Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: f35aabfc by security tracker role at 2018-09-06T20:11:16Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,160 @@ +CVE-2018-16617 + RESERVED +CVE-2018-16616 + RESERVED +CVE-2018-16615 + RESERVED +CVE-2018-16614 + RESERVED +CVE-2018-16613 + RESERVED +CVE-2018-16612 + RESERVED +CVE-2018-16611 + RESERVED +CVE-2018-16610 + RESERVED +CVE-2018-16609 + RESERVED +CVE-2018-16608 + RESERVED +CVE-2018-16607 + RESERVED +CVE-2018-16606 (In ProConf before 6.1, an Insecure Direct Object Reference (IDOR) ...) + TODO: check +CVE-2018-16605 + RESERVED +CVE-2018-16604 (An issue was discovered in Nibbleblog v4.0.5. With an admin's username ...) + TODO: check +CVE-2018-16603 + RESERVED +CVE-2018-16602 + RESERVED +CVE-2018-16601 + RESERVED +CVE-2018-16600 + RESERVED +CVE-2018-16599 + RESERVED +CVE-2018-16598 + RESERVED +CVE-2018-16597 + RESERVED +CVE-2018-16596 + RESERVED +CVE-2018-16595 + RESERVED +CVE-2018-16594 + RESERVED +CVE-2018-16593 + RESERVED +CVE-2018-16592 + RESERVED +CVE-2018-16591 + RESERVED +CVE-2018-16590 + RESERVED +CVE-2018-16589 + RESERVED +CVE-2018-16588 + RESERVED +CVE-2018-16587 + RESERVED +CVE-2018-16586 + RESERVED +CVE-2018-16584 + RESERVED +CVE-2018-16583 + RESERVED +CVE-2018-16582 + RESERVED +CVE-2018-16581 + RESERVED +CVE-2018-16580 + RESERVED +CVE-2018-16579 + RESERVED +CVE-2018-16578 + RESERVED +CVE-2018-16577 + RESERVED +CVE-2018-16576 + RESERVED +CVE-2018-16575 + RESERVED +CVE-2018-16574 + RESERVED +CVE-2018-16573 + RESERVED +CVE-2018-16572 + RESERVED +CVE-2018-16571 + RESERVED +CVE-2018-16570 + RESERVED +CVE-2018-16569 + RESERVED +CVE-2018-16568 + RESERVED +CVE-2018-16567 + RESERVED +CVE-2018-16566 + RESERVED +CVE-2018-16565 + RESERVED +CVE-2018-16564 + RESERVED +CVE-2018-16563 + RESERVED +CVE-2018-16562 + RESERVED +CVE-2018-16561 + RESERVED +CVE-2018-16560 + RESERVED +CVE-2018-16559 + RESERVED +CVE-2018-16558 + RESERVED +CVE-2018-16557 + RESERVED +CVE-2018-16556 + RESERVED +CVE-2018-16555 + RESERVED +CVE-2018-1000801 (okular version 18.08 and earlier contains a Directory Traversal ...) + TODO: check +CVE-2018-1000800 (zephyr-rtos version 1.12.0 contains a NULL base pointer reference ...) + TODO: check +CVE-2018-1000773 (WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation ...) + TODO: check +CVE-2018-1000673 + REJECTED + TODO: check +CVE-2018-1000671 (sympa version 6.2.16 and later contains a CWE-601: URL Redirection to ...) + TODO: check +CVE-2018-1000668 (jsish version 2.4.70 2.047 contains a CWE-125: Out-of-bounds Read ...) + TODO: check +CVE-2018-1000667 (NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains ...) + TODO: check +CVE-2018-1000666 (GIG Technology NV JumpScale Portal 7 version before commit ...) + TODO: check +CVE-2018-1000665 (Dojo Dojo Objective Harness (DOH) version prior to version 1.14 ...) + TODO: check +CVE-2018-1000664 (daneren2005 DSub for Subsonic (Android client) version 5.4.1 contains ...) + TODO: check +CVE-2018-1000663 (jsish version 2.4.70 2.047 contains a Buffer Overflow vulnerability in ...) + TODO: check +CVE-2018-1000661 (jsish version 2.4.67 contains a CWE-476: NULL Pointer Dereference ...) + TODO: check +CVE-2018-1000660 (TOCK version prior to commit 42f7f36e74088036068d62253e1d8fb26605feed. ...) + TODO: check +CVE-2018-1000659 (LimeSurvey version 3.14.4 and earlier contains a directory traversal ...) + TODO: check +CVE-2018-1000658 (LimeSurvey version prior to 3.14.4 contains a file upload ...) + TODO: check +CVE-2017-1000600 (WordPress version <4.9 contains a CWE-20 Input Validation ...) + TODO: check CVE-2018-16554 RESERVED CVE-2018-16553 @@ -176,8 +333,8 @@ CVE-2018-16461 RESERVED CVE-2018-16460 RESERVED -CVE-2018-16459 - RESERVED +CVE-2018-16459 (An unescaped payload in exceljs <v1.6 allows a possible XSS via cell ...) + TODO: check CVE-2018-1000672 REJECTED CVE-2018-1000662 @@ -232,7 +389,7 @@ CVE-2018-16437 (Gxlcms 2.0 has Directory Traversal