diff options
author | security tracker role <sectracker@debian.org> | 2017-01-30 21:10:11 +0000 |
---|---|---|
committer | security tracker role <sectracker@debian.org> | 2017-01-30 21:10:11 +0000 |
commit | 5a0fb539b37a8b94e5eab4dfe77aec1c22fc085e (patch) | |
tree | 3ea715db3b83feb1143c6ed4e4da5a53b923b6b5 /data/CVE | |
parent | 61fc9fd5af33a6a03f8c18f4354ccfea5453a887 (diff) |
automatic update
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@48577 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data/CVE')
-rw-r--r-- | data/CVE/2004.list | 2 | ||||
-rw-r--r-- | data/CVE/2016.list | 148 | ||||
-rw-r--r-- | data/CVE/2017.list | 165 |
3 files changed, 208 insertions, 107 deletions
diff --git a/data/CVE/2004.list b/data/CVE/2004.list index 5d109a4f73..ebfc927965 100644 --- a/data/CVE/2004.list +++ b/data/CVE/2004.list @@ -1,3 +1,5 @@ +CVE-2004-2778 + RESERVED CVE-2004-2777 (GE Healthcare Centricity Image Vault 3.x has a password of (1) gemnet ...) NOT-FOR-US: GE Healthcare Centricity Image Vault CVE-2004-XXXX [base-passwd: sets valid shells for system services] diff --git a/data/CVE/2016.list b/data/CVE/2016.list index 382d8af038..dc82573694 100644 --- a/data/CVE/2016.list +++ b/data/CVE/2016.list @@ -1,32 +1,66 @@ +CVE-2016-10186 (An issue was discovered on the D-Link DWR-932B router. ...) + TODO: check +CVE-2016-10185 (An issue was discovered on the D-Link DWR-932B router. A secure_mode=no ...) + TODO: check +CVE-2016-10184 (An issue was discovered on the D-Link DWR-932B router. qmiweb allows ...) + TODO: check +CVE-2016-10183 (An issue was discovered on the D-Link DWR-932B router. qmiweb allows ...) + TODO: check +CVE-2016-10182 (An issue was discovered on the D-Link DWR-932B router. qmiweb allows ...) + TODO: check +CVE-2016-10181 (An issue was discovered on the D-Link DWR-932B router. qmiweb provides ...) + TODO: check +CVE-2016-10180 (An issue was discovered on the D-Link DWR-932B router. WPS PIN ...) + TODO: check +CVE-2016-10179 (An issue was discovered on the D-Link DWR-932B router. There is a ...) + TODO: check +CVE-2016-10178 (An issue was discovered on the D-Link DWR-932B router. HELODBG on port ...) + TODO: check +CVE-2016-10177 (An issue was discovered on the D-Link DWR-932B router. Undocumented ...) + TODO: check +CVE-2016-10176 (The NETGEAR WNR2000v5 router allows an administrator to perform ...) + TODO: check +CVE-2016-10175 (The NETGEAR WNR2000v5 router leaks its serial number when performing a ...) + TODO: check +CVE-2016-10174 (The NETGEAR WNR2000v5 router contains a buffer overflow in the ...) + TODO: check CVE-2016-10173 [directory traversal vulnerability] + RESERVED + {DLA-808-1} - ruby-minitar 0.5.4-3.1 (bug #853075) - ruby-archive-tar-minitar <removed> (bug #853249) NOTE: https://github.com/halostatue/minitar/issues/16 NOTE: https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4 NOTE: https://bugzilla.opensuse.org/show_bug.cgi?id=1021740 CVE-2016-10172 [heap oob read in read_new_config_info / open_utils.c] + RESERVED - wavpack <unfixed> (bug #853076) [wheezy] - wavpack <not-affected> (Vulnerable code not present) NOTE: https://sourceforge.net/p/wavpack/mailman/message/35561951/ NOTE: Fixed by: https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc (5.1.0) CVE-2016-10171 [heap out of bounds read in unreorder_channels / wvunpack.c] + RESERVED - wavpack <unfixed> (bug #853076) NOTE: https://sourceforge.net/p/wavpack/mailman/message/35561939/ NOTE: Fixed by: https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc (5.1.0) CVE-2016-10170 [heap out of bounds read in WriteCaffHeader / caff.c] + RESERVED - wavpack <unfixed> (bug #853076) NOTE: https://sourceforge.net/p/wavpack/mailman/message/35561921/ NOTE: Fixed by: https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc (5.1.0) CVE-2016-10169 [global buffer overread in read_code / read_words.c] + RESERVED - wavpack <unfixed> (bug #853076) NOTE: https://sourceforge.net/p/wavpack/mailman/message/35557889/ NOTE: Fixed by: https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc (5.1.0) CVE-2016-10166 [Fix potential unsigned underflow] + RESERVED - libgd2 2.2.4-1 [wheezy] - libgd2 <not-affected> (Vulnerable code not present) NOTE: https://github.com/libgd/libgd/commit/60bfb401ad5a4a8ae995dcd36372fe15c71e1a35 NOTE: http://www.openwall.com/lists/oss-security/2017/01/26/1 CVE-2016-10167 [Fix DOS vulnerability in gdImageCreateFromGd2Ctx()] + RESERVED {DLA-804-1} - php7.1 7.1.1-1 (unimportant) - php7.0 7.0.15-1 (unimportant) @@ -37,6 +71,7 @@ CVE-2016-10167 [Fix DOS vulnerability in gdImageCreateFromGd2Ctx()] NOTE: https://github.com/libgd/libgd/commit/fe9ed49dafa993e3af96b6a5a589efeea9bfb36f NOTE: http://www.openwall.com/lists/oss-security/2017/01/26/1 CVE-2016-10168 [Fix #354: Signed Integer Overflow gd_io.c] + RESERVED {DLA-804-1} - php7.1 7.1.1-1 (unimportant) - php7.0 7.0.15-1 (unimportant) @@ -2018,10 +2053,10 @@ CVE-2016-9561 (The che_configure function in libavcodec/aacdec_template.c in FFm NOTE: http://www.openwall.com/lists/oss-security/2016/12/08/1 NOTE: non-issue, legitimate media file. If a server application uses libav* on untrusted media NOTE: files, it needs to set resource limits -CVE-2016-9554 - RESERVED -CVE-2016-9553 - RESERVED +CVE-2016-9554 (The Sophos Web Appliance Remote / Secure Web Gateway server (version ...) + TODO: check +CVE-2016-9553 (The Sophos Web Appliance (version 4.2.1.3) is vulnerable to two Remote ...) + TODO: check CVE-2016-9552 RESERVED CVE-2016-9551 @@ -5451,12 +5486,10 @@ CVE-2016-8579 (docker2aci <= 0.12.3 has an infinite loop when handling local - golang-github-appc-docker2aci 0.12.3+dfsg-2 (bug #840711) NOTE: https://github.com/appc/docker2aci/issues/203 NOTE: https://github.com/lucab/docker2aci/commit/54331ec7020e102935c31096f336d31f6400064f -CVE-2016-8575 [buffer overflow in print-fr.c:q933_print()] - RESERVED +CVE-2016-8575 (The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-8574 [buffer overflow in print-fr.c:frf15_print()] - RESERVED +CVE-2016-8574 (The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 CVE-2016-8573 @@ -6964,12 +6997,10 @@ CVE-2016-7994 (Memory leak in the virtio_gpu_resource_create_2d function in ...) [wheezy] - qemu <not-affected> (Vulnerable code introduced in 2.4.0-rc0) - qemu-kvm <not-affected> (Vulnerable code introduced in 2.4.0-rc0) NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg04129.html -CVE-2016-7993 [buffer overflow in multiple protocol parsers] - RESERVED +CVE-2016-7993 (A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7992 [buffer overflow in print-cip.c:cip_if_print()] - RESERVED +CVE-2016-7992 (The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer ...) {DSA-3775-1} - tcpdump 4.9.0-1 CVE-2016-7991 (On Samsung Galaxy S4 through S7 devices, the "omacp" app ignores ...) @@ -6982,20 +7013,16 @@ CVE-2016-7988 (On Samsung Galaxy S4 through S7 devices, absence of permissions o NOT-FOR-US: Samsung CVE-2016-7987 RESERVED -CVE-2016-7986 [buffer overflow in print-geonet.c, multiple functions] - RESERVED +CVE-2016-7986 (The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7985 [buffer overflow in print-calm-fast.c:calm_fast_print()] - RESERVED +CVE-2016-7985 (The CALM FAST parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7984 [buffer overflow in print-tftp.c:tftp_print()] - RESERVED +CVE-2016-7984 (The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7983 [buffer overflow in print-bootp.c:bootp_print()] - RESERVED +CVE-2016-7983 (The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 