Author: sectracker
Date: 2015-12-11 21:10:17 +0000 (Fri, 11 Dec 2015)
New Revision: 38232
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-11 20:06:23 UTC (rev 38231)
+++ data/CVE/list 2015-12-11 21:10:17 UTC (rev 38232)
@@ -1,3 +1,5 @@
+CVE-2015-8541
+ RESERVED
CVE-2016-0700
RESERVED
CVE-2016-0699
@@ -605,6 +607,7 @@
CVE-2015-8534
RESERVED
CVE-2015-8540 [underflow read in png_check_keyword in pngwutil.c]
+ RESERVED
- libpng <unfixed> (bug #807694)
NOTE: http://www.openwall.com/lists/oss-security/2015/12/10/6
NOTE: https://sourceforge.net/p/libpng/bugs/244/
@@ -3600,13 +3603,11 @@
{DSA-3343-1}
- twig 1.20.0-1
NOTE: http://symfony.com/blog/security-release-twig-1-20-0
-CVE-2015-7804 [Uninitialized pointer in phar_make_dirstream when zip entry
filename is "/"]
- RESERVED
+CVE-2015-7804 (Off-by-one error in the phar_parse_zipfile function in
ext/phar/zip.c ...)
{DSA-3380-1 DLA-341-1}
- php5 5.6.14+dfsg-1 (medium)
NOTE: https://bugs.php.net/bug.php?id=70433
-CVE-2015-7803 [Null pointer dereference in phar_get_fp_offset()]
- RESERVED
+CVE-2015-7803 (The phar_get_entry_data function in ext/phar/util.c in PHP
before ...)
{DSA-3380-1 DLA-341-1}
- php5 5.6.14+dfsg-1 (low)
NOTE: https://bugs.php.net/bug.php?id=69720
@@ -5284,48 +5285,48 @@
RESERVED
CVE-2015-7114
RESERVED
-CVE-2015-7113
- RESERVED
-CVE-2015-7112
- RESERVED
-CVE-2015-7111
- RESERVED
-CVE-2015-7110
- RESERVED
-CVE-2015-7109
- RESERVED
-CVE-2015-7108
- RESERVED
-CVE-2015-7107
- RESERVED
-CVE-2015-7106
- RESERVED
-CVE-2015-7105
- RESERVED
-CVE-2015-7104
- RESERVED
-CVE-2015-7103
- RESERVED
-CVE-2015-7102
- RESERVED
-CVE-2015-7101
- RESERVED
-CVE-2015-7100
- RESERVED
-CVE-2015-7099
- RESERVED
-CVE-2015-7098
- RESERVED
-CVE-2015-7097
- RESERVED
-CVE-2015-7096
- RESERVED
-CVE-2015-7095
- RESERVED
-CVE-2015-7094
- RESERVED
-CVE-2015-7093
- RESERVED
+CVE-2015-7113 (The LaunchServices component in Apple iOS before 9.2 and
watchOS ...)
+ TODO: check
+CVE-2015-7112 (The IOHIDFamily API in Apple iOS before 9.2, OS X before
10.11.2, tvOS ...)
+ TODO: check
+CVE-2015-7111 (The IOHIDFamily API in Apple iOS before 9.2, OS X before
10.11.2, tvOS ...)
+ TODO: check
+CVE-2015-7110 (The Disk Images component in Apple OS X before 10.11.2 and tvOS
before ...)
+ TODO: check
+CVE-2015-7109 (IOAcceleratorFamily in Apple OS X before 10.11.2 and tvOS
before 9.1 ...)
+ TODO: check
+CVE-2015-7108 (The Bluetooth HCI interface in Apple OS X before 10.11.2 allows
local ...)
+ TODO: check
+CVE-2015-7107 (QuickLook in Apple iOS before 9.2 and OS X before 10.11.2
allows ...)
+ TODO: check
+CVE-2015-7106 (The Intel Graphics Driver component in Apple OS X before
10.11.2 ...)
+ TODO: check
+CVE-2015-7105 (CoreGraphics in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
+CVE-2015-7104 (WebKit in Apple Safari before 9.0.2 and tvOS before 9.1 allows
remote ...)
+ TODO: check
+CVE-2015-7103 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7102 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7101 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7100 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7099 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7098 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7097 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7096 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7095 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7094 (CFNetwork HTTPProtocol in Apple iOS before 9.2 and OS X before
10.11.2 ...)
