Author: sectracker Date: 2017-09-14 09:10:12 +0000 (Thu, 14 Sep 2017) New Revision: 55758
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-09-14 09:04:10 UTC (rev 55757) +++ data/CVE/list 2017-09-14 09:10:12 UTC (rev 55758) @@ -1,3 +1,103 @@ +CVE-2017-14481 + RESERVED +CVE-2017-14480 + RESERVED +CVE-2017-14479 + RESERVED +CVE-2017-14478 + RESERVED +CVE-2017-14477 + RESERVED +CVE-2017-14476 + RESERVED +CVE-2017-14475 + RESERVED +CVE-2017-14474 + RESERVED +CVE-2017-14473 + RESERVED +CVE-2017-14472 + RESERVED +CVE-2017-14471 + RESERVED +CVE-2017-14470 + RESERVED +CVE-2017-14469 + RESERVED +CVE-2017-14468 + RESERVED +CVE-2017-14467 + RESERVED +CVE-2017-14466 + RESERVED +CVE-2017-14465 + RESERVED +CVE-2017-14464 + RESERVED +CVE-2017-14463 + RESERVED +CVE-2017-14462 + RESERVED +CVE-2017-14461 + RESERVED +CVE-2017-14460 + RESERVED +CVE-2017-14459 + RESERVED +CVE-2017-14458 + RESERVED +CVE-2017-14457 + RESERVED +CVE-2017-14456 + RESERVED +CVE-2017-14455 + RESERVED +CVE-2017-14454 + RESERVED +CVE-2017-14453 + RESERVED +CVE-2017-14452 + RESERVED +CVE-2017-14451 + RESERVED +CVE-2017-14450 + RESERVED +CVE-2017-14449 + RESERVED +CVE-2017-14448 + RESERVED +CVE-2017-14447 + RESERVED +CVE-2017-14446 + RESERVED +CVE-2017-14445 + RESERVED +CVE-2017-14444 + RESERVED +CVE-2017-14443 + RESERVED +CVE-2017-14442 + RESERVED +CVE-2017-14441 + RESERVED +CVE-2017-14440 + RESERVED +CVE-2017-14439 + RESERVED +CVE-2017-14438 + RESERVED +CVE-2017-14437 + RESERVED +CVE-2017-14436 + RESERVED +CVE-2017-14435 + RESERVED +CVE-2017-14434 + RESERVED +CVE-2017-14433 + RESERVED +CVE-2017-14432 + RESERVED CVE-2017-14430 (D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) ...) NOT-FOR-US: D-Link CVE-2017-14429 (The DHCP client on D-Link DIR-850L REV. A (with firmware through ...) @@ -1592,8 +1692,8 @@ NOTE: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2017-02 NOTE: https://github.com/ARMmbed/mbedtls/commit/31458a18788b0cf0b722acda9bb2f2fe13a3fb32 NOTE: https://github.com/ARMmbed/mbedtls/commit/d15795acd5074e0b44e71f7ede8bdfe1b48591fc -CVE-2017-13779 - RESERVED +CVE-2017-13779 (GSTN_offline_tool in India Goods and Services Tax Network (GSTN) ...) + TODO: check CVE-2017-13778 (Fiyo CMS 2.0.7 has XSS in dapur\apps\app_config\sys_config.php via the ...) NOT-FOR-US: Fiyo CMS CVE-2017-13777 (GraphicsMagick 1.3.26 has a denial of service issue in ReadXBMImage() ...) @@ -1856,8 +1956,7 @@ [wheezy] - tiff3 <not-affected> (Vulnerable code not present) NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2727 NOTE: Fixed by: https://github.com/vadz/libtiff/commit/f91ca83a21a6a583050e5a5755ce1441b2bf1d7e -CVE-2017-13725 - RESERVED +CVE-2017-13725 (The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer ...) {DSA-3971-1} - tcpdump 4.9.2-1 CVE-2017-13724 (On the Axesstel MU553S MU55XS-V1.14, there is a Stored Cross Site ...) @@ -1994,20 +2093,16 @@ NOTE: https://github.com/htacg/tidy-html5/issues/588 CVE-2017-13691 RESERVED -CVE-2017-13690 - RESERVED +CVE-2017-13690 (The IKEv2 parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13689 - RESERVED +CVE-2017-13689 (The IKEv1 parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13688 - RESERVED +CVE-2017-13688 (The OLSR parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13687 - RESERVED +CVE-2017-13687 (The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 CVE-2017-13686 (net/ipv4/route.c in the Linux kernel 4.13-rc1 through 4.13-rc6 is too ...) @@ -3308,288 +3403,217 @@ RESERVED CVE-2017-13056 RESERVED -CVE-2017-13055 - RESERVED +CVE-2017-13055 (The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13054 - RESERVED +CVE-2017-13054 (The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13053 - RESERVED +CVE-2017-13053 (The BGP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13052 - RESERVED +CVE-2017-13052 (The CFM parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13051 - RESERVED +CVE-2017-13051 (The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13050 - RESERVED +CVE-2017-13050 (The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13049 [buffer over-read in print-rx.c:ubik_print()] - RESERVED +CVE-2017-13049 (The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13048 - RESERVED +CVE-2017-13048 (The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13047 - RESERVED +CVE-2017-13047 (The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13046 - RESERVED +CVE-2017-13046 (The BGP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13045 - RESERVED +CVE-2017-13045 (The VQP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13044 - RESERVED +CVE-2017-13044 (The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13043 - RESERVED +CVE-2017-13043 (The BGP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13042 - RESERVED +CVE-2017-13042 (The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13041 - RESERVED +CVE-2017-13041 (The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13040 - RESERVED +CVE-2017-13040 (The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13039 - RESERVED +CVE-2017-13039 (The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13038 - RESERVED +CVE-2017-13038 (The PPP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13037 - RESERVED +CVE-2017-13037 (The IP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13036 - RESERVED +CVE-2017-13036 (The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13035 - RESERVED +CVE-2017-13035 (The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13034 - RESERVED +CVE-2017-13034 (The PGM parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13033 - RESERVED +CVE-2017-13033 (The VTP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13032 - RESERVED +CVE-2017-13032 (The RADIUS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13031 - RESERVED +CVE-2017-13031 (The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13030 - RESERVED +CVE-2017-13030 (The PIM parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13029 - RESERVED +CVE-2017-13029 (The PPP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13028 - RESERVED +CVE-2017-13028 (The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13027 - RESERVED +CVE-2017-13027 (The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13026 - RESERVED +CVE-2017-13026 (The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13025 - RESERVED +CVE-2017-13025 (The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13024 - RESERVED +CVE-2017-13024 (The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13023 - RESERVED +CVE-2017-13023 (The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13022 - RESERVED +CVE-2017-13022 (The IP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13021 - RESERVED +CVE-2017-13021 (The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13020 - RESERVED +CVE-2017-13020 (The VTP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13019 - RESERVED +CVE-2017-13019 (The PGM parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13018 - RESERVED +CVE-2017-13018 (The PGM parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13017 - RESERVED +CVE-2017-13017 (The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13016 - RESERVED +CVE-2017-13016 (The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13015 - RESERVED +CVE-2017-13015 (The EAP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13014 - RESERVED +CVE-2017-13014 (The White Board protocol parser in tcpdump before 4.9.2 has a buffer ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13013 - RESERVED +CVE-2017-13013 (The ARP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13012 - RESERVED +CVE-2017-13012 (The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13011 - RESERVED +CVE-2017-13011 (Several protocol parsers in tcpdump before 4.9.2 could cause a buffer ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13010 - RESERVED +CVE-2017-13010 (The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13009 - RESERVED +CVE-2017-13009 (The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13008 - RESERVED +CVE-2017-13008 (The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13007 - RESERVED +CVE-2017-13007 (The Apple PKTAP parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13006 - RESERVED +CVE-2017-13006 (The L2TP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13005 - RESERVED +CVE-2017-13005 (The NFS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13004 - RESERVED +CVE-2017-13004 (The Juniper protocols parser in tcpdump before 4.9.2 has a buffer ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13003 - RESERVED +CVE-2017-13003 (The LMP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13002 - RESERVED +CVE-2017-13002 (The AODV parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13001 - RESERVED +CVE-2017-13001 (The NFS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-13000 - RESERVED +CVE-2017-13000 (The IEEE 802.15.4 parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12999 - RESERVED +CVE-2017-12999 (The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12998 - RESERVED +CVE-2017-12998 (The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12997 - RESERVED +CVE-2017-12997 (The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12996 - RESERVED +CVE-2017-12996 (The PIMv2 parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12995 - RESERVED +CVE-2017-12995 (The DNS parser in tcpdump before 4.9.2 could enter an infinite loop due ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12994 - RESERVED +CVE-2017-12994 (The BGP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12993 - RESERVED +CVE-2017-12993 (The Juniper protocols parser in tcpdump before 4.9.2 has a buffer ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12992 - RESERVED +CVE-2017-12992 (The RIPng parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12991 - RESERVED +CVE-2017-12991 (The BGP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12990 - RESERVED +CVE-2017-12990 (The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12989 - RESERVED +CVE-2017-12989 (The RESP parser in tcpdump before 4.9.2 could enter an infinite loop ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12988 - RESERVED +CVE-2017-12988 (The telnet parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12987 - RESERVED +CVE-2017-12987 (The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12986 - RESERVED +CVE-2017-12986 (The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12985 - RESERVED +CVE-2017-12985 (The IPv6 parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 CVE-2017-12984 (PHPMyWind 5.3 has XSS in shoppingcart.php, related to message.php, ...) @@ -3895,44 +3919,34 @@ NOTE: https://github.com/akrennmair/newsbeuter/commit/96e9506ae9e252c548665152d1b8968297128307 CVE-2017-12903 RESERVED -CVE-2017-12902 - RESERVED +CVE-2017-12902 (The Zephyr parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12901 - RESERVED +CVE-2017-12901 (The EIGRP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12900 - RESERVED +CVE-2017-12900 (Several protocol parsers in tcpdump before 4.9.2 could cause a buffer ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12899 - RESERVED +CVE-2017-12899 (The DECnet parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12898 - RESERVED +CVE-2017-12898 (The NFS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12897 - RESERVED +CVE-2017-12897 (The ISO CLNS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12896 - RESERVED +CVE-2017-12896 (The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12895 - RESERVED +CVE-2017-12895 (The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12894 - RESERVED +CVE-2017-12894 (Several protocol parsers in tcpdump before 4.9.2 could cause a buffer ...) {DSA-3971-1} - tcpdump 4.9.2-1 -CVE-2017-12893 - RESERVED +CVE-2017-12893 (The SMB/CIFS parser in tcpdump before 4.9.2 has a buffer over-read in ...) {DSA-3971-1} - tcpdump 4.9.2-1 CVE-2017-12925 (Double free vulnerability in DfFromLB in docfile.cxx in libfpx ...) @@ -6110,8 +6124,8 @@ RESERVED CVE-2017-12250 RESERVED -CVE-2017-12249 - RESERVED +CVE-2017-12249 (A vulnerability in the Traversal Using Relay NAT (TURN) server included ...) + TODO: check CVE-2017-12248 RESERVED CVE-2017-12247 @@ -24545,7 +24559,7 @@ RESERVED CVE-2017-5995 (The NetApp ONTAP Select Deploy administration utility 2.0 through ...) NOT-FOR-US: NetApp ONTAP Select Deploy administration utility -CVE-2017-14431 [XSA-207: memory leak when destroying guest without PT devices] +CVE-2017-14431 (Memory leak in Xen 3.3 through 4.8.x allows guest OS users to cause a ...) - xen 4.8.1-1 (bug #856229) [jessie] - xen <no-dsa> (Minor issue) [wheezy] - xen <no-dsa> (Minor issue) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits