Author: sectracker
Date: 2016-07-28 21:10:12 +0000 (Thu, 28 Jul 2016)
New Revision: 43584
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-28 21:01:28 UTC (rev 43583)
+++ data/CVE/list 2016-07-28 21:10:12 UTC (rev 43584)
@@ -1,3 +1,7 @@
+CVE-2016-6485
+ RESERVED
+CVE-2016-6484
+ RESERVED
CVE-2016-XXXX [WBXML crash (wnpa-sec-2016-49)]
- wireshark <unfixed>
NOTE: Affects 2.0.0 to 2.0.4, fixed in 2.0.5
@@ -55,7 +59,7 @@
NOTE: CVE Request:
http://www.openwall.com/lists/oss-security/2016/07/28/3
CVE-2016-XXXX [NDS dissector crash (wnpa-sec-2016-40)]
- wireshark 2.0
- NOTE: Only affects 1.12, marking 2.0 as fixed
+ NOTE: Only affects 1.12, marking 2.0 as fixed
NOTE: https://www.wireshark.org/security/wnpa-sec-2016-40.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12576
NOTE: Affects 1.12.0 to 1.12.12, fixed in 1.12.13.
@@ -1254,7 +1258,7 @@
[wheezy] - trn <no-dsa> (non-free not supported)
CVE-2016-6185
RESERVED
- {DSA-3628-1}
+ {DSA-3628-1 DLA-565-1}
- perl 5.22.2-2 (bug #829578)
CVE-2016-6175
RESERVED
@@ -6215,8 +6219,8 @@
TODO: check
CVE-2016-4532 (Directory traversal vulnerability in the WAP interface in
Trihedral ...)
TODO: check
-CVE-2016-4531
- RESERVED
+CVE-2016-4531 (Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00
does not ...)
+ TODO: check
CVE-2016-4530 (OSIsoft PI SQL Data Access Server (aka OLE DB) 2016 1.5 allows
remote ...)
TODO: check
CVE-2016-4529 (An unspecified ActiveX control in Schneider Electric SoMachine
HVAC ...)
@@ -6233,8 +6237,8 @@
NOT-FOR-US: ABB PCM600
CVE-2016-4523 (The WAP interface in Trihedral VTScada (formerly VTS) 8.x
through 11.x ...)
TODO: check
-CVE-2016-4522
- RESERVED
+CVE-2016-4522 (SQL injection vulnerability in Rockwell Automation FactoryTalk
...)
+ TODO: check
CVE-2016-4521 (Sixnet BT-5xxx and BT-6xxx M2M devices before 3.8.21 and 3.9.x
before ...)
NOT-FOR-US: Sixnet
CVE-2016-4520 (Schneider Electric Pelco Digital Sentry Video Management System
with ...)
@@ -16233,22 +16237,22 @@
RESERVED
CVE-2016-1468
RESERVED
-CVE-2016-1467
- RESERVED
+CVE-2016-1467 (Cisco Videoscape Session Resource Manager (VSRM) allows remote
...)
+ TODO: check
CVE-2016-1466
RESERVED
-CVE-2016-1465
- RESERVED
+CVE-2016-1465 (Cisco Nexus 1000v Application Virtual Switch (AVS) devices
before ...)
+ TODO: check
CVE-2016-1464
RESERVED
-CVE-2016-1463
- RESERVED
-CVE-2016-1462
- RESERVED
+CVE-2016-1463 (Cisco FireSIGHT System Software 5.3.0, 5.3.1, 5.4.0, 6.0, and
6.0.1 ...)
+ TODO: check
+CVE-2016-1462 (Cross-site scripting (XSS) vulnerability in the web-based
management ...)
+ TODO: check
CVE-2016-1461
RESERVED
-CVE-2016-1460
- RESERVED
+CVE-2016-1460 (Cisco Wireless LAN Controller (WLC) devices 7.4(121.0) and ...)
+ TODO: check
CVE-2016-1459 (Cisco IOS 12.4 and 15.0 through 15.5 and IOS XE 3.13 through
3.17 ...)
TODO: check
CVE-2016-1458
@@ -16419,8 +16423,8 @@
NOT-FOR-US: Cisco
CVE-2016-1375 (Cross-site scripting (XSS) vulnerability in Cisco IP
Interoperability ...)
NOT-FOR-US: Cisco
-CVE-2016-1374
- RESERVED
+CVE-2016-1374 (The web framework in Cisco Unified Computing System (UCS)
Performance ...)
+ TODO: check
CVE-2016-1373 (The gadgets-integration API in Cisco Finesse 8.5(1) through
8.5(5), ...)
TODO: check
CVE-2016-1372
@@ -17132,7 +17136,7 @@
NOTE:
https://anonscm.debian.org/cgit/collab-maint/duck.git/commit/?id=b43b5bbf07973c54b8f1c581a941f4facc97177a
(0.10)
CVE-2016-1238 [unsafe module load path flaw]
RESERVED
- {DSA-3628-1}
+ {DSA-3628-1 DLA-565-1}
- perl 5.22.2-3
- libsys-syslog-perl <removed>
[jessie] - libsys-syslog-perl 0.33-1+deb8u1
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