+ TODO: check
+CVE-2015-7093 (Safari in Apple iOS before 9.2 allows remote attackers to spoof
a URL ...)
+ TODO: check
CVE-2015-7092
RESERVED
CVE-2015-7091
@@ -5342,102 +5343,102 @@
RESERVED
CVE-2015-7085
RESERVED
-CVE-2015-7084
- RESERVED
-CVE-2015-7083
- RESERVED
-CVE-2015-7082
- RESERVED
-CVE-2015-7081
- RESERVED
-CVE-2015-7080
- RESERVED
-CVE-2015-7079
- RESERVED
-CVE-2015-7078
- RESERVED
-CVE-2015-7077
- RESERVED
-CVE-2015-7076
- RESERVED
-CVE-2015-7075
- RESERVED
-CVE-2015-7074
- RESERVED
-CVE-2015-7073
- RESERVED
-CVE-2015-7072
- RESERVED
-CVE-2015-7071
- RESERVED
-CVE-2015-7070
- RESERVED
-CVE-2015-7069
- RESERVED
-CVE-2015-7068
- RESERVED
-CVE-2015-7067
- RESERVED
-CVE-2015-7066
- RESERVED
-CVE-2015-7065
- RESERVED
-CVE-2015-7064
- RESERVED
-CVE-2015-7063
- RESERVED
-CVE-2015-7062
- RESERVED
-CVE-2015-7061
- RESERVED
-CVE-2015-7060
- RESERVED
-CVE-2015-7059
- RESERVED
-CVE-2015-7058
- RESERVED
-CVE-2015-7057
- RESERVED
-CVE-2015-7056
- RESERVED
-CVE-2015-7055
- RESERVED
-CVE-2015-7054
- RESERVED
-CVE-2015-7053
- RESERVED
-CVE-2015-7052
- RESERVED
-CVE-2015-7051
- RESERVED
-CVE-2015-7050
- RESERVED
-CVE-2015-7049
- RESERVED
-CVE-2015-7048
- RESERVED
-CVE-2015-7047
- RESERVED
-CVE-2015-7046
- RESERVED
-CVE-2015-7045
- RESERVED
-CVE-2015-7044
- RESERVED
-CVE-2015-7043
- RESERVED
-CVE-2015-7042
- RESERVED
-CVE-2015-7041
- RESERVED
-CVE-2015-7040
- RESERVED
-CVE-2015-7039
- RESERVED
-CVE-2015-7038
- RESERVED
-CVE-2015-7037
- RESERVED
+CVE-2015-7084 (The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
+CVE-2015-7083 (The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
+CVE-2015-7082 (Multiple unspecified vulnerabilities in Git before 2.5.4, as
used in ...)
+ TODO: check
+CVE-2015-7081 (iBooks in Apple iOS before 9.2 and OS X before 10.11.2 allows
remote ...)
+ TODO: check
+CVE-2015-7080 (Siri in Apple iOS before 9.2 allows physically proximate
attackers to ...)
+ TODO: check
+CVE-2015-7079 (dyld in Apple iOS before 9.2 and tvOS before 9.1 mishandles
segment ...)
+ TODO: check
+CVE-2015-7078 (Use-after-free vulnerability in Hypervisor in Apple OS X before
...)
+ TODO: check
+CVE-2015-7077 (The Intel Graphics Driver component in Apple OS X before
10.11.2 ...)
+ TODO: check
+CVE-2015-7076 (The Intel Graphics Driver component in Apple OS X before
10.11.2 ...)
+ TODO: check
+CVE-2015-7075 (CoreMedia Playback in Apple iOS before 9.2, OS X before
10.11.2, tvOS ...)
+ TODO: check
+CVE-2015-7074 (CoreMedia Playback in Apple iOS before 9.2, OS X before
10.11.2, and ...)
+ TODO: check
+CVE-2015-7073 (Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and
...)
+ TODO: check
+CVE-2015-7072 (dyld in Apple iOS before 9.2, tvOS before 9.1, and watchOS
before 2.1 ...)
+ TODO: check
+CVE-2015-7071 (The File Bookmark component in Apple OS X before 10.11.2 allows
...)
+ TODO: check
+CVE-2015-7070 (Mobile Replayer in GPUTools Framework in Apple iOS before 9.2
allows ...)
+ TODO: check
+CVE-2015-7069 (Mobile Replayer in GPUTools Framework in Apple iOS before 9.2
allows ...)
+ TODO: check
+CVE-2015-7068 (IOKit SCSI in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
+CVE-2015-7067 (IOThunderboltFamily in Apple OS X before 10.11.2 allows local
users to ...)
+ TODO: check
+CVE-2015-7066 (OpenGL in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before 9.1, ...)
+ TODO: check
+CVE-2015-7065 (OpenGL in Apple iOS before 9.2, OS X before 10.11.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7064 (OpenGL in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before 9.1, ...)
+ TODO: check
+CVE-2015-7063 (The kernel loader in EFI in Apple OS X before 10.11.2 allows
local ...)
+ TODO: check
+CVE-2015-7062 (Apple OS X before 10.11.2 and tvOS before 9.1 allow local users
to ...)
+ TODO: check
+CVE-2015-7061 (The ASN.1 decoder in Apple OS X before 10.11.2, tvOS before
9.1, and ...)
+ TODO: check
+CVE-2015-7060 (The ASN.1 decoder in Apple OS X before 10.11.2, tvOS before
9.1, and ...)
+ TODO: check
+CVE-2015-7059 (The ASN.1 decoder in Apple OS X before 10.11.2, tvOS before
9.1, and ...)
+ TODO: check
+CVE-2015-7058 (Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1
...)
+ TODO: check
+CVE-2015-7057 (otools in Apple Xcode before 7.2 allows local users to gain
privileges ...)
+ TODO: check
+CVE-2015-7056 (IDE SCM in Apple Xcode before 7.2 does not recognize .gitignore
files, ...)
+ TODO: check
+CVE-2015-7055 (AppleMobileFileIntegrity in Apple iOS before 9.2 and tvOS
before 9.1 ...)
+ TODO: check
+CVE-2015-7054 (zlib in the Compression component in Apple iOS before 9.2, OS X
before ...)
+ TODO: check
+CVE-2015-7053 (ImageIO in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before 9.1, ...)
+ TODO: check
+CVE-2015-7052 (kext tools in Apple OS X before 10.11.2 mishandles
kernel-extension ...)
+ TODO: check
+CVE-2015-7051 (MobileStorageMounter in Apple iOS before 9.2 and tvOS before
9.1 ...)
+ TODO: check
+CVE-2015-7050 (WebKit in Apple iOS before 9.2 and Safari before 9.0.2
misparses ...)
+ TODO: check
+CVE-2015-7049 (otools in Apple Xcode before 7.2 allows local users to gain
privileges ...)
+ TODO: check
+CVE-2015-7048 (WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS
before ...)
+ TODO: check
+CVE-2015-7047 (The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
+CVE-2015-7046 (The Sandbox feature in xnu in Apple iOS before 9.2, OS X before
...)
+ TODO: check
+CVE-2015-7045 (Keychain Access in Apple OS X before 10.11.2 and tvOS before
9.1 ...)
+ TODO: check
+CVE-2015-7044 (The System Integrity Protection feature in Apple OS X before
10.11.2 ...)
+ TODO: check
+CVE-2015-7043 (The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
+CVE-2015-7042 (The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
+CVE-2015-7041 (The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
+CVE-2015-7040 (The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
+CVE-2015-7039 (Buffer overflow in libc in Apple iOS before 9.2, OS X before
10.11.2, ...)
+ TODO: check
+CVE-2015-7038 (Buffer overflow in libc in Apple iOS before 9.2, OS X before
10.11.2, ...)
+ TODO: check
+CVE-2015-7037 (Directory traversal vulnerability in Mobile Backup in Photos in
Apple ...)
+ TODO: check
CVE-2015-7036 (The fts3_tokenizer function in SQLite, as used in Apple iOS
before 8.4 ...)
TODO: check
CVE-2015-7035 (Apple Mac EFI before 2015-002, as used in OS X before 10.11.1
and ...)
@@ -5508,8 +5509,8 @@
NOT-FOR-US: Apple
CVE-2015-7002 (WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1,
and ...)
NOT-FOR-US: Apple
-CVE-2015-7001
- RESERVED
+CVE-2015-7001 (AppSandbox in Apple iOS before 9.2, OS X before 10.11.2, tvOS
before ...)
+ TODO: check
CVE-2015-7000 (Notification Center in Apple iOS before 9.1 mishandles changes
to ...)
NOT-FOR-US: Apple
CVE-2015-6999 (The OCSP client in Apple iOS before 9.1 does not check for
certificate ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
