[Secure-testing-commits] r36839 - data/CVE

security tracker role Fri, 25 Sep 2015 14:10:42 -0700

Author: sectracker
Date: 2015-09-25 21:10:12 +0000 (Fri, 25 Sep 2015)
New Revision: 36839


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-09-25 20:45:45 UTC (rev 36838)
+++ data/CVE/list       2015-09-25 21:10:12 UTC (rev 36839)
@@ -1,3 +1,47 @@
+CVE-2015-7359
+       RESERVED
+CVE-2015-7358
+       RESERVED
+CVE-2015-7357
+       RESERVED
+CVE-2015-7356
+       RESERVED
+CVE-2015-7355
+       RESERVED
+CVE-2015-7354
+       RESERVED
+CVE-2015-7353
+       RESERVED
+CVE-2015-7352
+       RESERVED
+CVE-2015-7351
+       RESERVED
+CVE-2015-7350
+       RESERVED
+CVE-2015-7349
+       RESERVED
+CVE-2015-7348
+       RESERVED
+CVE-2015-7347
+       RESERVED
+CVE-2015-7346
+       RESERVED
+CVE-2015-7345
+       RESERVED
+CVE-2015-7344
+       RESERVED
+CVE-2015-7343
+       RESERVED
+CVE-2015-7342
+       RESERVED
+CVE-2015-7341
+       RESERVED
+CVE-2015-7340
+       RESERVED
+CVE-2015-7339
+       RESERVED
+CVE-2015-7338
+       RESERVED
 CVE-2015-7336
        RESERVED
 CVE-2015-7335
@@ -2035,22 +2079,22 @@
        RESERVED
 CVE-2015-6476
        RESERVED
-CVE-2015-6475
-       RESERVED
-CVE-2015-6474
-       RESERVED
+CVE-2015-6475 (Multiple cross-site scripting (XSS) vulnerabilities in IBC 
Solar ...)
+       TODO: check
+CVE-2015-6474 (IBC Solar ServeMaster TLP+ and Danfoss TLX Pro+ allow remote 
attackers ...)
+       TODO: check
 CVE-2015-6473
        RESERVED
 CVE-2015-6472
        RESERVED
 CVE-2015-6471
        RESERVED
-CVE-2015-6470
-       RESERVED
-CVE-2015-6469
-       RESERVED
-CVE-2015-6468
-       RESERVED
+CVE-2015-6470 (Resource Data Management Data Manager before 2.2 allows remote 
...)
+       TODO: check
+CVE-2015-6469 (The interpreter in IBC Solar ServeMaster TLP+ and Danfoss TLX 
Pro+ ...)
+       TODO: check
+CVE-2015-6468 (Cross-site request forgery (CSRF) vulnerability in Resource 
Data ...)
+       TODO: check
 CVE-2015-6467
        RESERVED
 CVE-2015-6466 (Cross-site scripting (XSS) vulnerability in the Diagnosis Ping 
feature ...)
@@ -2077,8 +2121,8 @@
        TODO: check
 CVE-2015-6455
        RESERVED
-CVE-2015-6454
-       RESERVED
+CVE-2015-6454 (Everest PeakHMI before 8.7.0.2, when the video server is used, 
allows ...)
+       TODO: check
 CVE-2015-6453
        RESERVED
 CVE-2015-6452
@@ -2373,16 +2417,16 @@
        RESERVED
 CVE-2015-6307
        RESERVED
-CVE-2015-6306
-       RESERVED
-CVE-2015-6305
-       RESERVED
-CVE-2015-6304
-       RESERVED
-CVE-2015-6303
-       RESERVED
-CVE-2015-6302
-       RESERVED
+CVE-2015-6306 (Cisco AnyConnect Secure Mobility Client 4.1(8) on OS X and 
Linux does ...)
+       TODO: check
+CVE-2015-6305 (Untrusted search path vulnerability in the ...)
+       TODO: check
+CVE-2015-6304 (Cross-site request forgery (CSRF) vulnerability in Cisco 
TelePresence ...)
+       TODO: check
+CVE-2015-6303 (The Cisco Spark application 2015-07-04 for mobile operating 
systems ...)
+       TODO: check
+CVE-2015-6302 (The RADIUS functionality on Cisco Wireless LAN Controller (WLC) 
...)
+       TODO: check
 CVE-2015-6301 (The DHCPv6 server in Cisco IOS on ASR 9000 devices with 
software 5.2.0 ...)
        TODO: check
 CVE-2015-6300 (Cisco Secure Access Control Server (ACS) Solution Engine 
5.7(0.15) ...)
@@ -2421,8 +2465,7 @@
        NOT-FOR-US: Cisco TelePresence Server
 CVE-2015-6283
        RESERVED
-CVE-2015-6282
-       RESERVED
+CVE-2015-6282 (Cisco IOS XE 2.x and 3.x before 3.10.6S, 3.11.xS through 
3.13.xS ...)
        NOT-FOR-US: Cisco IOS
 CVE-2015-6281
        RESERVED
@@ -6904,17 +6947,15 @@
        RESERVED
 CVE-2015-4544 (EMC Documentum Content Server before 7.1P20 and 7.2.x before 
7.2P04 ...)
        NOT-FOR-US: EMC Documentum Content Server
-CVE-2015-4543
-       RESERVED
-CVE-2015-4542
-       RESERVED
-CVE-2015-4541
-       RESERVED
-CVE-2015-4540
-       RESERVED
+CVE-2015-4543 (EMC RSA Archer GRC 5.x before 5.5.3 uses cleartext for stored 
...)
+       TODO: check
+CVE-2015-4542 (EMC RSA Archer GRC 5.x before 5.5.3 allows remote authenticated 
users ...)
+       TODO: check
+CVE-2015-4541 (Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA 
Archer ...)
+       TODO: check
+CVE-2015-4540 (Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA 
...)
        NOT-FOR-US: EMC RSA
-CVE-2015-4539
-       RESERVED
+CVE-2015-4539 (Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA 
...)
        NOT-FOR-US: EMC RSA
 CVE-2015-4538 (The XML parser in EMC Atmos before 2.2.3.426 and 2.3.x before 
2.3.1.0 ...)
        NOT-FOR-US: EMC Atmos
@@ -54546,6 +54587,7 @@
        [squeeze] - squid3 <not-affected> (Only affects 3.2 onwards)
        NOTE: http://www.squid-cache.org/Advisories/SQUID-2013_3.txt
 CVE-2013-4122 (Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle 
when a ...)
+       {DSA-3368-1}
        - cyrus-sasl2 2.1.26.dfsg1-14 (bug #716835; bug #784112)
        [wheezy] - cyrus-sasl2 <not-affected> (Only exploitable with eglibc 
2.17 and later)
        [squeeze] - cyrus-sasl2 <not-affected> (Only exploitable with eglibc 
2.17 and later)


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r36839 - data/CVE

Reply via email to