CVE-2016-7982 (Directory traversal vulnerability in ecrire/exec/valider_xml.php in ...) @@ -7034,16 +7061,13 @@ CVE-2016-7980 (Cross-site request forgery (CSRF) vulnerability in ...) NOTE: https://core.spip.net/projects/spip/repository/revisions/23201 (3.1) NOTE: https://core.spip.net/projects/spip/repository/revisions/23202 (3.0) NOTE: reproducible in Wheezy (2.1.17-1+deb7u5) and Jessie (3.0.17-2+deb8u2) -CVE-2016-7975 [buffer overflow in print-tcp.c:tcp_print()] - RESERVED +CVE-2016-7975 (The TCP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7974 [buffer overflow in print-ip.c, multiple functions] - RESERVED +CVE-2016-7974 (The IP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7973 [buffer overflow in print-atalk.c, multiple functions] - RESERVED +CVE-2016-7973 (The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 CVE-2016-7972 @@ -7199,80 +7223,61 @@ CVE-2016-7942 (The XGetImage function in X.org libX11 before 1.6.4 might allow r NOTE: https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8ea762f94f4c942d898fdeb590a1630c83235c17 CVE-2016-7941 RESERVED -CVE-2016-7940 [buffer overflow in print-stp.c, multiple functions] - RESERVED +CVE-2016-7940 (The STP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7939 [buffer overflow in print-gre.c, multiple functions] - RESERVED +CVE-2016-7939 (The GRE parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7938 [integer overflow in print-zeromq.c:zmtp1_print_frame()] - RESERVED +CVE-2016-7938 (The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7937 [buffer overflow in print-udp.c:vat_print()] - RESERVED +CVE-2016-7937 (The VAT parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7936 [buffer overflow in print-udp.c:udp_print()] - RESERVED +CVE-2016-7936 (The UDP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7935 [buffer overflow in print-udp.c:rtp_print()] - RESERVED +CVE-2016-7935 (The RTP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7934 [buffer overflow in print-udp.c:rtcp_print()] - RESERVED +CVE-2016-7934 (The RTCP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7933 [buffer overflow in print-ppp.c:ppp_hdlc_if_print()] - RESERVED +CVE-2016-7933 (The PPP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7932 [buffer overflow in print-pim.c:pimv2_check_checksum()] - RESERVED +CVE-2016-7932 (The PIM parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7931 [buffer overflow in print-mpls.c:mpls_print()] - RESERVED +CVE-2016-7931 (The MPLS parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7930 [buffer overflow in print-llc.c:llc_print()] - RESERVED +CVE-2016-7930 (The LLC/SNAP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7929 [buffer overflow in print-juniper.c:juniper_parse_header()] - RESERVED +CVE-2016-7929 (The Juniper PPPoE ATM parser in tcpdump before 4.9.0 has a buffer ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7928 [buffer overflow in print-ipcomp.c:ipcomp_print()] - RESERVED +CVE-2016-7928 (The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7927 [buffer overflow in print-802_11.c:ieee802_11_radio_print()] - RESERVED +CVE-2016-7927 (The IEEE 802.11 parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7926 [buffer overflow in print-ether.c:ethertype_print()] - RESERVED +CVE-2016-7926 (The Ethernet parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7925 [buffer overflow in print-sl.c:sl_if_print()] - RESERVED +CVE-2016-7925 (The compressed SLIP parser in tcpdump before 4.9.0 has a buffer ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7924 [buffer overflow in print-atm.c:oam_print()] - RESERVED +CVE-2016-7924 (The ATM parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7923 [buffer overflow in print-arp.c:arp_print()] - RESERVED +CVE-2016-7923 (The ARP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2016-7922 [buffer overflow in print-ah.c:ah_print()] - RESERVED +CVE-2016-7922 (The AH parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 CVE-2016-7920 @@ -13861,32 +13866,27 @@ CVE-2016-5828 (The start_thread function in arch/powerpc/kernel/process.c in the [wheezy] - linux <not-affected> (Introduced in v3.10-rc1) NOTE: https://patchwork.ozlabs.org/patch/636776/ NOTE: Introduced in https://git.kernel.org/linus/bc2a9408fa65195288b41751016c36fd00a75a85 (v3.10-rc1) -CVE-2016-5827 [Heap overread in libical icalparser_parse_string -> icaltime_from_string function] - RESERVED +CVE-2016-5827 (The icaltime_from_string function in libical 0.47 and 1.0 allows ...) - libical <unfixed> [wheezy] - libical <no-dsa> (Low prio according to upstream) NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1281043 TODO: check -CVE-2016-5826 [Heap overread in libical icalparser_parse_string -> parser_get_next_char] - RESERVED +CVE-2016-5826 (The parser_get_next_char function in libical 0.47 and 1.0 allows ...) - libical <unfixed> [wheezy] - libical <no-dsa> (Low prio according to upstream) NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1281041 TODO: check -CVE-2016-5825 [Heap buffer overread in libical (icalparser_parse_string function)] - RESERVED +CVE-2016-5825 (The icalparser_parse_string function in libical 0.47 and 1.0 allows ...) - libical <unfixed> [wheezy] - libical <no-dsa> (Low prio according to upstream) NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1280832 -CVE-2016-5824 [Handful use-after-free crashes in libical (used in Thunderbird)] - RESERVED +CVE-2016-5824 (libical 1.0 allows remote attackers to cause a denial of service ...) - libical <unfixed> NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1275400 NOTE: Reproducer: https://bugzilla.mozilla.org/attachment.cgi?id=8757553 NOTE: Upstream ticket: https://github.com/libical/libical/issues/286 NOTE: Upstream ticket: https://github.com/libical/libical/issues/251 -CVE-2016-5823 [Libical attempting free on address which was not malloc()-ed] - RESERVED +CVE-2016-5823 (The icalproperty_new_clone function in libical 0.47 and 1.0 allows ...) - libical 1.0-1 [wheezy] - libical <no-dsa> (Only possible denial of service, not severe enough to solve) NOTE: possibly correct upstream bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1275787 diff --git a/data/CVE/2017.list b/data/CVE/2017.list index 421f820a66..624ac3ac54 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -1,3 +1,107 @@ +CVE-2017-5664 + RESERVED +CVE-2017-5663 + RESERVED +CVE-2017-5662 + RESERVED +CVE-2017-5661 + RESERVED +CVE-2017-5660 + RESERVED +CVE-2017-5659 + RESERVED +CVE-2017-5658 + RESERVED +CVE-2017-5657 + RESERVED +CVE-2017-5656 + RESERVED +CVE-2017-5655 + RESERVED +CVE-2017-5654 + RESERVED +CVE-2017-5653 + RESERVED +CVE-2017-5652 + RESERVED +CVE-2017-5651 + RESERVED +CVE-2017-5650 + RESERVED +CVE-2017-5649 + RESERVED +CVE-2017-5648 + RESERVED +CVE-2017-5647 + RESERVED +CVE-2017-5646 + RESERVED +CVE-2017-5645 + RESERVED +CVE-2017-5644 + RESERVED +CVE-2017-5643 + RESERVED +CVE-2017-5642 + RESERVED +CVE-2017-5641 + RESERVED +CVE-2017-5640 + RESERVED +CVE-2017-5639 + RESERVED +CVE-2017-5638 + RESERVED +CVE-2017-5637 + RESERVED +CVE-2017-5636 + RESERVED +CVE-2017-5635 + RESERVED +CVE-2017-5634 + RESERVED +CVE-2017-5633 + RESERVED +CVE-2017-5632 (An issue was discovered on the ASUS RT-N56U Wireless Router with ...) + TODO: check +CVE-2017-5631 + RESERVED +CVE-2017-5630 + RESERVED +CVE-2017-5629 + RESERVED +CVE-2017-5626 + RESERVED +CVE-2017-5625 + RESERVED +CVE-2017-5624 + RESERVED +CVE-2017-5623 + RESERVED +CVE-2017-5622 + RESERVED +CVE-2017-5621 + RESERVED +CVE-2017-5620 + RESERVED +CVE-2017-5619 + RESERVED +CVE-2017-5609 (SQL injection vulnerability in include/functions_entries.inc.php in ...) + TODO: check +CVE-2017-5607 + RESERVED +CVE-2017-5606 + RESERVED +CVE-2017-5605 + RESERVED +CVE-2017-5604 + RESERVED +CVE-2017-5603 + RESERVED +CVE-2017-5602 + RESERVED +CVE-2017-5601 (An error in the lha_read_file_header_1() function ...) + TODO: check CVE-2017-XXXX [sd: sdhci OOB access during multi block SDMA transfer] - qemu <unfixed> - qemu-kvm <removed> @@ -48,15 +152,16 @@ CVE-2017-XXXX [s-nail local root privilege escalation] NOTE: https://git.sdaoden.eu/cgit/s-nail.git/commit/?id=f797c27efecad45af191c518b7f87fda32ada160 NOTE: https://git.sdaoden.eu/cgit/s-nail.git/commit/?id=f2699449b66dd702a98925bd1b11153a6f7294bf NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2017/01/27/7 -CVE-2017-5628 +CVE-2017-5628 (An issue was discovered in Artifex Software, Inc. MuJS before ...) NOT-FOR-US: MuJS -CVE-2017-5627 +CVE-2017-5627 (An issue was discovered in Artifex Software, Inc. MuJS before ...) NOT-FOR-US: MuJS CVE-2017-5617 [SSRF issue] + RESERVED - svgsalamander <unfixed> (bug #853134) NOTE: https://github.com/blackears/svgSalamander/issues/11 NOTE: http://www.openwall.com/lists/oss-security/2017/01/27/3 -CVE-2017-5608 +CVE-2017-5608 (Cross-site scripting (XSS) vulnerability in the image upload function ...) - piwigo <removed> CVE-2017-5600 RESERVED @@ -64,15 +169,15 @@ CVE-2017-5599 (An issue was discovered in eClinicalWorks Patient Portal 7.0 buil NOT-FOR-US: eClinicalWorks CVE-2017-5598 (An issue was discovered in eClinicalWorks healow@work 8.0 build 8. This ...) NOT-FOR-US: eClinicalWorks -CVE-2017-5612 [XSS in the posts list table] +CVE-2017-5612 (Cross-site scripting (XSS) vulnerability in ...) - wordpress 4.7.2+dfsg-1 (bug #852767) NOTE: https://github.com/WordPress/WordPress/commit/4482f9207027de8f36630737ae085110896ea849 NOTE: http://www.openwall.com/lists/oss-security/2017/01/27/2 -CVE-2017-5611 [SQL injection in WP_Query] +CVE-2017-5611 (SQL injection vulnerability in wp-includes/class-wp-query.php in ...) - wordpress 4.7.2+dfsg-1 (bug #852767) NOTE: https://github.com/WordPress/WordPress/commit/85384297a60900004e27e417eac56d24267054cb NOTE: http://www.openwall.com/lists/oss-security/2017/01/27/2 -CVE-2017-5610 [taxonomy terms in Press This is shown to users who do not have permissions to use it] +CVE-2017-5610 (wp-admin/includes/class-wp-press-this.php in Press This in WordPress ...) - wordpress 4.7.2+dfsg-1 (bug #852767) NOTE: https://github.com/WordPress/WordPress/commit/21264a31e0849e6ff793a06a17de877dd88ea454 NOTE: http://www.openwall.com/lists/oss-security/2017/01/27/2 @@ -117,6 +222,7 @@ CVE-2017-XXXX [jasper: invalid memory read in jas_matrix_bindsub (jas_seq.c)] NOTE: Upstream bug: https://github.com/mdadams/jasper/issues/113 NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2017/01/25/9 CVE-2017-5618 [screen privilege escalation] + RESERVED - screen 4.5.0-3 (bug #852484) [stretch] - screen <not-affected> (Vulnerable code not present/never migrated to stretch) [jessie] - screen <not-affected> (Vulnerable code not present) @@ -187,10 +293,10 @@ CVE-2017-5575 (SQL injection vulnerability in inc/lib/Options.class.php in GeniX NOT-FOR-US: GenixCMS CVE-2017-5574 (SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 ...) NOT-FOR-US: GenixCMS -CVE-2017-5573 - RESERVED -CVE-2017-5572 - RESERVED +CVE-2017-5573 (An issue was discovered in Linux Foundation xapi in Citrix XenServer ...) + TODO: check +CVE-2017-5572 (An issue was discovered in Linux Foundation xapi in Citrix XenServer ...) + TODO: check CVE-2017-5571 RESERVED CVE-2017-5570 (An issue was discovered in eClinicalWorks Patient Portal 7.0 build 13. ...) @@ -269,15 +375,19 @@ CVE-2017-5528 CVE-2017-5527 RESERVED CVE-2017-5616 [Reflected XSS vulnerability] + RESERVED - cgiemail <removed> (bug #852031) NOTE: http://www.openwall.com/lists/oss-security/2017/01/20/6 CVE-2017-5615 [SEC-215 HTTP header injection] + RESERVED - cgiemail <removed> (bug #852031) NOTE: http://www.openwall.com/lists/oss-security/2017/01/20/6 CVE-2017-5614 [SEC-214 Open redirect] + RESERVED - cgiemail <removed> (bug #852031) NOTE: http://www.openwall.com/lists/oss-security/2017/01/20/6 CVE-2017-5613 [SEC-212 Format string injection] + RESERVED - cgiemail <removed> (bug #852031) NOTE: http://www.openwall.com/lists/oss-security/2017/01/20/6 CVE-2017-5552 [display: virtio-gpu-3d: memory leakage in virgl_resource_attach_backing; CVE for the memory consumption issue, not an information disclosure issue] @@ -397,24 +507,19 @@ CVE-2017-5495 (All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an NOTE: http://git.savannah.gnu.org/cgit/quagga.git/commit/?id=7d66284a5817a1613b1e4d64a0775ec04fdf8c01 CVE-2017-5494 (Multiple cross-site scripting (XSS) vulnerabilities in the file types ...) - b2evolution <removed> -CVE-2017-5486 [buffer overflow in print-isoclns.c:clnp_print()] - RESERVED +CVE-2017-5486 (The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2017-5485 [buffer overflow in addrtoname.c:lookup_nsap()] - RESERVED +CVE-2017-5485 (The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2017-5484 [buffer overflow in print-atm.c:sig_print()] - RESERVED +CVE-2017-5484 (The ATM parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2017-5483 [buffer overflow in print-snmp.c:asn1_parse()] - RESERVED +CVE-2017-5483 (The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2017-5482 [buffer overflow in print-fr.c:q933_print()] - RESERVED +CVE-2017-5482 (The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 CVE-2017-5481 @@ -924,12 +1029,10 @@ CVE-2017-5344 RESERVED CVE-2017-5343 RESERVED -CVE-2017-5342 [bug in multiple protocol parsers could cause buffer overflow in print-ether.c:ether_print()] - RESERVED +CVE-2017-5342 (In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2017-5341 [buffer overflow in print-otv.c:otv_print()] - RESERVED +CVE-2017-5341 (The OTV parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 CVE-2017-5357 [ed invalid free] @@ -1188,20 +1291,16 @@ CVE-2017-5209 (The base64decode function in base64.c in libimobiledevice libplis [jessie] - libplist <no-dsa> (Minor issue) NOTE: Upstream bug: https://github.com/libimobiledevice/libplist/issues/84 NOTE: https://github.com/libimobiledevice/libplist/commit/3a55ddd3c4c11ce75a86afbefd085d8d397ff957 -CVE-2017-5205 [buffer overflow in print-isakmp.c:ikev2_e_print()] - RESERVED +CVE-2017-5205 (The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2017-5204 [buffer overflow in print-ip6.c:ip6_print()] - RESERVED +CVE-2017-5204 (The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2017-5203 [buffer overflow in print-bootp.c:bootp_print()] - RESERVED +CVE-2017-5203 (The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 -CVE-2017-5202 [buffer overflow in print-isoclns.c:clnp_print()] - RESERVED +CVE-2017-5202 (The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in ...) {DSA-3775-1} - tcpdump 4.9.0-1 CVE-2017-5201 @@ -5195,7 +5294,7 @@ CVE-2017-3316 (Vulnerability in the Oracle VM VirtualBox component of Oracle ... - virtualbox 5.1.14-dfsg-1 [jessie] - virtualbox <end-of-life> (DSA-3699-1) [wheezy] - virtualbox <end-of-life> (DSA 3454) -CVE-2017-3315 (Vulnerability in the PeolpeSoft Enterprise HCM ePerformance component ...) +CVE-2017-3315 (Vulnerability in the PeopleSoft Enterprise HCM ePerformance component ...) NOT-FOR-US: Oracle PeopleSoft CVE-2017-3314 (Vulnerability in the Oracle FLEXCUBE Universal Banking component of ...) NOT-FOR-US: Oracle FLEXCUBE |