Author: sectracker
Date: 2017-02-06 21:10:19 +0000 (Mon, 06 Feb 2017)
New Revision: 48737
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-06 16:26:11 UTC (rev 48736)
+++ data/CVE/list 2017-02-06 21:10:19 UTC (rev 48737)
@@ -1,3 +1,31 @@
+CVE-2017-5890
+ RESERVED
+CVE-2017-5889
+ RESERVED
+CVE-2017-5888
+ RESERVED
+CVE-2017-5887
+ RESERVED
+CVE-2017-5885
+ RESERVED
+CVE-2017-5884
+ RESERVED
+CVE-2017-5883
+ RESERVED
+CVE-2017-5882 (Cross-site scripting (XSS) vulnerability in index.asp in
SANADATA ...)
+ TODO: check
+CVE-2017-5881
+ RESERVED
+CVE-2017-5880 (Splunk Web in Splunk Enterprise versions 6.5.x before 6.5.2,
6.4.x ...)
+ TODO: check
+CVE-2017-5879 (An issue was discovered in Exponent CMS 2.4.1. This is a blind
SQL ...)
+ TODO: check
+CVE-2017-5878
+ RESERVED
+CVE-2016-10207
+ RESERVED
+CVE-2016-10200
+ RESERVED
CVE-2017-XXXX [information leak in error messages]
- libapache2-mod-auth-openidc 2.1.5-1
NOTE: https://github.com/pingidentity/mod_auth_openidc/issues/212
@@ -12,38 +40,45 @@
- irssi <unfixed>
NOTE: http://www.openwall.com/lists/oss-security/2017/02/05/8
CVE-2016-10206
+ RESERVED
- zoneminder <unfixed> (bug #854272)
[jessie] - zoneminder <no-dsa> (Minor issue)
CVE-2016-10205
+ RESERVED
- zoneminder <unfixed> (bug #854272)
[jessie] - zoneminder <no-dsa> (Minor issue)
CVE-2016-10204
+ RESERVED
- zoneminder <unfixed> (bug #854272)
[jessie] - zoneminder <no-dsa> (Minor issue)
CVE-2016-10203
+ RESERVED
- zoneminder <unfixed> (bug #854272)
[jessie] - zoneminder <no-dsa> (Minor issue)
CVE-2016-10202
+ RESERVED
- zoneminder <unfixed> (bug #854272)
[jessie] - zoneminder <no-dsa> (Minor issue)
CVE-2016-10201
+ RESERVED
- zoneminder <unfixed> (bug #854272)
[jessie] - zoneminder <no-dsa> (Minor issue)
-CVE-2016-10208 [linux ext4 memory corruption]
+CVE-2016-10208 (The ext4_fill_super function in fs/ext4/super.c in the Linux
kernel ...)
- linux <unfixed>
[wheezy] - linux <not-affected> (Vulnerable code introduced later)
NOTE: Fixed by:
https://github.com/torvalds/linux/commit/3a4b77cd47bb837b8557595ec7425f281f2ca1fe
(4.10-rc1)
NOTE: Introduced by:
https://github.com/torvalds/linux/commit/952fc18ef9ec707ebdc16c0786ec360295e5ff15
(3.6-rc1)
CVE-2017-5886 [podofo: heap-based buffer overflow in
PoDoFo::PdfTokenizer::GetNextToken (PdfTokenizer.cpp)]
+ RESERVED
- libpodofo <unfixed>
NOTE:
https://blogs.gentoo.org/ago/2017/02/03/podofo-heap-based-buffer-overflow-in-podofopdftokenizergetnexttoken-pdftokenizer-cpp
NOTE:
https://sourceforge.net/p/podofo/mailman/podofo-users/thread/20170204121312.lq26ge6osbiuwnjo%40mapreri.org/#msg35646469
-CVE-2017-5877
- RESERVED
-CVE-2017-5876
- RESERVED
-CVE-2017-5875
- RESERVED
+CVE-2017-5877 (XSS was discovered in dotCMS 3.7.0, with an unauthenticated
attack ...)
+ TODO: check
+CVE-2017-5876 (XSS was discovered in dotCMS 3.7.0, with an unauthenticated
attack ...)
+ TODO: check
+CVE-2017-5875 (XSS was discovered in dotCMS 3.7.0, with an authenticated
attack ...)
+ TODO: check
CVE-2017-5874
RESERVED
CVE-2017-5873
@@ -522,8 +557,8 @@
RESERVED
CVE-2017-5678
RESERVED
-CVE-2017-5677
- RESERVED
+CVE-2017-5677 (PEAR HTML_AJAX 0.3.0 through 0.5.7 has a PHP Object Injection
...)
+ TODO: check
CVE-2017-5676
RESERVED
CVE-2017-5857 [Qemu: display: virtio-gpu-3d: host memory leakage in
virgl_cmd_resource_unref]
@@ -851,8 +886,8 @@
- wordpress 4.7.2+dfsg-1 (bug #852767)
NOTE:
https://github.com/WordPress/WordPress/commit/21264a31e0849e6ff793a06a17de877dd88ea454
NOTE: http://www.openwall.com/lists/oss-security/2017/01/27/2
-CVE-2017-5595
- RESERVED
+CVE-2017-5595 (A file disclosure and inclusion vulnerability exists in ...)
+ TODO: check
CVE-2017-5594 (An issue was discovered in Pagekit CMS before 1.0.11. In this
...)
NOT-FOR-US: Pagekit CMS
CVE-2017-5593
@@ -1020,15 +1055,13 @@
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1415795
NOTE: Marked as unimportant, since 1:2.8+dfsg-2 upload reverts
NOTE: enable virtio gpu (virglrenderer) and opengl support
-CVE-2017-5577 [drm/vc4: Return -EINVAL on the overflow checks failing]
- RESERVED
+CVE-2017-5577 (The vc4_get_bcl function in drivers/gpu/drm/vc4/vc4_gem.c in
the ...)
- linux 4.9.6-1
[jessie] - linux <not-affected> (Vulnerable code introduced later)
[wheezy] - linux <not-affected> (Vulnerable code introduced later)
NOTE: Fixed by:
https://git.kernel.org/linus/6b8ac63847bc2f958dd93c09edc941a0118992d9
NOTE: Introduced by:
https://git.kernel.org/linus/d5b1a78a772f1e31a94f8babfa964152ec5e9aa5 (4.5-rc1)
-CVE-2017-5576 [drm/vc4: Fix an integer overflow in temporary allocation layout]
- RESERVED
+CVE-2017-5576 (Integer overflow in the vc4_get_bcl function in ...)
- linux 4.9.6-1
[jessie] - linux <not-affected> (Vulnerable code introduced later)
[wheezy] - linux <not-affected> (Vulnerable code introduced later)
@@ -1182,14 +1215,12 @@
NOTE:
https://lists.nongnu.org/archive/html/qemu-devel/2016-12/msg03104.html
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1415199
NOTE: Fixed by:
http://git.qemu.org/?p=qemu.git;a=commit;h=eb7a20a3616085d46aa6b4b4224e15587ec67e6e
-CVE-2016-10154 [cifs: Fix smbencrypt() to stop pointing a scatterlist at the
stack]
- RESERVED
+CVE-2016-10154 (The smbhash function in fs/cifs/smbencrypt.c in the Linux
kernel 4.9.x ...)
- linux 4.9.2-1
[jessie] - linux <not-affected> (Introduced in 4.9 in combination with
VMAP_STACK)
[wheezy] - linux <not-affected> (Introduced in 4.9 in combination with
VMAP_STACK)
NOTE: Fixed by:
https://git.kernel.org/linus/06deeec77a5a689cc94b21a8a91a76e42176685d
(v4.10-rc1)
-CVE-2016-10153 [libceph: introduce ceph_crypt() for in-place en/decryption]
- RESERVED
+CVE-2016-10153 (The crypto scatterlist API in the Linux kernel 4.9.x before
4.9.6 ...)
- linux 4.9.6-1
[jessie] - linux <not-affected> (Introduced in 4.9 in combination with
VMAP_STACK)
[wheezy] - linux <not-affected> (Introduced in 4.9 in combination with
VMAP_STACK)
@@ -1208,8 +1239,7 @@
[jessie] - hesiod <no-dsa> (Minor issue)
NOTE: https://github.com/achernya/hesiod/pull/9
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1332508
-CVE-2016-10150 [kvm: use-after-free issue while creating devices]
- RESERVED
+CVE-2016-10150 (Use-after-free vulnerability in the kvm_ioctl_create_device
function ...)
- linux 4.8.15-1
[jessie] - linux <not-affected> (Vulnerable code introduced later)
[wheezy] - linux <not-affected> (Vulnerable code introduced later)
@@ -1234,32 +1264,26 @@
NOTE: Marked as unimportant, since 1:2.8+dfsg-2 reverted the support for
NOTE: virtio gpu (virglrenderer) and opengl, but the affected code is
NOTE: still present.
-CVE-2017-5551 [sgid bit not cleared on tmpfs]
- RESERVED
+CVE-2017-5551 (The simple_set_acl function in fs/posix_acl.c in the Linux
kernel ...)
- linux 4.9.6-1
NOTE: Fixed by:
https://git.kernel.org/linus/497de07d89c1410d76a15bec2bb41f24a2a89f31 (4.10-rc4)
-CVE-2017-5550 [fix a fencepost error in pipe_advance()]
- RESERVED
+CVE-2017-5550 (Off-by-one error in the pipe_advance function in lib/iov_iter.c
in the ...)
- linux 4.9.6-1
NOTE: Fixed by:
https://git.kernel.org/linus/b9dc6f65bc5e232d1c05fe34b5daadc7e8bbf1fb (4.10-rc4)
-CVE-2017-5549 [USB: serial: kl5kusb105: fix line-state error handling]
- RESERVED
+CVE-2017-5549 (The klsi_105_get_line_state function in ...)
- linux 4.9.6-1
NOTE: Fixed by:
https://git.kernel.org/linus/146cc8a17a3b4996f6805ee5c080e7101277c410 (4.10-rc4)
-CVE-2017-5548 [ieee802154: atusb: do not use the stack for buffers to make
them DMA able]
- RESERVED
+CVE-2017-5548 (drivers/net/ieee802154/atusb.c in the Linux kernel 4.9.x before
4.9.6 ...)
- linux 4.9.6-1
[jessie] - linux <not-affected> (Introduced in 4.9 in combination with
VMAP_STACK)
[wheezy] - linux <not-affected> (Introduced in 4.9 in combination with
VMAP_STACK)
NOTE: Fixed by:
https://git.kernel.org/linus/05a974efa4bdf6e2a150e3f27dc6fcf0a9ad5655
-CVE-2017-5547 [HID: corsair: fix DMA buffers on stack]
- RESERVED
+CVE-2017-5547 (drivers/hid/hid-corsair.c in the Linux kernel 4.9.x before
4.9.6 ...)
- linux 4.9.6-1
[jessie] - linux <not-affected> (Vulnerable code introduced in v4.4-rc1)
[wheezy] - linux <not-affected> (Vulnerable code introduced in v4.4-rc1)
NOTE: Fixed by:
https://git.kernel.org/linus/6d104af38b570d37aa32a5803b04c354f8ed513d
-CVE-2017-5546 [mm/slab.c: fix SLAB freelist randomization duplicate entries]
- RESERVED
+CVE-2017-5546 (The freelist-randomization feature in mm/slab.c in the Linux
kernel ...)
- linux 4.9.6-1
[jessie] - linux <not-affected> (freelist randomisation introduced in
4.7)
[wheezy] - linux <not-affected> (freelist randomisation introduced in
4.7)
@@ -1685,10 +1709,10 @@
RESERVED
CVE-2017-5369
RESERVED
-CVE-2017-5368
- RESERVED
-CVE-2017-5367
- RESERVED
+CVE-2017-5368 (ZoneMinder v1.30 and v1.29, an open-source CCTV server web
application, ...)
+ TODO: check
+CVE-2017-5367 (Multiple reflected XSS vulnerabilities exist within form and
link input ...)
+ TODO: check
CVE-2017-5366
RESERVED
CVE-2017-5365
@@ -2442,10 +2466,10 @@
RESERVED
CVE-2017-5138
RESERVED
-CVE-2017-5137
- RESERVED
-CVE-2017-5136
- RESERVED
+CVE-2017-5137 (An issue was discovered on SendQuick Entera and Avera devices
before ...)
+ TODO: check
+CVE-2017-5136 (An issue was discovered on SendQuick Entera and Avera devices
before ...)
+ TODO: check
CVE-2016-10124 (An issue was discovered in Linux Containers (LXC) before
2016-02-22. ...)
- lxc 1:2.0.0-1
[jessie] - lxc <no-dsa> (Minor issue)
@@ -2905,8 +2929,8 @@
NOTE:
https://anonscm.debian.org/cgit/pcsclite/PCSC.git/commit/?id=697fe05967af7ea215bcd5d5774be587780c9e22
NOTE:
https://anonscm.debian.org/cgit/pcsclite/PCSC.git/commit/?id=3aaab9d998b5deb16a246cc7517e44144d281d3b
NOTE: http://www.openwall.com/lists/oss-security/2017/01/03/2
-CVE-2016-10098
- RESERVED
+CVE-2016-10098 (An issue was discovered on SendQuick Entera and Avera devices
before ...)
+ TODO: check
CVE-2016-10097 (XML External Entity (XXE) Vulnerability in ...)
NOT-FOR-US: OpenAM
CVE-2016-10096 (SQL injection vulnerability in register.php in GeniXCMS before
1.0.0 ...)
@@ -8999,8 +9023,7 @@
NOTE:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2017-02-01
CVE-2017-2597
RESERVED
-CVE-2017-2596 [kvm: page reference leakage in handle_vmon]
- RESERVED
+CVE-2017-2596 (The nested_vmx_check_vmptr function in arch/x86/kvm/vmx.c in
the Linux ...)
- linux <unfixed>
NOTE: https://www.spinics.net/lists/kvm/msg144319.html
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1417812
@@ -9041,8 +9064,7 @@
[wheezy] - linux <not-affected> (Vulnerable code introduced in 3.6-rc1)
NOTE: Upstream patch: https://www.spinics.net/lists/kvm/msg143571.html
NOTE: Fixed by:
https://git.kernel.org/linus/129a72a0d3c8e139a04512325384fe5ac119e74d
-CVE-2017-2583
- RESERVED
+CVE-2017-2583 (The load_segment_descriptor implementation in
arch/x86/kvm/emulate.c ...)
- linux 4.9.6-1
[wheezy] - linux <not-affected> (Vulnerable code introduced in 3.6-rc1)
NOTE: Fixed by:
https://git.kernel.org/linus/33ab91103b3415e12457e3104f0e4517ce12d0f3
@@ -13836,8 +13858,7 @@
{DSA-3760-1 DLA-812-1}
- ikiwiki 3.20170111
NOTE: https://ikiwiki.info/security/#cve-2017-0356
-CVE-2016-9772 [OPENAFS-SA-2016-003 - directory information leaks]
- RESERVED
+CVE-2016-9772 (OpenAFS 1.6.19 and earlier allows remote attackers to obtain
sensitive ...)
{DLA-733-1}
- openafs 1.6.20-1 (bug #846922)
[jessie] - openafs <no-dsa> (Minor issue; can be fixed in point release)
@@ -15505,8 +15526,7 @@
{DSA-3762-1 DLA-795-1}
- tiff 4.0.7-1
NOTE:
https://github.com/vadz/libtiff/commit/83a4b92815ea04969d494416eaae3d4c6b338e4a#diff-bdc795f6afeb9558c1012b3cfae729ef
-CVE-2016-9532 [tiffcrop: heap buffer overflow via writeBufferToSeparateStrips]
- RESERVED
+CVE-2016-9532 (Integer overflow in the writeBufferToSeparateStrips function in
...)
{DSA-3762-1 DLA-716-1}
- tiff 4.0.7-1 (bug #844057)
- tiff3 <removed>
@@ -16868,7 +16888,7 @@
CVE-2016-8754
RESERVED
CVE-2016-8753
- RESERVED
+ REJECTED
CVE-2016-8752
RESERVED
CVE-2016-8751
@@ -20427,8 +20447,7 @@
RESERVED
CVE-2016-7801
RESERVED
-CVE-2016-7800
- RESERVED
+CVE-2016-7800 (Integer underflow in the parse8BIM function in coders/meta.c in
...)
{DSA-3746-1 DLA-651-1}
- graphicsmagick 1.3.25-3
NOTE:
https://sourceforge.net/p/graphicsmagick/code/ci/5c7b6d6094a25e99c57f8b18343914ebfd8213ef/
@@ -21228,8 +21247,7 @@
CVE-2016-7450 (The ff_log2_16bit_c function in libavutil/intmath.h in FFmpeg
before ...)
- ffmpeg 7:3.1.4-1 (bug #840434)
NOTE:
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/ac8ac46641adef208485baebc3734463bf0bd266
(n3.1.4)
-CVE-2016-7449 [all TIFF related problems due to use of strlcpy use]
- RESERVED
+CVE-2016-7449 (The TIFFGetField function in coders/tiff.c in GraphicsMagick
1.3.24 ...)
{DLA-651-1}
- graphicsmagick 1.3.25-1
NOTE: The scope of the CVE is for all of these reported TIFF problems.
@@ -21241,19 +21259,16 @@
NOTE:
https://blogs.gentoo.org/ago/2016/08/23/graphicsmagick-two-heap-based-buffer-overflow-in-readtiffimage-tiff-c/
NOTE:
https://blogs.gentoo.org/ago/2016/09/07/graphicsmagick-null-pointer-dereference-in-magickstrlcpy-utility-c/
NOTE: Fixed by
http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/eb58028dacf5
-CVE-2016-7448 [Utah RLE: Reject truncated/absurd files which caused huge
memory allocations and/or consumed huge CPU]
- RESERVED
+CVE-2016-7448 (The Utah RLE reader in GraphicsMagick before 1.3.25 allows
remote ...)
{DLA-683-1}
- graphicsmagick 1.3.25-1
NOTE: Fixed by
http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/30043afadb10
NOTE: Fixed by
http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/d972c761b55d
-CVE-2016-7447 [heap overflow of the EscapeParenthesis() function]
- RESERVED
+CVE-2016-7447 (Heap-based buffer overflow in the EscapeParenthesis function in
...)
{DLA-651-1}
- graphicsmagick 1.3.25-1
NOTE: Fixed by
http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/d580e3c3c034
-CVE-2016-7446 [heap buffer overflow issue in MVG/SVG rendering]
- RESERVED
+CVE-2016-7446 (Buffer overflow in the MVG and SVG rendering code in
GraphicsMagick ...)
{DLA-651-1}
- graphicsmagick 1.3.25-1
NOTE: For the http://www.graphicsmagick.org/NEWS.html#september-5-2016
case
@@ -22005,8 +22020,7 @@
NOT-FOR-US: Ruckus Wireless H500
CVE-2016-1000213 (Ruckus Wireless H500 web management interface CSRF ...)
NOT-FOR-US: Ruckus Wireless H500
-CVE-2010-5328 [process with pgid zero able to crash]
- RESERVED
+CVE-2010-5328 (include/linux/init_task.h in the Linux kernel before 2.6.35
does not ...)
- linux <not-affected> (Fixed before the src:linux-2.6 -> src:linux
rename)
- linux-2.6 2.6.37-1
CVE-2010-5327 (Liferay Portal through 6.2.10 allows remote authenticated users
to ...)
@@ -22130,8 +22144,8 @@
[wheezy] - moin <not-affected> (vulnerable code not present)
NOTE: Fixed by: http://hg.moinmo.in/moin/1.9/rev/eceb70c41ecc
NOTE:
https://www.curesec.com/blog/article/blog/MoinMoin-198-XSS-175.html
-CVE-2016-7147
- RESERVED
+CVE-2016-7147 (Cross-site scripting (XSS) vulnerability in the
manage_findResult ...)
+ TODO: check
CVE-2016-7146 (MoinMoin 1.9.8 allows remote attackers to conduct
"JavaScript ...)
{DSA-3715-1 DLA-717-1}
- moin 1.9.9-1 (bug #844340)
@@ -29856,8 +29870,7 @@
- mplayer <undetermined>
NOTE: https://trac.mplayerhq.hu/ticket/2298
TODO: probably not affected since orig.tar.gz of src:mplayer does not
include libavcodec, ffmpeg/libav affected?
-CVE-2016-5102 [gif2tiff: buffer overflow in readgifimage()]
- RESERVED
+CVE-2016-5102 (Buffer overflow in the readgifimage function in gif2tiff.c in
the ...)
{DLA-693-1}
- tiff 4.0.6-3
[jessie] - tiff 4.0.3-12.3+deb8u2
@@ -44105,7 +44118,7 @@
CVE-2016-0731 (The File Browser View in Apache Ambari before 2.2.1 allows
remote ...)
NOT-FOR-US: Apache Ambari
CVE-2016-0730
- RESERVED
+ REJECTED
CVE-2016-0729 (Multiple buffer overflows in (1) internal/XMLReader.cpp, (2)
...)
{DSA-3493-1 DLA-433-1}
- xerces-c 3.1.3+debian-1 (bug #815907)
@@ -62660,8 +62673,8 @@
RESERVED
CVE-2015-2795
RESERVED
-CVE-2015-2794
- RESERVED
+CVE-2015-2794 (The installation wizard in DotNetNuke (DNN) before 7.4.1 allows
remote ...)
+ TODO: check
CVE-2015-2792 (The WPML plugin before 3.1.9 for WordPress does not properly
handle ...)
NOT-FOR-US: WPML plugin for WordPress
CVE-2015-2791 (The "menu sync" function in the WPML plugin before
3.1.9 for WordPress ...)
@@ -72980,7 +72993,7 @@
CVE-2015-0230
RESERVED
CVE-2015-0229
- RESERVED
+ REJECTED
CVE-2015-0228 (The lua_websocket_read function in lua_request.c in the mod_lua
module ...)
- apache2 2.4.10-10 (low)
[wheezy] - apache2 <not-affected> (no mod_lua in 2.2)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
