Author: sectracker Date: 2017-06-29 21:10:13 +0000 (Thu, 29 Jun 2017) New Revision: 53021
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-06-29 19:57:32 UTC (rev 53020) +++ data/CVE/list 2017-06-29 21:10:13 UTC (rev 53021) @@ -1,3 +1,19 @@ +CVE-2017-10677 + RESERVED +CVE-2017-10676 + RESERVED +CVE-2017-10675 + RESERVED +CVE-2017-10674 + RESERVED +CVE-2015-9105 + RESERVED +CVE-2015-9104 + RESERVED +CVE-2015-9103 + RESERVED +CVE-2015-9102 + RESERVED CVE-2017-10673 (admin/profile.php in GetSimple CMS 3.x has XSS in a name field. ...) NOT-FOR-US: GetSimple CMS CVE-2017-10672 (Use-after-free in the XML-LibXML module through 2.0129 for Perl allows ...) @@ -2854,6 +2870,7 @@ CVE-2017-9448 (Cross-site scripting (XSS) vulnerabilities in BigTree CMS through ...) NOT-FOR-US: BigTree CMS CVE-2017-9462 (In Mercurial before 4.1.3, "hg serve --stdio" allows remote ...) + {DLA-1005-1} - mercurial <unfixed> (bug #861243) [stretch] - mercurial <no-dsa> (Minor issue) [jessie] - mercurial <no-dsa> (Minor issue) @@ -5351,8 +5368,8 @@ RESERVED CVE-2017-8614 RESERVED -CVE-2017-8613 - RESERVED +CVE-2017-8613 (Azure AD Connect Password writeback, if misconfigured during ...) + TODO: check CVE-2017-8612 RESERVED CVE-2017-8611 @@ -5419,16 +5436,16 @@ RESERVED CVE-2017-8580 RESERVED -CVE-2017-8579 - RESERVED +CVE-2017-8579 (The DirectX component in Microsoft Windows 10 Gold, 1511, 1607, 1703, ...) + TODO: check CVE-2017-8578 RESERVED CVE-2017-8577 RESERVED -CVE-2017-8576 - RESERVED -CVE-2017-8575 - RESERVED +CVE-2017-8576 (The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, ...) + TODO: check +CVE-2017-8575 (The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows ...) + TODO: check CVE-2017-8574 RESERVED CVE-2017-8573 @@ -5461,16 +5478,16 @@ RESERVED CVE-2017-8559 RESERVED -CVE-2017-8558 - RESERVED +CVE-2017-8558 (The Microsoft Malware Protection Engine running on Microsoft Forefront ...) + TODO: check CVE-2017-8557 RESERVED CVE-2017-8556 RESERVED CVE-2017-8555 (Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to ...) NOT-FOR-US: Microsoft -CVE-2017-8554 - RESERVED +CVE-2017-8554 (The kernel in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 ...) + TODO: check CVE-2017-8553 (An information disclosure vulnerability exists in Microsoft Windows ...) NOT-FOR-US: Microsoft CVE-2017-8552 (A kernel-mode driver in Microsoft Windows XP SP3, Windows XP x64 XP2, ...) @@ -14786,10 +14803,10 @@ RESERVED CVE-2017-5530 RESERVED -CVE-2017-5529 - RESERVED -CVE-2017-5528 - RESERVED +CVE-2017-5529 (JasperReports library components contain an information disclosure ...) + TODO: check +CVE-2017-5528 (Multiple JasperReports Server components contain vulnerabilities ...) + TODO: check CVE-2017-5527 (TIBCO Spotfire Server 7.0.X before 7.0.2, 7.5.x before 7.5.1, 7.6.x ...) NOT-FOR-US: TIBCO Spotfire Server CVE-2016-10162 (The php_wddx_pop_element function in ext/wddx/wddx.c in PHP 7.0.x ...) @@ -16919,8 +16936,8 @@ RESERVED CVE-2017-4998 RESERVED -CVE-2017-4997 - RESERVED +CVE-2017-4997 (EMC VASA Provider Virtual Appliance versions 8.3.x and prior has an ...) + TODO: check CVE-2017-4996 RESERVED CVE-2017-4995 @@ -19633,14 +19650,14 @@ RESERVED CVE-2017-3751 RESERVED -CVE-2017-3750 - RESERVED -CVE-2017-3749 - RESERVED -CVE-2017-3748 - RESERVED -CVE-2017-3747 - RESERVED +CVE-2017-3750 (On Lenovo VIBE mobile phones, the Lenovo Security Android application ...) + TODO: check +CVE-2017-3749 (On Lenovo VIBE mobile phones, the Idea Friend Android application ...) + TODO: check +CVE-2017-3748 (On Lenovo VIBE mobile phones, improper access controls on the ...) + TODO: check +CVE-2017-3747 (Privilege escalation vulnerability in Lenovo Nerve Center for Windows ...) + TODO: check CVE-2017-3746 RESERVED CVE-2017-3745 (In Lenovo XClarity Administrator (LXCA) before 1.3.0, if service data ...) @@ -22627,22 +22644,22 @@ RESERVED CVE-2017-2852 RESERVED -CVE-2017-2851 - RESERVED -CVE-2017-2850 - RESERVED -CVE-2017-2849 - RESERVED -CVE-2017-2848 - RESERVED -CVE-2017-2847 - RESERVED -CVE-2017-2846 - RESERVED -CVE-2017-2845 - RESERVED -CVE-2017-2844 - RESERVED +CVE-2017-2851 (In the web management interface in Foscam C1 Indoor HD cameras with ...) + TODO: check +CVE-2017-2850 (In the web management interface in Foscam C1 Indoor HD cameras with ...) + TODO: check +CVE-2017-2849 (In the web management interface in Foscam C1 Indoor HD cameras with ...) + TODO: check +CVE-2017-2848 (In the web management interface in Foscam C1 Indoor HD cameras with ...) + TODO: check +CVE-2017-2847 (In the web management interface in Foscam C1 Indoor HD cameras with ...) + TODO: check +CVE-2017-2846 (In the web management interface in Foscam C1 Indoor HD cameras with ...) + TODO: check +CVE-2017-2845 (An exploitable command injection vulnerability exists in the web ...) + TODO: check +CVE-2017-2844 (In the web management interface in Foscam C1 Indoor HD cameras with ...) + TODO: check CVE-2017-2843 (In the web management interface in Foscam C1 Indoor HD Camera running ...) NOT-FOR-US: Foscam C1 Indoor HD Camera CVE-2017-2842 (In the web management interface in Foscam C1 Indoor HD Camera running ...) @@ -26014,8 +26031,8 @@ RESERVED CVE-2017-1311 RESERVED -CVE-2017-1310 - RESERVED +CVE-2017-1310 (IBM Informix Dynamic Server 12.1 could allow an authenticated user to ...) + TODO: check CVE-2017-1309 RESERVED CVE-2017-1308 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits