+ TODO: check
CVE-2017-4996
RESERVED
CVE-2017-4995
@@ -19633,14 +19650,14 @@
RESERVED
CVE-2017-3751
RESERVED
-CVE-2017-3750
- RESERVED
-CVE-2017-3749
- RESERVED
-CVE-2017-3748
- RESERVED
-CVE-2017-3747
- RESERVED
+CVE-2017-3750 (On Lenovo VIBE mobile phones, the Lenovo Security Android
application ...)
+ TODO: check
+CVE-2017-3749 (On Lenovo VIBE mobile phones, the Idea Friend Android
application ...)
+ TODO: check
+CVE-2017-3748 (On Lenovo VIBE mobile phones, improper access controls on the
...)
+ TODO: check
+CVE-2017-3747 (Privilege escalation vulnerability in Lenovo Nerve Center for
Windows ...)
+ TODO: check
CVE-2017-3746
RESERVED
CVE-2017-3745 (In Lenovo XClarity Administrator (LXCA) before 1.3.0, if
service data ...)
@@ -22627,22 +22644,22 @@
RESERVED
CVE-2017-2852
RESERVED
-CVE-2017-2851
- RESERVED
-CVE-2017-2850
- RESERVED
-CVE-2017-2849
- RESERVED
-CVE-2017-2848
- RESERVED
-CVE-2017-2847
- RESERVED
-CVE-2017-2846
- RESERVED
-CVE-2017-2845
- RESERVED
-CVE-2017-2844
- RESERVED
+CVE-2017-2851 (In the web management interface in Foscam C1 Indoor HD cameras
with ...)
+ TODO: check
+CVE-2017-2850 (In the web management interface in Foscam C1 Indoor HD cameras
with ...)
+ TODO: check
+CVE-2017-2849 (In the web management interface in Foscam C1 Indoor HD cameras
with ...)
+ TODO: check
+CVE-2017-2848 (In the web management interface in Foscam C1 Indoor HD cameras
with ...)
+ TODO: check
+CVE-2017-2847 (In the web management interface in Foscam C1 Indoor HD cameras
with ...)
+ TODO: check
+CVE-2017-2846 (In the web management interface in Foscam C1 Indoor HD cameras
with ...)
+ TODO: check
+CVE-2017-2845 (An exploitable command injection vulnerability exists in the
web ...)
+ TODO: check
+CVE-2017-2844 (In the web management interface in Foscam C1 Indoor HD cameras
with ...)
+ TODO: check
CVE-2017-2843 (In the web management interface in Foscam C1 Indoor HD Camera
running ...)
NOT-FOR-US: Foscam C1 Indoor HD Camera
CVE-2017-2842 (In the web management interface in Foscam C1 Indoor HD Camera
running ...)
@@ -26014,8 +26031,8 @@
RESERVED
CVE-2017-1311
RESERVED
-CVE-2017-1310
- RESERVED
+CVE-2017-1310 (IBM Informix Dynamic Server 12.1 could allow an authenticated
user to ...)
+ TODO: check
CVE-2017-1309
RESERVED
CVE-2017-1308
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
