Author: sectracker
Date: 2015-09-30 21:10:11 +0000 (Wed, 30 Sep 2015)
New Revision: 36925
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-30 20:59:35 UTC (rev 36924)
+++ data/CVE/list 2015-09-30 21:10:11 UTC (rev 36925)
@@ -1,3 +1,433 @@
+CVE-2015-7604 (Cross-site scripting (XSS) vulnerability in Splunk Web in
Splunk ...)
+ TODO: check
+CVE-2015-7603 (Directory traversal vulnerability in Konica Minolta FTP Utility
1.0 ...)
+ TODO: check
+CVE-2015-7602 (Directory traversal vulnerability in BisonWare BisonFTP 3.5
allows ...)
+ TODO: check
+CVE-2015-7601 (Directory traversal vulnerability in PCMan's FTP Server 2.0.7
allows ...)
+ TODO: check
+CVE-2015-7600
+ RESERVED
+CVE-2015-7599
+ RESERVED
+CVE-2015-7598
+ RESERVED
+CVE-2015-7597
+ RESERVED
+CVE-2015-7596
+ RESERVED
+CVE-2015-7595
+ RESERVED
+CVE-2015-7594
+ RESERVED
+CVE-2015-7593
+ RESERVED
+CVE-2015-7592
+ RESERVED
+CVE-2015-7591
+ RESERVED
+CVE-2015-7590
+ RESERVED
+CVE-2015-7589
+ RESERVED
+CVE-2015-7588
+ RESERVED
+CVE-2015-7587
+ RESERVED
+CVE-2015-7586
+ RESERVED
+CVE-2015-7585
+ RESERVED
+CVE-2015-7584
+ RESERVED
+CVE-2015-7583
+ RESERVED
+CVE-2015-7582
+ RESERVED
+CVE-2015-7581
+ RESERVED
+CVE-2015-7580
+ RESERVED
+CVE-2015-7579
+ RESERVED
+CVE-2015-7578
+ RESERVED
+CVE-2015-7577
+ RESERVED
+CVE-2015-7576
+ RESERVED
+CVE-2015-7575
+ RESERVED
+CVE-2015-7574
+ RESERVED
+CVE-2015-7573
+ RESERVED
+CVE-2015-7572
+ RESERVED
+CVE-2015-7571
+ RESERVED
+CVE-2015-7570
+ RESERVED
+CVE-2015-7569
+ RESERVED
+CVE-2015-7568
+ RESERVED
+CVE-2015-7567
+ RESERVED
+CVE-2015-7566
+ RESERVED
+CVE-2015-7565
+ RESERVED
+CVE-2015-7564
+ RESERVED
+CVE-2015-7563
+ RESERVED
+CVE-2015-7562
+ RESERVED
+CVE-2015-7561
+ RESERVED
+CVE-2015-7560
+ RESERVED
+CVE-2015-7559
+ RESERVED
+CVE-2015-7558
+ RESERVED
+CVE-2015-7557
+ RESERVED
+CVE-2015-7556
+ RESERVED
+CVE-2015-7555
+ RESERVED
+CVE-2015-7554
+ RESERVED
+CVE-2015-7553
+ RESERVED
+CVE-2015-7552
+ RESERVED
+CVE-2015-7551
+ RESERVED
+CVE-2015-7550
+ RESERVED
+CVE-2015-7549
+ RESERVED
+CVE-2015-7548
+ RESERVED
+CVE-2015-7547
+ RESERVED
+CVE-2015-7546
+ RESERVED
+CVE-2015-7545
+ RESERVED
+CVE-2015-7544
+ RESERVED
+CVE-2015-7543
+ RESERVED
+CVE-2015-7542
+ RESERVED
+CVE-2015-7541
+ RESERVED
+CVE-2015-7540
+ RESERVED
+CVE-2015-7539
+ RESERVED
+CVE-2015-7538
+ RESERVED
+CVE-2015-7537
+ RESERVED
+CVE-2015-7536
+ RESERVED
+CVE-2015-7535
+ RESERVED
+CVE-2015-7534
+ RESERVED
+CVE-2015-7533
+ RESERVED
+CVE-2015-7532
+ RESERVED
+CVE-2015-7531
+ RESERVED
+CVE-2015-7530
+ RESERVED
+CVE-2015-7529
+ RESERVED
+CVE-2015-7528
