Author: sectracker
Date: 2016-12-20 21:10:11 +0000 (Tue, 20 Dec 2016)
New Revision: 47258
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-20 20:48:26 UTC (rev 47257)
+++ data/CVE/list 2016-12-20 21:10:11 UTC (rev 47258)
@@ -296,6 +296,7 @@
CVE-2016-582384
REJECTED
CVE-2016-9964 (redirect() in bottle.py in bottle 0.12.10 doesn't filter a
"\r\n" ...)
+ {DSA-3743-1}
- python-bottle 0.12.11-1 (bug #848392)
NOTE: Upstream bug: https://github.com/bottlepy/bottle/issues/913
NOTE: Upstream patch:
https://github.com/bottlepy/bottle/commit/6d7e13da0f998820800ecb3fe9ccee4189aefb54
@@ -336,6 +337,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/12/15/1
CVE-2016-9956 [Allows the route manager to overwrite arbitrary files]
RESERVED
+ {DSA-3742-1}
- flightgear 1:2016.4.3+dfsg-1 (bug #848114)
NOTE: http://www.openwall.com/lists/oss-security/2016/12/14/11
CVE-2016-9951 (An issue was discovered in Apport before 2.20.4. A malicious
Apport ...)
@@ -23056,6 +23058,7 @@
NOTE: Fixed by:
http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/8d175c4edfe7
CVE-2016-5240 [negative stroke-dasharray arguments which were resulting in
endless looping.]
RESERVED
+ {DLA-547-1}
- graphicsmagick 1.3.24-1
NOTE: Fixed by:
http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/ddc999ec896c
NOTE: DLA-547-1 didn't fix this properly
@@ -36635,6 +36638,7 @@
NOTE: Testsuite update:
https://anonscm.debian.org/cgit/pkg-postgresql/postgresql-common.git/commit/?id=30f0e4200cfc358b4536bf5d1f6c48abb779d438
CVE-2016-1254 [TROVE-2016-12-002]
RESERVED
+ {DSA-3741-1 DLA-754-1}
- tor 0.2.9.8-2 (bug #848847)
NOTE: https://blog.torproject.org/blog/tor-02812-released
NOTE: https://trac.torproject.org/projects/tor/ticket/21018
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