exploitable by an administrat CVE-2018-16436 (Gxlcms 2.0 has SQL Injection exploitable by an administrator. ...) NOT-FOR-US: Gxlcms CVE-2018-16435 (Little CMS (aka Little Color Management System) 2.9 has an integer ...) - {DSA-4284-1} + {DSA-4284-1 DLA-1496-1} - lcms2 2.9-3 (bug #907983) - lcms <removed> - chromium-browser 69.0.3497.81-1 @@ -1605,7 +1762,7 @@ CVE-2018-16509 (An issue was discovered in Artifex Ghostscript before 9.24. Inco NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=520bb0ea7519aa3e79db78aaf0589dae02103764 NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699654 NOTE: Partially fixed in 9.22~dfsg-3, see #907703 -CVE-2018-16585 +CVE-2018-16585 (An issue was discovered in Artifex Ghostscript before 9.24. The ...) - ghostscript <unfixed> NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=1497d65039885a52b598b137dd8622bd4672f9be NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=971472c83a345a16dac9f90f91258bb22dd77f22 @@ -4493,8 +4650,8 @@ CVE-2018-14634 RESERVED CVE-2018-14633 RESERVED -CVE-2018-14632 - RESERVED +CVE-2018-14632 (An out of bound write can occur when patching an Openshift object ...) + TODO: check CVE-2018-14631 RESERVED CVE-2018-14630 @@ -4513,8 +4670,7 @@ CVE-2018-14625 [use-after-free Read in vhost_transport_send_pkt] RESERVED - linux <unfixed> NOTE: https://syzkaller.appspot.com/bug?extid=bd391451452fb0b93039 -CVE-2018-14624 [Server crash through modify command with large DN] - RESERVED +CVE-2018-14624 (A vulnerability was discovered in 389-ds-base through versions ...) - 389-ds-base <unfixed> (bug #907778) CVE-2018-14623 RESERVED @@ -13173,8 +13329,8 @@ CVE-2018-11265 RESERVED CVE-2018-11264 RESERVED -CVE-2018-11263 - RESERVED +CVE-2018-11263 (In all Android releases (Android for MSM, Firefox OS for MSM, QRD ...) + TODO: check CVE-2018-11262 (In Android for MSM, Firefox OS for MSM, and QRD Android with all ...) NOT-FOR-US: Qualcomm components for Android CVE-2018-11261 @@ -21479,7 +21635,7 @@ CVE-2018-8026 (This vulnerability in Apache Solr 6.0.0 to 6.6.4 and 7.0.0 to 7.3 NOTE: https://issues.apache.org/jira/browse/SOLR-12450 CVE-2018-8025 (CVE-2018-8025 describes an issue in Apache HBase that affects the ...) NOT-FOR-US: Apache HBase -CVE-2018-8024 (In Apache Spark 2.1.0 to 2.1.2, 2.2.0 to 2.2.1, and 2.3.0, it’s possible ...) +CVE-2018-8024 (In Apache Spark 2.1.0 to 2.1.2, 2.2.0 to 2.2.1, and 2.3.0, it's possible ...) NOT-FOR-US: Apache Spark CVE-2018-8023 RESERVED @@ -22937,7 +23093,7 @@ CVE-2018-7551 (There is an invalid free in MiniPS::delete0 in minips.cpp that le [jessie] - sam2p 0.49.2-3+deb8u2 NOTE: https://github.com/pts/sam2p/issues/28 CVE-2018-7550 (The load_multiboot function in hw/i386/multiboot.c in Quick Emulator ...) - {DSA-4213-1 DLA-1351-1 DLA-1350-1} + {DSA-4213-1 DLA-1497-1 DLA-1351-1 DLA-1350-1} - qemu 1:2.12~rc3+dfsg-1 (bug #892041) - qemu-kvm <removed> NOTE: https://git.qemu.org/?p=qemu.git;a=patch;h=2a8fcd119eb7c6bb3837fc3669eb1b2dfb31daf8 @@ -28885,7 +29041,7 @@ CVE-2018-5774 CVE-2018-5773 (An issue was discovered in markdown2 (aka python-markdown2) through ...) NOT-FOR-US: python-markdown2 (not our markdown, different code base) CVE-2017-18043 (Integer overflow in the macro ROUND_UP (n, d) in Quick Emulator (Qemu) ...) - {DSA-4213-1} + {DSA-4213-1 DLA-1497-1} - qemu 1:2.10.0+dfsg-2 [jessie] - qemu <postponed> (Can be fixed along in a future DSA) [wheezy] - qemu <not-affected> (vulnerable code not present) @@ -29273,7 +29429,7 @@ CVE-2018-5684 (In Libav through 12.2, there is an invalid memcpy call in the ... [jessie] - libav <ignored> (Minor issue) NOTE: https://bugzilla.libav.org/show_bug.cgi?id=1110 CVE-2018-5683 (The vga_draw_text function in Qemu allows local OS guest privileged ...) - {DSA-4213-1} + {DSA-4213-1 DLA-1497-1} - qemu 1:2.12~rc3+dfsg-1 (bug #887392) [jessie] - qemu <postponed> (Minor issue, can be fixed along in future DSA) [wheezy] - qemu <postponed> (Minor issue, can be fixed along in next DLA) @@ -29281,6 +29437,7 @@ CVE-2018-5683 (The vga_draw_text function in Qemu allows local OS guest privileg [wheezy] - qemu-kvm <postponed> (Minor issue, can be fixed along in next DLA) NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-01/msg02131.html CVE-2017-18030 (The cirrus_invalidate_region function in hw/display/cirrus_vga.c in ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-4 [wheezy] - qemu 1.1.2+dfsg-6+deb7u22 - qemu-kvm <removed> @@ -39796,8 +39953,8 @@ CVE-2018-1697 RESERVED CVE-2018-1696 RESERVED -CVE-2018-1695 - RESERVED +CVE-2018-1695 (IBM WebSphere Application Server 7.0, 8.0, and 8.5.5 installations ...) + TODO: check CVE-2018-1694 RESERVED CVE-2018-1693 @@ -46251,7 +46408,7 @@ CVE-2017-16847 (Zoho ManageEngine Applications Manager 13 before build 13530 all CVE-2017-16846 (Zoho ManageEngine Applications Manager 13 before build 13530 allows ...) NOT-FOR-US: Zoho ManageEngine Applications Manager CVE-2017-16845 (hw/input/ps2.c in Qemu does not validate 'rptr' and 'count' values ...) - {DSA-4213-1} + {DSA-4213-1 DLA-1497-1} - qemu 1:2.12~rc3+dfsg-1 (bug #882136) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <postponed> (Can be fixed along in a future update) @@ -50781,7 +50938,7 @@ CVE-2017-15590 (An issue was discovered in Xen through 4.9.x allowing x86 guest [wheezy] - xen <no-dsa> (Patches too intrusive to backport) NOTE: https://xenbits.xen.org/xsa/advisory-237.html CVE-2017-15289 (The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow ...) - {DSA-4213-1} + {DSA-4213-1 DLA-1497-1} - qemu 1:2.11+dfsg-1 (bug #880832) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <postponed> (Can be fixed along in a future update) @@ -51678,7 +51835,7 @@ CVE-2017-15040 CVE-2017-15039 (Cross-site scripting (XSS) exists in Zurmo 3.2.1.57987acc3018 via a ...) NOT-FOR-US: Zurmo CVE-2017-15038 (Race condition in the v9fs_xattrwalk function in hw/9pfs/9p.c in QEMU ...) - {DSA-4213-1 DLA-1129-1 DLA-1128-1} + {DSA-4213-1 DLA-1497-1 DLA-1129-1 DLA-1128-1} - qemu 1:2.10.0+dfsg-2 (bug #877890) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -54366,7 +54523,7 @@ CVE-2017-14169 (In the mxf_read_primer_pack function in libavformat/mxfdec.c in CVE-2017-14168 RESERVED CVE-2017-14167 (Integer overflow in the load_multiboot function in hw/i386/multiboot.c ...) - {DSA-3991-1 DLA-1129-1 DLA-1128-1} + {DSA-3991-1 DLA-1497-1 DLA-1129-1 DLA-1128-1} - qemu 1:2.10.0-1 (bug #874606) - qemu-kvm <removed> NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2017-09/msg01483.html @@ -62578,7 +62735,7 @@ CVE-2017-11436 (D-Link DIR-615 before v20.12PTb04 has a second admin account wit CVE-2017-11435 (The Humax Wi-Fi Router model HG100R-* 2.0.6 is prone to an ...) NOT-FOR-US: Humax Wi-Fi Router model HG100R-* CVE-2017-11434 (The dhcp_decode function in slirp/bootp.c in QEMU (aka Quick Emulator) ...) - {DSA-3925-1 DLA-1071-1 DLA-1070-1} + {DSA-3925-1 DLA-1497-1 DLA-1071-1 DLA-1070-1} - qemu 1:2.8+dfsg-7 (bug #869171) - qemu-kvm <removed> NOTE: https://lists.gnu.org/archive/html/qemu-devel/2017-07/msg05001.html @@ -64529,7 +64686,7 @@ CVE-2017-10809 CVE-2017-10808 RESERVED CVE-2017-10806 (Stack-based buffer overflow in hw/usb/redirect.c in QEMU (aka Quick ...) - {DSA-3925-1} + {DSA-3925-1 DLA-1497-1} - qemu 1:2.8+dfsg-7 (bug #867751) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue) @@ -67370,7 +67527,7 @@ CVE-2017-10912 (Xen through 4.8.x mishandles page transfer, which allows guest O - xen 4.8.1-1+deb9u3 NOTE: https://xenbits.xen.org/xsa/advisory-217.html CVE-2017-10911 (The make_response function in drivers/block/xen-blkback/blkback.c in ...) - {DSA-3945-1 DSA-3927-1 DSA-3920-1 DLA-1099-1} + {DSA-3945-1 DSA-3927-1 DSA-3920-1 DLA-1497-1 DLA-1099-1} - linux 4.11.11-1 - qemu 1:2.8+dfsg-7 (bug #869706) [wheezy] - qemu <no-dsa> (Wheezy's xen uses an embedded qemu copy) @@ -68186,6 +68343,7 @@ CVE-2017-9505 (Atlassian Confluence