[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4751da18 by Salvatore Bonaccorso at 2023-09-05T22:23:31+02:00 Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -17,7 +17,7 @@ CVE-2023-41108 (TEF portal 2023-07-17 is vulnerable to authenticated remote code CVE-2023-41107 (TEF portal 2023-07-17 is vulnerable to a persistent cross site scripti ...) NOT-FOR-US: TEF portal CVE-2023-41012 (An issue in China Mobile Communications China Mobile Intelligent Home ...) - NOT-FOR-US: China Mobile Communications China Mobile Intelligent Home Gateway + NOT-FOR-US: China Mobile Communications China Mobile Intelligent Home Gateway CVE-2023-41009 (File Upload vulnerability in adlered bolo-solo v.2.6 allows a remote a ...) TODO: check CVE-2023-40918 (KnowStreaming 3.3.0 is vulnerable to Escalation of Privileges. Unautho ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4751da181ac5a5c409d50800012d10a012837033 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4751da181ac5a5c409d50800012d10a012837033 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 051886be by Salvatore Bonaccorso at 2022-11-11T21:30:37+01:00 Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -58,7 +58,7 @@ CVE-2022-3953 (A vulnerability was found in Exiv2. It has been classified as pro NOTE: https://github.com/Exiv2/exiv2/commit/771ead87321ae6e39e5c9f6f0855c58cde6648f1 NOTE: https://github.com/Exiv2/exiv2/pull/2394 NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52731 - TODO: check details + TODO: check details CVE-2022-3952 (A vulnerability has been found in ManyDesigns Portofino 5.3.2 and clas ...) TODO: check CVE-2022-3951 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/051886beca7ac4da212d0ab23db4792a36bff7c4 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/051886beca7ac4da212d0ab23db4792a36bff7c4 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d55dafdc by Salvatore Bonaccorso at 2022-04-13T07:52:02+02:00 Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -510,9 +510,9 @@ CVE-2021-4226 CVE-2022-28889 RESERVED CVE-2022-1288 (A vulnerability, which was classified as problematic, has been found i ...) - NOT-FOR-US: School Club Application System + NOT-FOR-US: School Club Application System CVE-2022-1287 (A vulnerability classified as critical was found in School Club Applic ...) - NOT-FOR-US: School Club Application System + NOT-FOR-US: School Club Application System CVE-2022-1286 (heap-buffer-overflow in mrb_vm_exec in mruby/mruby in GitHub repositor ...) - mruby [bullseye] - mruby (Minor issue) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d55dafdc685226feb5bb9f6298d3cd109fbb1d20 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d55dafdc685226feb5bb9f6298d3cd109fbb1d20 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6617cefa by Salvatore Bonaccorso at 2022-03-12T08:21:38+01:00 Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -19489,7 +19489,7 @@ CVE-2021-44587 CVE-2021-44586 (An issue was discovered in dst-admin v1.3.0. The product has an unauth ...) NOT-FOR-US: dst-admin CVE-2021-44585 (A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in ...) - NOT-FOR-US: jeecg-boot + NOT-FOR-US: jeecg-boot CVE-2021-44584 (Cross-site scripting (XSS) vulnerability in index.php in emlog version ...) NOT-FOR-US: emlog CVE-2021-44583 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6617cefad3e343e1a4fa4f0351f04ab8e18765cc -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6617cefad3e343e1a4fa4f0351f04ab8e18765cc You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4c0e41a4 by Salvatore Bonaccorso at 2021-11-19T21:46:38+01:00 Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -7025,7 +7025,7 @@ CVE-2020-36479 CVE-2021-42339 RESERVED CVE-2021-42338 (4MOSAn GCB Doctors login page has improper validation of Cookie ...) - NOT-FOR-US: 4MOSAn GCB Doctor + NOT-FOR-US: 4MOSAn GCB Doctor CVE-2021-42337 (The permission control of AIFU cashier management salary query functio ...) NOT-FOR-US: AIFU cashier management salary CVE-2021-42336 (The learning history page of the Easytest is vulnerable by permission ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c0e41a41510230a51bf2c34b224e312e664118c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c0e41a41510230a51bf2c34b224e312e664118c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 5183d3a5 by Salvatore Bonaccorso at 2020-11-15T15:21:31+01:00 Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -35490,7 +35490,7 @@ CVE-2020-13879 CVE-2020-13878 RESERVED CVE-2020-13877 (SQL Injection issues in various ASPX pages of ResourceXpress Meeting M ...) - NOT-FOR-US: ResourceXpress Meeting Monitor + NOT-FOR-US: ResourceXpress Meeting Monitor CVE-2020-13876 RESERVED CVE-2020-13875 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5183d3a5d12912c9d749a0f49863beb39d2efcb6 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5183d3a5d12912c9d749a0f49863beb39d2efcb6 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces in CVE list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 398abf37 by Salvatore Bonaccorso at 2020-06-03T22:08:16+02:00 Cleanup trailing whitespaces in CVE list - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -14821,7 +14821,7 @@ CVE-2020-8153 (Improper access control in Groupfolders app 4.0.3 allowed to dele CVE-2020-8152 RESERVED CVE-2020-8151 (There is a possible information disclosure issue in Active Resource ...) - - rails (Vulnerable code splitted out upstream before initial upload to Debian) + - rails (Vulnerable code splitted out upstream before initial upload to Debian) NOTE: ActiveResource was extracted to a separate gem in starting in the 4.0 rails NOTE: release as it was not widely used. CVE-2020-8150 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/398abf37ae759eb1d5b0974ddded7be2d36e04db -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/398abf37ae759eb1d5b0974ddded7be2d36e04db You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 083b16e4 by Salvatore Bonaccorso at 2020-05-01T10:46:00+02:00 Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -12905,7 +12905,7 @@ CVE-2020-7644 (fun-map through 3.3.1 is vulnerable to Prototype Pollution. The f CVE-2020-7643 (paypal-adaptive through 0.4.2 manipulation of JavaScript objects resul ...) NOT-FOR-US: Node paypal-adaptive CVE-2020-7642 (lazysizes through 5.2.0 allows execution of malicious JavaScript. The ...) - NOT-FOR-US: Node lazysizes + NOT-FOR-US: Node lazysizes CVE-2020-7641 RESERVED CVE-2020-7640 (pixl-class prior to 1.0.3 allows execution of arbitrary commands. The ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/083b16e45451c1de1bfe58e44bc77b6500debaec -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/083b16e45451c1de1bfe58e44bc77b6500debaec You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8836c6da by Salvatore Bonaccorso at 2019-11-07T05:48:33Z Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -42353,7 +42353,7 @@ CVE-2019-5069 (A code execution vulnerability exists in Epignosis eFront LMS v5. CVE-2019-5068 (An exploitable shared memory permissions vulnerability exists in the f ...) - mesa NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2019-0857 - NOTE: https://lists.freedesktop.org/pipermail/mesa-dev/2019-October/223704.html + NOTE: https://lists.freedesktop.org/pipermail/mesa-dev/2019-October/223704.html CVE-2019-5067 (An uninitialized memory access vulnerability exists in the way Aspose. ...) NOT-FOR-US: Aspose CVE-2019-5066 (An exploitable use-after-free vulnerability exists in the way LZW-comp ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8836c6da2cc98db51a70a2e33fb4d1638bb41ff7 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8836c6da2cc98db51a70a2e33fb4d1638bb41ff7 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces in CVE list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: b3529369 by Salvatore Bonaccorso at 2019-04-29T05:21:35Z Cleanup trailing whitespaces in CVE list - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -16668,7 +16668,7 @@ CVE-2019-5008 (hw/sparc64/sun4u.c in QEMU 3.1.50 is vulnerable to a NULL pointer [jessie] - qemu (Minor issue) - qemu-kvm NOTE: https://fakhrizulkifli.github.io/posts/2019/01/03/CVE-2019-5008/ - NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=ad280559c68360c9f1cd7be063857853759e6a73 (4.0.0-rc0) + NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=ad280559c68360c9f1cd7be063857853759e6a73 (4.0.0-rc0) CVE-2019-5007 (An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on W ...) NOT-FOR-US: Foxit Reader and PhantomPDF CVE-2019-5006 (An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on W ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b3529369ca6322d39cd305a7ceef7762cd1e8b7e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b3529369ca6322d39cd305a7ceef7762cd1e8b7e You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4ba2d11e by Salvatore Bonaccorso at 2019-03-29T07:44:49Z Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -487,7 +487,7 @@ CVE-2019-10045 RESERVED CVE-2019-10044 (Telegram Desktop before 1.5.12 on Windows, and the Telegram applicatio ...) - telegram-desktop - NOTE: https://github.com/blazeinfosec/advisories/blob/master/telegram-advisory.txt + NOTE: https://github.com/blazeinfosec/advisories/blob/master/telegram-advisory.txt CVE-2019-10043 RESERVED CVE-2019-10042 (The D-Link DIR-816 A2 1.11 router only checks the random token when au ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4ba2d11e5f8549419954a4a93eac0035099e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4ba2d11e5f8549419954a4a93eac0035099e You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a4e2ce9a by Salvatore Bonaccorso at 2018-12-21T06:40:01Z Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -2632,7 +2632,7 @@ CVE-2018-20126 [pvrdma: memory leakage when creating cq/qp] [stretch] - qemu (Vulnerable code not present) [jessie] - qemu (Vulnerable code not present) - qemu-kvm - NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02824.html + NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02824.html NOTE: PVRDMA support not enabled in the binary packages. CVE-2018-20125 [pvrdma: null dereference or excessive memory allocation when creating QP/CQ] RESERVED View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a4e2ce9a16c27bc79ef97970b2b0ba97d3537eb9 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a4e2ce9a16c27bc79ef97970b2b0ba97d3537eb9 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 45ded167 by Salvatore Bonaccorso at 2018-07-10T10:54:03+02:00 Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = --- a/data/CVE/list +++ b/data/CVE/list @@ -35,7 +35,7 @@ CVE-2018-1000614 (ONOS ONOS Controller version 1.13.1 and earlier contains a XML CVE-2018-1000613 (Legion of the Bouncy Castle Legion of the Bouncy Castle Java ...) - bouncycastle 1.60-1 NOTE: https://github.com/bcgit/bc-java/commit/4092ede58da51af9a21e4825fbad0d9a3ef5a223#diff-2c06e2edef41db889ee14899e12bd574 - NOTE: https://github.com/bcgit/bc-java/commit/cd98322b171b15b3f88c5ec871175147893c31e6#diff-148a6c098af0199192d6aede960f45dc + NOTE: https://github.com/bcgit/bc-java/commit/cd98322b171b15b3f88c5ec871175147893c31e6#diff-148a6c098af0199192d6aede960f45dc CVE-2018-1000611 (SURFnet OpenConext EngineBlock version 5.7.0 to 5.7.3 contains a Cross ...) TODO: check CVE-2018-1000622 (The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/45ded167bb828df014304762a6161e6fab8bc3b1 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/45ded167bb828df014304762a6161e6fab8bc3b1 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 7a619257 by Salvatore Bonaccorso at 2018-05-23T08:59:26+02:00 Cleanup trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = --- a/data/CVE/list +++ b/data/CVE/list @@ -1931,7 +1931,7 @@ CVE-2018-10583 (An information disclosure vulnerability occurs when LibreOffice NOTE: Libreoffice. This can e.g. be addressed by rejecting outgoing SMB connections NOTE: from the local network NOTE: The following commit adds this class of access to the list of trusted locations: - NOTE: https://cgit.freedesktop.org/libreoffice/core/commit/?id=0b7f4a4f57117fde33d0b1df96134aa6ccce023e + NOTE: https://cgit.freedesktop.org/libreoffice/core/commit/?id=0b7f4a4f57117fde33d0b1df96134aa6ccce023e CVE-2018-10582 RESERVED CVE-2018-10581 (In Octopus Deploy 3.4.x before 2018.4.7, an authenticated user is able ...) @@ -24509,7 +24509,7 @@ CVE-2017-17689 (The S/MIME specification allows a Cipher Block Chaining (CBC) .. - kf5-messagelib (bug #899127) - kdepim (bug #899128) NOTE: https://efail.de - NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=796135 + NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=796135 NOTE: https://dot.kde.org/2018/05/15/efail-and-kmail CVE-2017-17688 (** DISPUTED ** The OpenPGP specification allows a Cipher Feedback Mode ...) - enigmail (bug #898630) @@ -28078,7 +28078,7 @@ CVE-2018-1113 NOT-FOR-US: Red Hat specific CVE assignment for Red Hat / Fedora setups (nologin listed in /etc/shells violates security expectations) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1571094 CVE-2018-1112 (glusterfs server before versions 3.10.12, 4.0.2 is vulnerable when ...) - - glusterfs (Fix for CVE-2018-1088 was not applied/ incomplete fix not applied) + - glusterfs (Fix for CVE-2018-1088 was not applied/ incomplete fix not applied) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1570891 CVE-2018- (DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and ...) NOT-FOR-US: Red Hat Specific script View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7a61925741a79ca05513884163606196db4d568c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7a61925741a79ca05513884163606196db4d568c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits