Author: sectracker
Date: 2017-08-10 09:10:19 +0000 (Thu, 10 Aug 2017)
New Revision: 54520
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-10 06:42:55 UTC (rev 54519)
+++ data/CVE/list 2017-08-10 09:10:19 UTC (rev 54520)
@@ -1,3 +1,11 @@
+CVE-2017-12777 (Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via
some ...)
+ TODO: check
+CVE-2017-12776
+ RESERVED
+CVE-2017-12775
+ RESERVED
+CVE-2017-12774 (finecms in 1.9.5\controllers\member\ContentController.php
allows ...)
+ TODO: check
CVE-2017-12773
RESERVED
CVE-2017-12772
@@ -20,8 +28,7 @@
RESERVED
CVE-2017-12763
RESERVED
-CVE-2017-12762 [isdn/i4l: fix buffer overflow]
- RESERVED
+CVE-2017-12762 (In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is
copied ...)
- linux <unfixed>
NOTE: Fixed by:
https://git.kernel.org/linux/9f5af546e6acc30f075828cb58c7f09665033967
(v4.13-rc4)
CVE-2017-12761
@@ -34,8 +41,8 @@
RESERVED
CVE-2017-12757
RESERVED
-CVE-2017-12756
- RESERVED
+CVE-2017-12756 (Command inject in transfer from another server in extplorer
2.1.9 and ...)
+ TODO: check
CVE-2017-12755
RESERVED
CVE-2017-12754 (Stack buffer overflow in httpd in Asuswrt-Merlin firmware ...)
@@ -6156,8 +6163,7 @@
NOT-FOR-US: Apache commons email
CVE-2017-9800
RESERVED
-CVE-2017-9799
- RESERVED
+CVE-2017-9799 (It was found that under some situations and configurations of
Apache ...)
NOT-FOR-US: Apache Storm
CVE-2017-9798
RESERVED
@@ -13432,6 +13438,7 @@
RESERVED
CVE-2017-7809
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7808
@@ -13439,6 +13446,7 @@
- firefox 55.0-1
CVE-2017-7807
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7806
@@ -13452,18 +13460,22 @@
- firefox-esr <not-affected> (Windows-specific)
CVE-2017-7803
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7802
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7801
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7800
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7799
@@ -13471,6 +13483,7 @@
- firefox 55.0-1
CVE-2017-7798
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7797
@@ -13488,10 +13501,12 @@
RESERVED
CVE-2017-7792
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7791
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7790
@@ -13506,18 +13521,22 @@
- firefox 55.0-1
CVE-2017-7787
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7786
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7785
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7784
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7783
@@ -13535,6 +13554,7 @@
- firefox 55.0-1
CVE-2017-7779
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7778
@@ -13718,6 +13738,7 @@
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2017-17/#CVE-2017-7754
CVE-2017-7753
RESERVED
+ {DSA-3928-1}
- firefox 55.0-1
- firefox-esr 52.3.0esr-1
CVE-2017-7752
@@ -25726,12 +25747,12 @@
RESERVED
CVE-2017-3754 (Some Lenovo brand notebook systems do not have write
protections ...)
NOT-FOR-US: Lenovo
-CVE-2017-3753
- RESERVED
-CVE-2017-3752
- RESERVED
-CVE-2017-3751
- RESERVED
+CVE-2017-3753 (A vulnerability has been identified in some Lenovo products
that use ...)
+ TODO: check
+CVE-2017-3752 (An industry-wide vulnerability has been identified in the ...)
+ TODO: check
+CVE-2017-3751 (An unquoted service path vulnerability was identified in the
driver ...)
+ TODO: check
CVE-2017-3750 (On Lenovo VIBE mobile phones, the Lenovo Security Android
application ...)
NOT-FOR-US: Lenovo
CVE-2017-3749 (On Lenovo VIBE mobile phones, the Idea Friend Android
application ...)
@@ -33470,88 +33491,86 @@
RESERVED
CVE-2017-0751
RESERVED
-CVE-2017-0750 [A-36817013]
- RESERVED
+CVE-2017-0750 (A elevation of privilege vulnerability in the Upstream Linux
file ...)
- linux <undetermined>
NOTE: https://source.android.com/security/bulletin/2017-08-01
-CVE-2017-0749 [A-36007735]
- RESERVED
+CVE-2017-0749 (A elevation of privilege vulnerability in the Upstream Linux
linux ...)
- linux <undetermined>
NOTE: https://source.android.com/security/bulletin/2017-08-01
CVE-2017-0748
RESERVED
-CVE-2017-0747
- RESERVED
-CVE-2017-0746
- RESERVED
-CVE-2017-0745
- RESERVED
+CVE-2017-0747 (A elevation of privilege vulnerability in the Qualcomm
proprietary ...)
+ TODO: check
+CVE-2017-0746 (A elevation of privilege vulnerability in the Qualcomm ipa
driver. ...)
+ TODO: check
+CVE-2017-0745 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
CVE-2017-0744
RESERVED
CVE-2017-0743
RESERVED
-CVE-2017-0742
- RESERVED
-CVE-2017-0741
- RESERVED
-CVE-2017-0740
- RESERVED
-CVE-2017-0739
- RESERVED
-CVE-2017-0738
- RESERVED
-CVE-2017-0737
- RESERVED
-CVE-2017-0736
- RESERVED
-CVE-2017-0735
- RESERVED
-CVE-2017-0734
- RESERVED
-CVE-2017-0733
- RESERVED
-CVE-2017-0732
- RESERVED
-CVE-2017-0731
- RESERVED
-CVE-2017-0730
- RESERVED
-CVE-2017-0729
- RESERVED
-CVE-2017-0728
- RESERVED
-CVE-2017-0727
- RESERVED
-CVE-2017-0726
- RESERVED
-CVE-2017-0725
- RESERVED
-CVE-2017-0724
- RESERVED
-CVE-2017-0723
- RESERVED
-CVE-2017-0722
- RESERVED
-CVE-2017-0721
- RESERVED
-CVE-2017-0720
- RESERVED
-CVE-2017-0719
- RESERVED
-CVE-2017-0718
- RESERVED
+CVE-2017-0742 (A elevation of privilege vulnerability in the MediaTek video
driver. ...)
+ TODO: check
+CVE-2017-0741 (A elevation of privilege vulnerability in the MediaTek gpu
driver. ...)
+ TODO: check
+CVE-2017-0740 (A remote code execution vulnerability in the Broadcom
networking ...)
+ TODO: check
+CVE-2017-0739 (A information disclosure vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0738 (A information disclosure vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0737 (A elevation of privilege vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0736 (A denial of service vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0735 (A denial of service vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0734 (A denial of service vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0733 (A denial of service vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0732 (A elevation of privilege vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0731 (A elevation of privilege vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0730 (A denial of service vulnerability in the Android media
framework (h264 ...)
+ TODO: check
+CVE-2017-0729 (A elevation of privilege vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0728 (A denial of service vulnerability in the Android media
framework (hevc ...)
+ TODO: check
+CVE-2017-0727 (A elevation of privilege vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0726 (A denial of service vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0725 (A denial of service vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0724 (A denial of service vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0723 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0722 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0721 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0720 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0719 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0718 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
CVE-2017-0717
RESERVED
-CVE-2017-0716
- RESERVED
-CVE-2017-0715
- RESERVED
-CVE-2017-0714
- RESERVED
-CVE-2017-0713
- RESERVED
-CVE-2017-0712
- RESERVED
+CVE-2017-0716 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0715 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0714 (A remote code execution vulnerability in the Android media
framework ...)
+ TODO: check
+CVE-2017-0713 (A remote code execution vulnerability in the Android libraries
...)
+ TODO: check
+CVE-2017-0712 (A elevation of privilege vulnerability in the Android framework
(wi-fi ...)
+ TODO: check
CVE-2017-0711 (A elevation of privilege vulnerability in the MediaTek
networking ...)
NOT-FOR-US: MediaTek driver for Android
CVE-2017-0710 (A elevation of privilege vulnerability in the Upstream Linux
tcb. ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