starting with 4.3.0 before 6.2.1 did not che CVE-2017-9504 REJECTED CVE-2017-9503 (QEMU (aka Quick Emulator), when built with MegaRAID SAS 8708EM2 Host ...) + {DLA-1497-1} - qemu 1:2.10.0-1 (bug #865754) [stretch] - qemu <no-dsa> (Minor issue, can be included in future update) [jessie] - qemu <no-dsa> (Minor issue) @@ -68599,7 +68757,7 @@ CVE-2017-9375 (QEMU (aka Quick Emulator), when built with USB xHCI controller .. [wheezy] - qemu-kvm <not-affected> (vulnerable code not present) NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commitdiff;h=96d87bdda3919bb16f754b3d3fd1227e1f38f13c CVE-2017-9374 (Memory leak in QEMU (aka Quick Emulator), when built with USB EHCI ...) - {DSA-3920-1} + {DSA-3920-1 DLA-1497-1} - qemu 1:2.8+dfsg-7 (bug #864568) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue) @@ -68607,7 +68765,7 @@ CVE-2017-9374 (Memory leak in QEMU (aka Quick Emulator), when built with USB EHC [wheezy] - qemu-kvm <no-dsa> (Minor issue) NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commitdiff;h=d710e1e7bd3d5bfc26b631f02ae87901ebe646b0 CVE-2017-9373 (Memory leak in QEMU (aka Quick Emulator), when built with IDE AHCI ...) - {DSA-3920-1} + {DSA-3920-1 DLA-1497-1} - qemu 1:2.8+dfsg-7 (bug #864216) [wheezy] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -68785,7 +68943,7 @@ CVE-2017-9334 (An incorrect "pair?" check in the Scheme "length&q NOTE: Original announcement: http://lists.nongnu.org/archive/html/chicken-announce/2017-05/msg00000.html NOTE: Patch: http://lists.nongnu.org/archive/html/chicken-hackers/2017-05/msg00099.html CVE-2017-9330 (QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI ...) - {DSA-3920-1} + {DSA-3920-1 DLA-1497-1} - qemu 1:2.8+dfsg-7 (bug #863943) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <not-affected> (Vulnerable code no present) @@ -71704,6 +71862,7 @@ CVE-2017-8380 (Buffer overflow in the "megasas_mmio_write" function in NOTE: Introduced by: http://git.qemu.org/?p=qemu.git;a=commit;h=e23d04984a78490d8aaa5c45724a3a334933331f (v2.2.0-rc0) NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=24dfa9fa2f90a95ac33c7372de4f4f2c8a2c141f CVE-2017-8379 (Memory leak in the keyboard input event handlers support in QEMU (aka ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-5 (bug #862289) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue) @@ -71970,7 +72129,7 @@ CVE-2017-8310 (Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2. [wheezy] - vlc <end-of-life> (Not supported in wheezy LTS) NOTE: http://git.videolan.org/?p=vlc/vlc-2.2.git;a=commit;h=7cac839692ab79dbfe5e4ebd4c4e37d9a8b1b328 CVE-2017-8309 (Memory leak in the audio/audio.c in QEMU (aka Quick Emulator) allows ...) - {DLA-1071-1 DLA-1070-1} + {DLA-1497-1 DLA-1071-1 DLA-1070-1} - qemu 1:2.8+dfsg-5 (bug #862280) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -72408,6 +72567,7 @@ CVE-2017-8114 (Roundcube Webmail allows arbitrary password resets by authenticat CVE-2017-8113 RESERVED CVE-2017-8112 (hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-5 (bug #861351) [wheezy] - qemu <not-affected> (Vulnerable code not present) - qemu-kvm <not-affected> (Vulnerable code not present) @@ -72478,7 +72638,7 @@ CVE-2017-8088 CVE-2017-8087 RESERVED CVE-2017-8086 (Memory leak in the v9fs_list_xattr function in hw/9pfs/9p-xattr.c in ...) - {DLA-1035-1 DLA-965-1} + {DLA-1497-1 DLA-1035-1 DLA-965-1} - qemu 1:2.8+dfsg-5 (bug #861348) - qemu-kvm <removed> NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=4ffcdef4277a91af15a3c09f7d16af072c29f3f2 (v2.9.0-rc4) @@ -72799,7 +72959,7 @@ CVE-2017-7982 (Integer overflow in the plist_from_bin function in bplist.c in .. CVE-2017-7981 (Tuleap before 9.7 allows command injection via the PhpWiki 1.3.10 ...) NOT-FOR-US: Enalean Tuleap CVE-2017-7980 (Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick ...) - {DLA-1035-1 DLA-939-1} + {DLA-1497-1 DLA-1035-1 DLA-939-1} - qemu 1:2.8+dfsg-4 - qemu-kvm <removed> NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commitdiff;h=026aeffcb4752054830ba203020ed6eb05bcaba8 @@ -73924,7 +74084,7 @@ CVE-2017-7720 (Buffer overflow in PrivateTunnel 2.7 and 2.8 allows local attacke CVE-2017-7719 (SQL injection in the Spider Event Calendar (aka spider-event-calendar) ...) NOT-FOR-US: Spider Event Calendar CVE-2017-7718 (hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local ...) - {DLA-1035-1 DLA-939-1} + {DLA-1497-1 DLA-1035-1 DLA-939-1} - qemu 1:2.8+dfsg-4 - qemu-kvm <removed> NOTE: http://git.qemu-project.org/?p=qemu.git;a=commitdiff;h=215902d7b6fb50c6fc216fc74f770858278ed904 @@ -74792,7 +74952,7 @@ CVE-2017-7494 (Samba since version 3.5.0 and before 4.6.4, 4.5.10 and 4.4.14 is - samba 2:4.5.8+dfsg-2 NOTE: https://www.samba.org/samba/security/CVE-2017-7494.html CVE-2017-7493 (Quick Emulator (Qemu) built with the VirtFS, host directory sharing ...) - {DLA-1035-1 DLA-965-1} + {DLA-1497-1 DLA-1035-1 DLA-965-1} - qemu 1:2.8+dfsg-6 - qemu-kvm <removed> NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1451709 @@ -75233,7 +75393,7 @@ CVE-2017-7378 (The PoDoFo::PdfPainter::ExpandTabs function in PdfPainter.cpp in NOTE: http://www.openwall.com/lists/oss-security/2017/04/01/1 NOTE: upstream commit: http://sourceforge.net/p/podofo/code/1847 CVE-2017-7377 (The (1) v9fs_create and (2) v9fs_lcreate functions in hw/9pfs/9p.c in ...) - {DLA-1035-1 DLA-965-1} + {DLA-1497-1 DLA-1035-1 DLA-965-1} - qemu 1:2.8+dfsg-4 (bug #859854) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -77784,7 +77944,7 @@ CVE-2017-6508 (CRLF injection vulnerability in the url_parse function in url.c i CVE-2017-6506 (In Azure Data Expert Ultimate 2.2.16, the SMTP verification function ...) NOT-FOR-US: Azure Data Expert Ultimate CVE-2017-6505 (The ohci_service_ed_list function in hw/usb/hcd-ohci.c in QEMU (aka ...) - {DLA-1071-1 DLA-1070-1} + {DLA-1497-1 DLA-1071-1 DLA-1070-1} - qemu 1:2.8+dfsg-4 (bug #856969) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -79474,6 +79634,7 @@ CVE-2017-5989 CVE-2017-5988 (NetApp Clustered Data ONTAP 8.1 through 9.1P1, when NFS or SMB is ...) NOT-FOR-US: NetApp CVE-2017-5987 (The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-3 (bug #855159) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <not-affected> (Vulnerable code not present) @@ -79552,7 +79713,7 @@ CVE-2017-5974 (Heap-based buffer overflow in the __zzip_get32 function in fetch. - zziplib 0.13.62-3.1 (bug #854727) NOTE: http://blogs.gentoo.org/ago/2017/02/09/zziplib-heap-based-buffer-overflow-in-__zzip_get32-fetch-c/ CVE-2017-5973 (The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick ...) - {DLA-845-1 DLA-842-1} + {DLA-1497-1 DLA-845-1 DLA-842-1} - qemu 1:2.8+dfsg-3 (bug #855611) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -80286,7 +80447,7 @@ CVE-2017-5717 (Type Confusion in Content Protection HECI Service in Intel Graphi CVE-2017-5716 REJECTED CVE-2017-5715 (Systems with microprocessors utilizing speculative execution and ...) - {DSA-4213-1 DSA-4188-1 DSA-4187-1 DLA-1422-1 DLA-1369-1} + {DSA-4213-1 DSA-4188-1 DSA-4187-1 DLA-1497-1 DLA-1422-1 DLA-1369-1} - linux 4.15.11-1 - intel-microcode 3.20180425.1 [stretch] - intel-microcode 3.20180425.1~deb9u1 @@ -80539,6 +80700,7 @@ CVE-2017-5857 (Memory leak in the virgl_cmd_resource_unref function in ...) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1418382 NOTE: http://www.openwall.com/lists/oss-security/2017/02/01/21 CVE-2017-5856 (Memory leak in the megasas_handle_dcmd function in hw/scsi/megasas.c ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-3 (bug #853996) [jessie] - qemu <no-dsa> (Minor issue; can be fixed in future DSA or point release) [wheezy] - qemu <not-affected> (Vulnerable code not present) @@ -80850,6 +81012,7 @@ CVE-2016-10174 (The NETGEAR WNR2000v5 router contains a buffer overflow in the . CVE-2004-2778 (Ebuild in Gentoo may change directory and file permissions depending ...) NOT-FOR-US: Gentoo ebuilds dir permissions at install time CVE-2017-5667 (The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-3 (bug #853996) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <not-affected> (Vulnerable code not present) @@ -81087,6 +81250,7 @@ CVE-2017-5580 (The parse_instruction function in gallium/auxiliary/tgsi/tgsi_tex NOTE: https://cgit.freedesktop.org/virglrenderer/commit/?id=28894a30a17a84529be102b21118e55d6c9f23fa (0.6.0) NOTE: https://lists.freedesktop.org/archives/virglrenderer-devel/2017-January/000105.html CVE-2017-5579 (Memory leak in the serial_exit_core function in hw/char/serial.c in ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-3 (bug #853002) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue) @@ -81269,6 +81433,7 @@ CVE-2017-5613 (Format string vulnerability in cgiemail and cgiecho allows remote - cgiemail <removed> (bug #852031) NOTE: http://www.openwall.com/lists/oss-security/2017/01/20/6 CVE-2016-10155 (Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-2 (low; bug #852232) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue) @@ -81364,6 +81529,7 @@ CVE-2017-5537 (The password reset form in Weblate before 2.10.1 provides differe - weblate <itp> (bug #745661) NOTE: http://www.openwall.com/lists/oss-security/2017/01/18/11 CVE-2017-5526 (Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) allows ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-2 (bug #851910) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue) @@ -81374,6 +81540,7 @@ CVE-2017-5526 (Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) all NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=069eb7b2b8fc47c7cb52e5a4af23ea98d939e3da NOTE: Sound device hotplug not supported by libvirt CVE-2017-5525 (Memory leak in hw/audio/ac97.c in QEMU (aka Quick Emulator) allows ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-2 (bug #852021) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue) @@ -86569,7 +86736,7 @@ CVE-2016-9923 (Quick Emulator (Qemu) built with the 'chardev' backend support is NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg05597.html NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=a4afa548fc6dd9842ed86639b4d37d4d1c4ad480 (v2.8.0-rc0) CVE-2016-9922 (The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka ...) - {DLA-765-1 DLA-764-1} + {DLA-1497-1 DLA-765-1 DLA-764-1} - qemu 1:2.8+dfsg-1 (bug #847960) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -86579,7 +86746,7 @@ CVE-2016-9922 (The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (a NOTE: CVE for the "blit pitch values" issue. NOTE: Should be fixed along with CVE-2014-8106 CVE-2016-9921 (Quick emulator (Qemu) built with the Cirrus CLGD 54xx VGA Emulator ...) - {DLA-765-1 DLA-764-1} + {DLA-1497-1 DLA-765-1 DLA-764-1} - qemu 1:2.8+dfsg-1 (bug #847960) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -88036,6 +88203,7 @@ CVE-2016-9912 (Quick Emulator (Qemu) built with the Virtio GPU Device emulator . NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-11/msg05043.html NOTE: http://www.openwall.com/lists/oss-security/2016/12/06/12 CVE-2016-9916 (Memory leak in hw/9pfs/9p-proxy.c in QEMU (aka Quick Emulator) allows ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-1 (bug #847496) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue, virtfs-proxy-helper not present) @@ -88046,6 +88214,7 @@ CVE-2016-9916 (Memory leak in hw/9pfs/9p-proxy.c in QEMU (aka Quick Emulator) al NOTE: Proxy filesystem driver introduced in: http://git.qemu.org/?p=qemu.git;a=commit;h=4c793dda22213a7aba8e4d9a814e8f368a5f8bf7 (v1.0-rc0) NOTE: http://www.openwall.com/lists/oss-security/2016/12/06/11 CVE-2016-9915 (Memory leak in hw/9pfs/9p-handle.c in QEMU (aka Quick Emulator) allows ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-1 (bug #847496) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (handle driver not included during compilation) @@ -88057,6 +88226,7 @@ CVE-2016-9915 (Memory leak in hw/9pfs/9p-handle.c in QEMU (aka Quick Emulator) a NOTE: http://www.openwall.com/lists/oss-security/2016/12/06/11 NOTE: proxy driver not included during compilation in wheezy, see debian-lts ML: https://lists.debian.org/debian-lts/2016/12/msg00136.html CVE-2016-9914 (Memory leak in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-1 (bug #847496) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (proxy and handle drivers not included during compilation) @@ -88076,13 +88246,14 @@ CVE-2016-9913 (Memory leak in the v9fs_device_unrealize_common function in ...) NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=4774718e5c194026ba5ee7a28d9be49be3080e42 (v2.8.0-rc2) NOTE: http://www.openwall.com/lists/oss-security/2016/12/06/11 CVE-2016-9911 (Quick Emulator (Qemu) built with the USB EHCI Emulation support is ...) - {DLA-765-1 DLA-764-1} + {DLA-1497-1 DLA-765-1 DLA-764-1} - qemu 1:2.8+dfsg-1 (bug #847951) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> NOTE: http://git.qemu.org/?p=qemu.git;a=commitdiff;h=791f97758e223de3290592d169f (v2.8.0-rc0) NOTE: http://www.openwall.com/lists/oss-security/2016/12/06/10 CVE-2016-9907 (Quick Emulator (Qemu) built with the USB redirector usb-guest support ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-1 (bug #847953) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <not-affected> (Vulnerable code not present) @@ -89946,7 +90117,7 @@ CVE-2017-2621 (An access-control flaw was found in the OpenStack Orchestration ( - heat <not-affected> (heat-common postinst chmod's 0750 /var/log/heat) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1420990 CVE-2017-2620 (Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA ...) - {DLA-1270-1 DLA-845-1 DLA-842-1} + {DLA-1497-1 DLA-1270-1 DLA-845-1 DLA-842-1} - qemu 1:2.8+dfsg-3 (bug #855791) - qemu-kvm <removed> - xen 4.4.0-1 @@ -89974,7 +90145,7 @@ CVE-2017-2616 (A race condition was found in util-linux before 2.32.1 in the way NOTE: Coreutils: Removed from source in https://git.savannah.gnu.org/cgit/coreutils.git/commit/?id=928dd737 NOTE: and not installed by default since 2007. CVE-2017-2615 (Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator ...) - {DLA-845-1 DLA-842-1} + {DLA-1497-1 DLA-845-1 DLA-842-1} - qemu 1:2.8+dfsg-3 (low; bug #854731) NOTE: Introduced with: http://git.qemu.org/?p=qemu.git;a=commit;h=d3532a0db02296e687711b8cdc7791924efccea0 (which was the fix for CVE-2014-8106) NOTE: Fixed by: http://git.qemu.org/?p=qemu.git;a=commit;h=62d4c6bd5263bb8413a06c80144fc678df6dfb64 @@ -94957,6 +95128,7 @@ CVE-2016-9777 (KVM in the Linux kernel before 4.8.12, when I/O APIC is enabled, NOTE: Introduced in: https://git.kernel.org/linus/af1bae5497b98cb99d6b0492e6981f060420a00c (v4.8-rc1) NOTE: http://www.openwall.com/lists/oss-security/2016/12/02/2 CVE-2016-9776 (QEMU (aka Quick Emulator) built with the ColdFire Fast Ethernet ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-1 (bug #846797) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue) @@ -95402,7 +95574,7 @@ CVE-2016-9604 (It was discovered in the Linux kernel before 4.11-rc8 that root c [jessie] - linux 3.16.43-1 NOTE: Fixed by: https://git.kernel.org/linus/ee8f844e3c5a73b999edf733df1c529d6503ec2f CVE-2016-9603 (A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA ...) - {DLA-1270-1 DLA-1035-1 DLA-939-1} + {DLA-1497-1 DLA-1270-1 DLA-1035-1 DLA-939-1} - qemu 1:2.8+dfsg-4 (bug #857744) - qemu-kvm <removed> - xen 4.4.0-1 @@ -95411,7 +95583,7 @@ CVE-2016-9603 (A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx NOTE: http://www.openwall.com/lists/oss-security/2017/03/14/2 NOTE: Upstream patch http://git.qemu-project.org/?p=qemu.git;a=commit;h=50628d3479e4f9aa97e323506856e394fe7ad7a6 CVE-2016-9602 (Qemu before version 2.9 is vulnerable to an improper link following ...) - {DLA-1035-1 DLA-965-1} + {DLA-1497-1 DLA-1035-1 DLA-965-1} - qemu 1:2.8+dfsg-3 (bug #853006) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -98669,7 +98841,7 @@ CVE-2016-8671 (The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not - matrixssl <not-affected> (Incomplete fix for CVE-2016-6887 not applied) NOTE: https://blog.fuzzing-project.org/54-Update-on-MatrixSSL-miscalculation-incomplete-fix-for-CVE-2016-6887.html CVE-2016-8669 (The serial_update_parameters function in hw/char/serial.c in QEMU (aka ...) - {DLA-679-1 DLA-678-1} + {DLA-1497-1 DLA-679-1 DLA-678-1} - qemu 1:2.8+dfsg-1 (bug #840945) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -98684,6 +98856,7 @@ CVE-2016-8668 (The rocker_io_writel function in hw/net/rocker/rocker.c in QEMU ( NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02501.html NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1384896 CVE-2016-8667 (The rc4030_write function in hw/dma/rc4030.c in QEMU (aka Quick ...) + {DLA-1497-1} - qemu 1:2.8+dfsg-4 (bug #840950) [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (minor issue) @@ -99283,7 +99456,7 @@ CVE-2016-8577 (Memory leak in the v9fs_read function in hw/9pfs/9p.c in QEMU (ak NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg07127.html NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=e95c9a493a5a8d6f969e86c9f19f80ffe6587e19 CVE-2016-8576 (The xhci_ring_fetch function in hw/usb/hcd-xhci.c in QEMU (aka Quick ...) - {DLA-679-1 DLA-678-1} + {DLA-1497-1 DLA-679-1 DLA-678-1} - qemu 1:2.8+dfsg-1 (bug #840343) [jessie] - qemu <no-dsa> (Minor issue) - qemu-kvm <removed> @@ -104852,6 +105025,7 @@ CVE-2016-10051 (Use-after-free vulnerability in the ReadPWPImage function in ... NOTE: https://github.com/ImageMagick/ImageMagick/commit/ecc03a2518c2b7dd375fde3a040fdae0bdf6a521 NOTE: http://www.openwall.com/lists/oss-security/2016/12/20/3 CVE-2016-6833 (Use-after-free vulnerability in the vmxnet3_io_bar0_write function in ...) + {DLA-1497-1} - qemu 1:2.6+dfsg-3.1 (bug #834904) [wheezy] - qemu <not-affected> (Vulnerable code not present, vmxnet3 introduced in 1.5) - qemu-kvm <removed> @@ -104869,6 +105043,7 @@ CVE-2016-6834 (The net_tx_pkt_do_sw_fragmentation function in hw/net/net_tx_pkt. NOTE: Upstream patch: https://lists.gnu.org/archive/html/qemu-devel/2016-08/msg01601.html NOTE: http://www.openwall.com/lists/oss-security/2016/08/11/8 CVE-2016-6835 (The vmxnet_tx_pkt_parse_headers function in hw/net/vmxnet_tx_pkt.c in ...) + {DLA-1497-1} - qemu 1:2.6+dfsg-3.1 (bug #835031) [wheezy] - qemu <not-affected> (Vulnerable code not present, vmxnet3 introduced in 1.5) - qemu-kvm <removed> @@ -120323,6 +120498,7 @@ CVE-2016-3197 CVE-2016-2092 RESERVED CVE-2016-2198 (QEMU (aka Quick Emulator) built with the USB EHCI emulation support is ...) + {DLA-1497-1} - qemu 1:2.6+dfsg-1 (bug #813193) [jessie] - qemu <no-dsa> (Minor issue; Can be fixed along with a future DSA) [wheezy] - qemu <not-affected> (Introduced after v1.2.0) @@ -124030,6 +124206,7 @@ CVE-2015-8665 (tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause NOTE: http://www.openwall.com/lists/oss-security/2015/12/24/2 NOTE: https://github.com/vadz/libtiff/commit/f94a29a822f5528d2334592760fbb7938f15eb55 CVE-2015-8666 (Heap-based buffer overflow in QEMU, when built with the ...) + {DLA-1497-1} - qemu 1:2.5+dfsg-1 [jessie] - qemu <no-dsa> (Minor issue) [wheezy] - qemu <no-dsa> (Minor issue) @@ -227470,7 +227647,7 @@ CVE-2011-0706 (The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in {DSA-2224-1} - openjdk-6 6b18-1.8.7-1 CVE-2011-0705 [path traversal in SimpleHTTPServer] - RESERVED + REJECTED NOTE: Will be rejected CVE-2011-0704 (389 Directory Server 1.2.7.5, when built with mozldap, allows remote ...) NOT-FOR-US: 389 Directory Server View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f35aabfc260177f9f7d20b81537d5cb63885a01e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f35aabfc260177f9f7d20b81537d5cb63885a01e You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits