[Secure-testing-commits] r56735 - data/CVE

security tracker role Mon, 16 Oct 2017 02:10:32 -0700

Author: sectracker
Date: 2017-10-16 09:10:13 +0000 (Mon, 16 Oct 2017)
New Revision: 56735


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-10-16 08:28:26 UTC (rev 56734)
+++ data/CVE/list       2017-10-16 09:10:13 UTC (rev 56735)
@@ -1,3 +1,31 @@
+CVE-2017-15381
+       RESERVED
+CVE-2017-15380
+       RESERVED
+CVE-2017-15379
+       RESERVED
+CVE-2017-15378
+       RESERVED
+CVE-2017-15377
+       RESERVED
+CVE-2017-15376 (The TELNET service in Mobatek MobaXterm 10.4 does not require 
...)
+       TODO: check
+CVE-2017-15375 (Multiple client-side cross site scripting vulnerabilities have 
been ...)
+       TODO: check
+CVE-2017-15374 (Shopware v5.2.5 - v5.3 is vulnerable to cross site scripting 
in the ...)
+       TODO: check
+CVE-2017-15373 (E-Sic 1.0 allows SQL injection via the q parameter to ...)
+       TODO: check
+CVE-2017-15372 (There is a stack-based buffer overflow in the ...)
+       TODO: check
+CVE-2017-15371 (There is a reachable assertion abort in the function ...)
+       TODO: check
+CVE-2017-15370 (There is a heap-based buffer overflow in the ImaExpandS 
function of ...)
+       TODO: check
+CVE-2017-15369 (The build_filter_chain function in pdf/pdf-stream.c in Artifex 
MuPDF ...)
+       TODO: check
+CVE-2017-15368 (The wasm_dis function in libr/asm/arch/wasm/wasm.c in radare2 
2.0.0 ...)
+       TODO: check
 CVE-2017-15367
        RESERVED
 CVE-2017-15366
@@ -8,8 +36,8 @@
        NOT-FOR-US: ccsv
 CVE-2017-15363 (Directory traversal vulnerability in ...)
        NOT-FOR-US: Luracast Restler
-CVE-2017-15362
-       RESERVED
+CVE-2017-15362 (osTicket 1.10.1 allows arbitrary client-side JavaScript code 
execution ...)
+       TODO: check
 CVE-2017-15361
        RESERVED
 CVE-2017-15360 (PRTG Network Monitor version 17.3.33.2830 is vulnerable to 
stored ...)
@@ -126,10 +154,10 @@
        NOT-FOR-US: NexusPHP
 CVE-2017-15304 (/bin/login.php in the Web Panel on the Airtame HDMI dongle 
with ...)
        NOT-FOR-US:  Airtame HDMI dongle
-CVE-2017-15303
-       RESERVED
-CVE-2017-15302
-       RESERVED
+CVE-2017-15303 (In CPUID CPU-Z before 1.43, there is an arbitrary memory write 
that ...)
+       TODO: check
+CVE-2017-15302 (In CPUID CPU-Z through 1.81, there are improper access rights 
to a ...)
+       TODO: check
 CVE-2017-15301
        RESERVED
 CVE-2017-15300 (The miner statistics HTTP API in EWBF Cuda Zcash Miner Version 
0.3.4b ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r56735 - data/CVE

Reply via email to