diff options
author | security tracker role <sectracker@debian.org> | 2017-10-29 09:10:20 +0000 |
---|---|---|
committer | security tracker role <sectracker@debian.org> | 2017-10-29 09:10:20 +0000 |
commit | e3f22017c18f2833ad42c39799650a8e4804d340 (patch) | |
tree | b20424f096216739cf37b49fef7058f85a8a9aca /data/CVE | |
parent | 71b5e683ca7152ee5593e211967102254a59f04e (diff) |
automatic update
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@57096 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data/CVE')
-rw-r--r-- | data/CVE/2006.list | 4 | ||||
-rw-r--r-- | data/CVE/2017.list | 84 |
2 files changed, 86 insertions, 2 deletions
diff --git a/data/CVE/2006.list b/data/CVE/2006.list index 96ffd9a76f..06d926c16f 100644 --- a/data/CVE/2006.list +++ b/data/CVE/2006.list @@ -4284,8 +4284,8 @@ CVE-2006-5333 (Unspecified vulnerability in Oracle Spatial component in Oracle . NOT-FOR-US: Oracle CVE-2006-5332 (Unspecified vulnerability in xdb.dbms_xdbz in the XMLDB component for ...) NOT-FOR-US: Oracle -CVE-2006-5331 - RESERVED +CVE-2006-5331 (The altivec_unavailable_exception function in ...) + TODO: check CVE-2006-5330 (CRLF injection vulnerability in Adobe Flash Player plugin 9.0.16 and ...) - flashplugin-nonfree 9.0.31.0.1 (bug #402822; medium) NOTE: It is not clear if this is already fix in 9.0.21.78.X (previous version) diff --git a/data/CVE/2017.list b/data/CVE/2017.list index cd35b2c8c7..37f7beba6d 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -1,3 +1,87 @@ +CVE-2017-15994 (rsync 3.1.3-development before 2017-10-24, as used in the xlucas svfs ...) + TODO: check +CVE-2017-15993 + RESERVED +CVE-2017-15992 + RESERVED +CVE-2017-15991 + RESERVED +CVE-2017-15990 + RESERVED +CVE-2017-15989 + RESERVED +CVE-2017-15988 + RESERVED +CVE-2017-15987 + RESERVED +CVE-2017-15986 + RESERVED +CVE-2017-15985 + RESERVED +CVE-2017-15984 + RESERVED +CVE-2017-15983 + RESERVED +CVE-2017-15982 + RESERVED +CVE-2017-15981 + RESERVED +CVE-2017-15980 + RESERVED +CVE-2017-15979 + RESERVED +CVE-2017-15978 + RESERVED +CVE-2017-15977 + RESERVED +CVE-2017-15976 (ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid ...) + TODO: check +CVE-2017-15975 (Vastal I-Tech Dating Zone 0.9.9 allows SQL Injection via the ...) + TODO: check +CVE-2017-15974 (tPanel 2009 allows SQL injection for Authentication Bypass via 'or 1=1 ...) + TODO: check +CVE-2017-15973 (Sokial Social Network Script 1.0 allows SQL Injection via the id ...) + TODO: check +CVE-2017-15972 (SoftDatepro Dating Social Network 1.3 allows SQL Injection via the ...) + TODO: check +CVE-2017-15971 (Same Sex Dating Software Pro 1.0 allows SQL Injection via the ...) + TODO: check +CVE-2017-15970 (PHP CityPortal 2.0 allows SQL Injection via the nid parameter to ...) + TODO: check +CVE-2017-15969 (PG All Share Video 1.0 allows SQL Injection via the PATH_INFO to ...) + TODO: check +CVE-2017-15968 (MyBuilder Clone 1.0 allows SQL Injection via the ...) + TODO: check +CVE-2017-15967 (Mailing List Manager Pro 3.0 allows SQL Injection via the edit ...) + TODO: check +CVE-2017-15966 (The Zh YandexMap (aka com_zhyandexmap) component 6.1.1.0 for Joomla! ...) + TODO: check +CVE-2017-15965 (The NS Download Shop (aka com_ns_downloadshop) component 2.2.6 for ...) + TODO: check +CVE-2017-15964 (Job Board Script Software allows SQL Injection via the PATH_INFO to a ...) + TODO: check +CVE-2017-15963 (iTech Gigs Script 1.21 allows SQL Injection via the ...) + TODO: check +CVE-2017-15962 (iStock Management System 1.0 allows Arbitrary File Upload via ...) + TODO: check +CVE-2017-15961 (iProject Management System 1.0 allows SQL Injection via the ID ...) + TODO: check +CVE-2017-15960 (Article Directory Script 3.0 allows SQL Injection via the id parameter ...) + TODO: check +CVE-2017-15959 (Adult Script Pro 2.2.4 allows SQL Injection via the PATH_INFO to a ...) + TODO: check +CVE-2017-15958 (D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the ...) + TODO: check +CVE-2017-15957 (my_profile.php in Ingenious School Management System 2.3.0 allows a ...) + TODO: check +CVE-2017-15956 (ConverTo Video Downloader & Converter 1.4.1 allows Arbitrary File ...) + TODO: check +CVE-2017-15955 (bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to an ...) + TODO: check +CVE-2017-15954 (bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a ...) + TODO: check +CVE-2017-15953 (bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a ...) + TODO: check CVE-2017-15952 RESERVED CVE-2017-15951 (The KEYS subsystem in the Linux kernel before 4.13.10 does not ...) |