Author: sectracker Date: 2017-11-30 09:10:14 +0000 (Thu, 30 Nov 2017) New Revision: 58135
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-11-30 07:48:36 UTC (rev 58134) +++ data/CVE/list 2017-11-30 09:10:14 UTC (rev 58135) @@ -1,3 +1,5 @@ +CVE-2017-17067 (Splunk Web in Splunk Enterprise 7.0.x before 7.0.0.1, 6.6.x before ...) + TODO: check CVE-2017-17066 RESERVED CVE-2017-17065 @@ -1575,6 +1577,7 @@ [wheezy] - libsndfile <no-dsa> (Minor issue) NOTE: https://github.com/erikd/libsndfile/issues/341 CVE-2017-16944 (The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 ...) + {DSA-4053-1} - exim4 4.89-13 (bug #882671) [jessie] - exim4 <not-affected> (ESMTP CHUNKING extension introduced in 4.88) [wheezy] - exim4 <not-affected> (ESMTP CHUNKING extension introduced in 4.88) @@ -1583,6 +1586,7 @@ NOTE: https://lists.exim.org/lurker/message/20171125.034842.d1d75cac.en.html NOTE: 4.89-10 adds a workaround which disables the affected code by default CVE-2017-16943 (The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 ...) + {DSA-4053-1} - exim4 4.89-12 (bug #882648) [jessie] - exim4 <not-affected> (ESMTP CHUNKING extension introduced in 4.88) [wheezy] - exim4 <not-affected> (ESMTP CHUNKING extension introduced in 4.88) @@ -1745,6 +1749,7 @@ CVE-2017-1000406 NOT-FOR-US: OpenDayLight CVE-2017-1000405 ["Dirty COW" variant on transparent huge pages] + RESERVED - linux <unfixed> NOTE: Fixed by: https://git.kernel.org/linus/a8f97366452ed491d13cf1e44241bc0b5740b1f0 NOTE: http://www.openwall.com/lists/oss-security/2017/11/30/1 @@ -8650,8 +8655,8 @@ RESERVED CVE-2017-14592 RESERVED -CVE-2017-14591 - RESERVED +CVE-2017-14591 (Atlassian Fisheye and Crucible versions less than 4.4.3 and version ...) + TODO: check CVE-2017-14590 RESERVED CVE-2017-14589 @@ -9762,12 +9767,12 @@ RESERVED CVE-2017-14199 RESERVED -CVE-2017-14198 - RESERVED -CVE-2017-14197 - RESERVED -CVE-2017-14196 - RESERVED +CVE-2017-14198 (An issue was discovered in Squiz Matrix before 5.3.6.1 and 5.4.x before ...) + TODO: check +CVE-2017-14197 (An issue was discovered in Squiz Matrix before 5.3.6.1 and 5.4.x before ...) + TODO: check +CVE-2017-14196 (An issue was discovered in Squiz Matrix from 5.3 through to 5.3.6.1 and ...) + TODO: check CVE-2017-14195 (The call_msg function in controllers/Form.php in dayrui FineCms 5.0.11 ...) NOT-FOR-US: dayrui FineCms CVE-2017-14194 (The out function in controllers/member/Login.php in dayrui FineCms ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits