automatic update

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@57096 e39458fd-73e7-0310-bf30-c45bca0a0e42

2 files changed, 86 insertions, 2 deletions

diff --git a/data/CVE/2006.list b/data/CVE/2006.list
index 96ffd9a76f..06d926c16f 100644
--- a/data/CVE/2006.list
+++ b/data/CVE/2006.list
@@ -4284,8 +4284,8 @@ CVE-2006-5333 (Unspecified vulnerability in Oracle Spatial component in Oracle .
 	NOT-FOR-US: Oracle
 CVE-2006-5332 (Unspecified vulnerability in xdb.dbms_xdbz in the XMLDB component for ...)
 	NOT-FOR-US: Oracle
-CVE-2006-5331
-	RESERVED
+CVE-2006-5331 (The altivec_unavailable_exception function in ...)
+	TODO: check
 CVE-2006-5330 (CRLF injection vulnerability in Adobe Flash Player plugin 9.0.16 and ...)
 	- flashplugin-nonfree 9.0.31.0.1 (bug #402822; medium)
 	NOTE: It is not clear if this is already fix in 9.0.21.78.X (previous version)
diff --git a/data/CVE/2017.list b/data/CVE/2017.list
index cd35b2c8c7..37f7beba6d 100644
--- a/data/CVE/2017.list
+++ b/data/CVE/2017.list
@@ -1,3 +1,87 @@
+CVE-2017-15994 (rsync 3.1.3-development before 2017-10-24, as used in the xlucas svfs ...)
+	TODO: check
+CVE-2017-15993
+	RESERVED
+CVE-2017-15992
+	RESERVED
+CVE-2017-15991
+	RESERVED
+CVE-2017-15990
+	RESERVED
+CVE-2017-15989
+	RESERVED
+CVE-2017-15988
+	RESERVED
+CVE-2017-15987
+	RESERVED
+CVE-2017-15986
+	RESERVED
+CVE-2017-15985
+	RESERVED
+CVE-2017-15984
+	RESERVED
+CVE-2017-15983
+	RESERVED
+CVE-2017-15982
+	RESERVED
+CVE-2017-15981
+	RESERVED
+CVE-2017-15980
+	RESERVED
+CVE-2017-15979
+	RESERVED
+CVE-2017-15978
+	RESERVED
+CVE-2017-15977
+	RESERVED
+CVE-2017-15976 (ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid ...)
+	TODO: check
+CVE-2017-15975 (Vastal I-Tech Dating Zone 0.9.9 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15974 (tPanel 2009 allows SQL injection for Authentication Bypass via 'or 1=1 ...)
+	TODO: check
+CVE-2017-15973 (Sokial Social Network Script 1.0 allows SQL Injection via the id ...)
+	TODO: check
+CVE-2017-15972 (SoftDatepro Dating Social Network 1.3 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15971 (Same Sex Dating Software Pro 1.0 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15970 (PHP CityPortal 2.0 allows SQL Injection via the nid parameter to ...)
+	TODO: check
+CVE-2017-15969 (PG All Share Video 1.0 allows SQL Injection via the PATH_INFO to ...)
+	TODO: check
+CVE-2017-15968 (MyBuilder Clone 1.0 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15967 (Mailing List Manager Pro 3.0 allows SQL Injection via the edit ...)
+	TODO: check
+CVE-2017-15966 (The Zh YandexMap (aka com_zhyandexmap) component 6.1.1.0 for Joomla! ...)
+	TODO: check
+CVE-2017-15965 (The NS Download Shop (aka com_ns_downloadshop) component 2.2.6 for ...)
+	TODO: check
+CVE-2017-15964 (Job Board Script Software allows SQL Injection via the PATH_INFO to a ...)
+	TODO: check
+CVE-2017-15963 (iTech Gigs Script 1.21 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15962 (iStock Management System 1.0 allows Arbitrary File Upload via ...)
+	TODO: check
+CVE-2017-15961 (iProject Management System 1.0 allows SQL Injection via the ID ...)
+	TODO: check
+CVE-2017-15960 (Article Directory Script 3.0 allows SQL Injection via the id parameter ...)
+	TODO: check
+CVE-2017-15959 (Adult Script Pro 2.2.4 allows SQL Injection via the PATH_INFO to a ...)
+	TODO: check
+CVE-2017-15958 (D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15957 (my_profile.php in Ingenious School Management System 2.3.0 allows a ...)
+	TODO: check
+CVE-2017-15956 (ConverTo Video Downloader & Converter 1.4.1 allows Arbitrary File ...)
+	TODO: check
+CVE-2017-15955 (bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to an ...)
+	TODO: check
+CVE-2017-15954 (bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a ...)
+	TODO: check
+CVE-2017-15953 (bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a ...)
+	TODO: check
 CVE-2017-15952
 	RESERVED
 CVE-2017-15951 (The KEYS subsystem in the Linux kernel before 4.13.10 does not ...)