+ RESERVED
+CVE-2015-7527
+ RESERVED
+CVE-2015-7526
+ RESERVED
+CVE-2015-7525
+ RESERVED
+CVE-2015-7524
+ RESERVED
+CVE-2015-7523
+ RESERVED
+CVE-2015-7522
+ RESERVED
+CVE-2015-7521
+ RESERVED
+CVE-2015-7520
+ RESERVED
+CVE-2015-7519
+ RESERVED
+CVE-2015-7518
+ RESERVED
+CVE-2015-7517
+ RESERVED
+CVE-2015-7516
+ RESERVED
+CVE-2015-7515
+ RESERVED
+CVE-2015-7514
+ RESERVED
+CVE-2015-7513
+ RESERVED
+CVE-2015-7512
+ RESERVED
+CVE-2015-7511
+ RESERVED
+CVE-2015-7510
+ RESERVED
+CVE-2015-7509
+ RESERVED
+CVE-2015-7508
+ RESERVED
+CVE-2015-7507
+ RESERVED
+CVE-2015-7506
+ RESERVED
+CVE-2015-7505
+ RESERVED
+CVE-2015-7504
+ RESERVED
+CVE-2015-7503
+ RESERVED
+CVE-2015-7502
+ RESERVED
+CVE-2015-7501
+ RESERVED
+CVE-2015-7500
+ RESERVED
+CVE-2015-7499
+ RESERVED
+CVE-2015-7498
+ RESERVED
+CVE-2015-7497
+ RESERVED
+CVE-2015-7496
+ RESERVED
+CVE-2015-7495
+ RESERVED
+CVE-2015-7494
+ RESERVED
+CVE-2015-7493
+ RESERVED
+CVE-2015-7492
+ RESERVED
+CVE-2015-7491
+ RESERVED
+CVE-2015-7490
+ RESERVED
+CVE-2015-7489
+ RESERVED
+CVE-2015-7488
+ RESERVED
+CVE-2015-7487
+ RESERVED
+CVE-2015-7486
+ RESERVED
+CVE-2015-7485
+ RESERVED
+CVE-2015-7484
+ RESERVED
+CVE-2015-7483
+ RESERVED
+CVE-2015-7482
+ RESERVED
+CVE-2015-7481
+ RESERVED
+CVE-2015-7480
+ RESERVED
+CVE-2015-7479
+ RESERVED
+CVE-2015-7478
+ RESERVED
+CVE-2015-7477
+ RESERVED
+CVE-2015-7476
+ RESERVED
+CVE-2015-7475
+ RESERVED
+CVE-2015-7474
+ RESERVED
+CVE-2015-7473
+ RESERVED
+CVE-2015-7472
+ RESERVED
+CVE-2015-7471
+ RESERVED
+CVE-2015-7470
+ RESERVED
+CVE-2015-7469
+ RESERVED
+CVE-2015-7468
+ RESERVED
+CVE-2015-7467
+ RESERVED
+CVE-2015-7466
+ RESERVED
+CVE-2015-7465
+ RESERVED
+CVE-2015-7464
+ RESERVED
+CVE-2015-7463
+ RESERVED
+CVE-2015-7462
+ RESERVED
+CVE-2015-7461
+ RESERVED
+CVE-2015-7460
+ RESERVED
+CVE-2015-7459
+ RESERVED
+CVE-2015-7458
+ RESERVED
+CVE-2015-7457
+ RESERVED
+CVE-2015-7456
+ RESERVED
+CVE-2015-7455
+ RESERVED
+CVE-2015-7454
+ RESERVED
+CVE-2015-7453
+ RESERVED
+CVE-2015-7452
+ RESERVED
+CVE-2015-7451
+ RESERVED
+CVE-2015-7450
+ RESERVED
+CVE-2015-7449
+ RESERVED
+CVE-2015-7448
+ RESERVED
+CVE-2015-7447
+ RESERVED
+CVE-2015-7446
+ RESERVED
+CVE-2015-7445
+ RESERVED
+CVE-2015-7444
+ RESERVED
+CVE-2015-7443
+ RESERVED
+CVE-2015-7442
+ RESERVED
+CVE-2015-7441
+ RESERVED
+CVE-2015-7440
+ RESERVED
+CVE-2015-7439
+ RESERVED
+CVE-2015-7438
+ RESERVED
+CVE-2015-7437
+ RESERVED
+CVE-2015-7436
+ RESERVED
+CVE-2015-7435
+ RESERVED
+CVE-2015-7434
+ RESERVED
+CVE-2015-7433
+ RESERVED
+CVE-2015-7432
+ RESERVED
+CVE-2015-7431
+ RESERVED
+CVE-2015-7430
+ RESERVED
+CVE-2015-7429
+ RESERVED
+CVE-2015-7428
+ RESERVED
+CVE-2015-7427
+ RESERVED
+CVE-2015-7426
+ RESERVED
+CVE-2015-7425
+ RESERVED
+CVE-2015-7424
+ RESERVED
+CVE-2015-7423
+ RESERVED
+CVE-2015-7422
+ RESERVED
+CVE-2015-7421
+ RESERVED
+CVE-2015-7420
+ RESERVED
+CVE-2015-7419
+ RESERVED
+CVE-2015-7418
+ RESERVED
+CVE-2015-7417
+ RESERVED
+CVE-2015-7416
+ RESERVED
+CVE-2015-7415
+ RESERVED
+CVE-2015-7414
+ RESERVED
+CVE-2015-7413
+ RESERVED
+CVE-2015-7412
+ RESERVED
+CVE-2015-7411
+ RESERVED
+CVE-2015-7410
+ RESERVED
+CVE-2015-7409
+ RESERVED
+CVE-2015-7408
+ RESERVED
+CVE-2015-7407
+ RESERVED
+CVE-2015-7406
+ RESERVED
+CVE-2015-7405
+ RESERVED
+CVE-2015-7404
+ RESERVED
+CVE-2015-7403
+ RESERVED
+CVE-2015-7402
+ RESERVED
+CVE-2015-7401
+ RESERVED
+CVE-2015-7400
+ RESERVED
+CVE-2015-7399
+ RESERVED
+CVE-2015-7398
+ RESERVED
+CVE-2015-7397
+ RESERVED
+CVE-2015-7396
+ RESERVED
+CVE-2015-7395
+ RESERVED
+CVE-2015-7394
+ RESERVED
+CVE-2015-7393
+ RESERVED
+CVE-2015-7392
+ RESERVED
+CVE-2015-7391
+ RESERVED
+CVE-2015-7390
+ RESERVED
CVE-2015-7389
RESERVED
CVE-2015-7388
@@ -146,10 +576,10 @@
RESERVED
CVE-2015-7321
RESERVED
-CVE-2015-7320
- RESERVED
-CVE-2015-7319
- RESERVED
+CVE-2015-7320 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
+CVE-2015-7319 (SQL injection vulnerability in ...)
+ TODO: check
CVE-2015-7318
RESERVED
NOT-FOR-US: Plone
@@ -964,8 +1394,7 @@
- wordpress 4.3.1+dfsg-1 (bug #799140)
NOTE:
https://github.com/WordPress/WordPress/commit/f91a5fd10ea7245e5b41e288624819a37adf290a
NOTE: workaround entry for DLA-321-1 until/if CVE assigned
-CVE-2015-7337 [possible remote execution]
- RESERVED
+CVE-2015-7337 (The editor in IPython Notebook before 3.2.2 and Jupyter
Notebook 4.0.x ...)
- ipython <not-affected> (Affects versions 3.0 to 3.2.1)
NOTE: http://www.openwall.com/lists/oss-security/2015/09/16/3
CVE-2015-XXXX [bouncycastle ecc leak]
@@ -3932,11 +4361,13 @@
RESERVED
CVE-2015-5715
RESERVED
+ {DLA-321-1}
- wordpress 4.3.1+dfsg-1 (bug #799140)
NOTE: https://wordpress.org/news/2015/09/wordpress-4-3-1/
NOTE:
https://github.com/WordPress/WordPress/commit/9c57f3a4291f2311ae05f22c10eedeb0f69337ab
CVE-2015-5714
RESERVED
+ {DLA-321-1}
- wordpress 4.3.1+dfsg-1 (bug #799140)
NOTE: https://wordpress.org/news/2015/09/wordpress-4-3-1/
NOTE:
https://github.com/WordPress/WordPress/commit/f72b21af23da6b6d54208e5c1d65ececdaa109c8
@@ -3944,8 +4375,8 @@
RESERVED
CVE-2015-5712
RESERVED
-CVE-2015-5711
- RESERVED
+CVE-2015-5711 (TIBCO Managed File Transfer Internet Server before 7.2.5,
Managed File ...)
+ TODO: check
CVE-2015-5710
RESERVED
CVE-2015-5709
@@ -4276,7 +4707,7 @@
CVE-2015-5601
RESERVED
CVE-2015-5600 (The kbdint_next_device function in auth2-chall.c in sshd in
OpenSSH ...)
- {DLA-288-2 DLA-288-1}
+ {DLA-288-1}
- openssh 1:6.9p1-1 (bug #793616)
[jessie] - openssh <no-dsa> (Minor issue; not in default configurations)
[wheezy] - openssh <no-dsa> (Minor issue; not in default configurations)
@@ -4723,8 +5154,8 @@
RESERVED
CVE-2015-5443
RESERVED
-CVE-2015-5442
- RESERVED
+CVE-2015-5442 (Unspecified vulnerability in HP Software Update before
5.005.002.002 ...)
+ TODO: check
CVE-2015-5441
RESERVED
CVE-2015-5440 (HP UCMDB 10.00 and 10.01 before 10.01CUP12, 10.10 and 10.11
before ...)
@@ -5205,6 +5636,7 @@
NOT-FOR-US: Pulp (Red Hat)
CVE-2015-5262 [Possible DoS due to failure to set socket timeout on SSL
connections]
RESERVED
+ {DLA-322-1}
- httpcomponents-client 4.3.6-1 (low)
[squeeze] - httpcomponents-client <not-affected> (Regression introduced
in 4.3.0)
[wheezy] - httpcomponents-client <not-affected> (Regression introduced
in 4.3.0)
@@ -5795,12 +6227,12 @@
- limesurvey <itp> (bug #472802)
CVE-2015-5077
RESERVED
-CVE-2015-5076
- RESERVED
-CVE-2015-5075
- RESERVED
-CVE-2015-5074
- RESERVED
+CVE-2015-5076 (Multiple cross-site scripting (XSS) vulnerabilities in X2Engine
X2CRM ...)
+ TODO: check
+CVE-2015-5075 (Cross-site request forgery (CSRF) vulnerability in X2Engine
X2CRM ...)
+ TODO: check
+CVE-2015-5074 (Incomplete blacklist vulnerability in the FileUploadsFilter
class in ...)
+ TODO: check
CVE-2015-5072
RESERVED
CVE-2015-5071
@@ -18796,8 +19228,7 @@
[squeeze] - svn-workbench <no-dsa> (Minor issue)
[wheezy] - svn-workbench <no-dsa> (Minor issue)
[jessie] - svn-workbench <no-dsa> (Minor issue)
-CVE-2015-0852 [Integer overflow in PluginPCX.cpp]
- RESERVED
+CVE-2015-0852 (Multiple integer underflows in PluginPCX.cpp in FreeImage
3.17.0 and ...)
- freeimage 3.15.4-5 (bug #797165)
NOTE:
http://freeimage.cvs.sourceforge.net/viewvc/freeimage/FreeImage/Source/FreeImage/PluginPCX.cpp?r1=1.17&r2=1.18&pathrev=MAIN
NOTE:
http://freeimage.cvs.sourceforge.net/viewvc/freeimage/FreeImage/Source/FreeImage/PluginPCX.cpp?r1=1.18&r2=1.19&pathrev=MAIN
@@ -22129,8 +22560,8 @@
NOTE: https://trac.xiph.org/ticket/2089
CVE-2015-0300
RESERVED
-CVE-2015-0299
- RESERVED
+CVE-2015-0299 (Multiple cross-site scripting (XSS) vulnerabilities in Open
Source ...)
+ TODO: check
CVE-2015-0298 (Cross-site scripting (XSS) vulnerability in the manager web
interface ...)
NOT-FOR-US: mod_cluster
CVE-2015-0297 (Red Hat JBoss Operations Network 3.3.1 does not properly
restrict ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
