[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Sat, 27 Jan 2018 01:12:06 -0800

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
b722fcfc by security tracker role at 2018-01-27T09:10:14+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,5 @@
+CVE-2018-6351
+       RESERVED
 CVE-2018-6350
        RESERVED
 CVE-2018-6349
@@ -2489,6 +2491,7 @@ CVE-2018-5338
 CVE-2018-5337
        RESERVED
 CVE-2018-5336 (In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, 
NTP, ...)
+       {DLA-1258-1}
        - wireshark 2.4.4-1
        [stretch] - wireshark <no-dsa> (Minor issue)
        [jessie] - wireshark <no-dsa> (Minor issue)
@@ -2497,11 +2500,13 @@ CVE-2018-5336 (In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 
2.2.11, the JSON, XML, N
        NOTE: 
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=4f4c95cf46ba6adbd10b09747e10742801bc706b
        NOTE: 
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=f6702e49a9720d173246668495eece6d77eca5b0
 CVE-2018-5335 (In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the WCP 
dissector ...)
+       {DLA-1258-1}
        - wireshark 2.4.4-1
        NOTE: https://www.wireshark.org/security/wnpa-sec-2018-04.html
        NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14251
        NOTE: 
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=086b87376b988c555484349aa115d6e08ac6db07
 CVE-2018-5334 (In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the IxVeriWave 
file ...)
+       {DLA-1258-1}
        - wireshark 2.4.4-1
        NOTE: https://www.wireshark.org/security/wnpa-sec-2018-03.html
        NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14297
@@ -62853,8 +62858,8 @@ CVE-2017-1655
        RESERVED
 CVE-2017-1654
        RESERVED
-CVE-2017-1653
-       RESERVED
+CVE-2017-1653 (IBM Jazz Foundation (IBM Rational Collaborative Lifecycle 
Management ...)
+       TODO: check
 CVE-2017-1652
        RESERVED
 CVE-2017-1651
@@ -63025,16 +63030,16 @@ CVE-2017-1569 (IBM WebSphere Commerce 7.0 and 8.0 
contains an unspecified ...)
        NOT-FOR-US: IBM
 CVE-2017-1568
        RESERVED
-CVE-2017-1567
-       RESERVED
+CVE-2017-1567 (IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site 
...)
+       TODO: check
 CVE-2017-1566
        RESERVED
 CVE-2017-1565
        RESERVED
 CVE-2017-1564
        RESERVED
-CVE-2017-1563
-       RESERVED
+CVE-2017-1563 (IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site 
...)
+       TODO: check
 CVE-2017-1562
        RESERVED
 CVE-2017-1561
@@ -63069,8 +63074,8 @@ CVE-2017-1547
        RESERVED
 CVE-2017-1546 (IBM DOORS Next Generation (DNG/RRC) 4.07, 5.0, and 6.0 is 
vulnerable ...)
        NOT-FOR-US: IBM DOORS Next Generation
-CVE-2017-1545
-       RESERVED
+CVE-2017-1545 (IBM Doors Web Access 9.5 and 9.6 could allow an attacker with 
physical ...)
+       TODO: check
 CVE-2017-1544
        RESERVED
 CVE-2017-1543
@@ -63079,8 +63084,8 @@ CVE-2017-1542
        RESERVED
 CVE-2017-1541 (A flaw in the AIX 5.3, 6.1, 7.1, and 7.2 JRE/SDK installp and 
updatep ...)
        NOT-FOR-US: IBM
-CVE-2017-1540
-       RESERVED
+CVE-2017-1540 (IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site 
...)
+       TODO: check
 CVE-2017-1539 (IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to 
...)
        NOT-FOR-US: IBM
 CVE-2017-1538 (IBM Financial Transaction Manager for ACH Services for 
Multi-Platform ...)
@@ -63095,8 +63100,8 @@ CVE-2017-1534 (IBM Security Access Manager Appliance 
8.0.0 and 9.0.0 could allow
        NOT-FOR-US: IBM Security Access Manager Appliance
 CVE-2017-1533 (IBM Security Access Manager Appliance 9.0.3 is vulnerable to 
...)
        NOT-FOR-US: IBM Security Access Manager Appliance
-CVE-2017-1532
-       RESERVED
+CVE-2017-1532 (IBM DOORS 9.5 and 9.6 is vulnerable to cross-site scripting. 
This ...)
+       TODO: check
 CVE-2017-1531 (IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to 
...)
        NOT-FOR-US: IBM
 CVE-2017-1530 (IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to 
...)
@@ -63127,10 +63132,10 @@ CVE-2017-1518
        RESERVED
 CVE-2017-1517
        RESERVED
-CVE-2017-1516
-       RESERVED
-CVE-2017-1515
-       RESERVED
+CVE-2017-1516 (IBM Doors Web Access 9.5 and 9.6 could allow a remote attacker 
to ...)
+       TODO: check
+CVE-2017-1515 (IBM Doors Web Access 9.5 and 9.6 could allow an authenticated 
user to ...)
+       TODO: check
 CVE-2017-1514
        RESERVED
 CVE-2017-1513
@@ -63147,8 +63152,8 @@ CVE-2017-1508 (IBM Informix Dynamic Server 12.1 could 
allow a local user logged 
        NOT-FOR-US: IBM
 CVE-2017-1507 (IBM Jazz Foundation Products could disclose sensitive 
information ...)
        NOT-FOR-US: IBM Jazz Foundation Products
-CVE-2017-1506
-       RESERVED
+CVE-2017-1506 (IBM Cognos TM1 10.2 and 10.2.2 is vulnerable to cross-site 
scripting. ...)
+       TODO: check
 CVE-2017-1505
        RESERVED
 CVE-2017-1504 (IBM WebSphere Application Server version 9.0.0.4 could provide 
weaker ...)
@@ -63601,8 +63606,8 @@ CVE-2017-1281
        RESERVED
 CVE-2017-1280
        RESERVED
-CVE-2017-1279
-       RESERVED
+CVE-2017-1279 (IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 could allow 
a ...)
+       TODO: check
 CVE-2017-1278 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0 and 6.0 is 
vulnerable to ...)
        NOT-FOR-US: IBM
 CVE-2017-1277
@@ -63751,8 +63756,8 @@ CVE-2017-1206
        RESERVED
 CVE-2017-1205 (IBM Platform LSF 10.1 contains an unspecified vulnerability 
that could ...)
        NOT-FOR-US: IBM
-CVE-2017-1204
-       RESERVED
+CVE-2017-1204 (IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 contains 
...)
+       TODO: check
 CVE-2017-1203 (IBM Tivoli Endpoint Manager (for Lifecycle/Power/Patch) 
Platform and ...)
        NOT-FOR-US: IBM
 CVE-2017-1202
@@ -87923,8 +87928,8 @@ CVE-2016-2985 (IBM Spectrum Scale 4.1.1.x before 
4.1.1.8 and 4.2.x before 4.2.0.
        NOT-FOR-US: IBM
 CVE-2016-2984 (IBM Spectrum Scale 4.1.1.x before 4.1.1.8 and 4.2.x before 
4.2.0.4 and ...)
        NOT-FOR-US: IBM
-CVE-2016-2983
-       RESERVED
+CVE-2016-2983 (IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 could allow 
a ...)
+       TODO: check
 CVE-2016-2982
        RESERVED
 CVE-2016-2981 (An undisclosed vulnerability in the CLM applications in IBM 
Jazz Team ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b722fcfcfda2e759efea06c0241ce531577e3b1c

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b722fcfcfda2e759efea06c0241ce531577e3b1c
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to