Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 5b7ece76 by security tracker role at 2018-10-07T20:10:38Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,15 @@ +CVE-2018-18026 + RESERVED +CVE-2018-18025 (In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in ...) + TODO: check +CVE-2018-18024 (In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ...) + TODO: check +CVE-2018-18023 (In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in ...) + TODO: check +CVE-2018-18022 + RESERVED +CVE-2012-6710 (ext_find_user in eXtplorer through 2.1.2 allows remote attackers to ...) + TODO: check CVE-2018-18020 (In QPDF 8.2.1, in libqpdf/QPDFWriter.cc, QPDFWriter::unparseObject and ...) - qpdf <unfixed> NOTE: https://github.com/qpdf/qpdf/issues/243 @@ -85,7 +97,7 @@ CVE-2018-17981 RESERVED CVE-2018-17980 RESERVED -CVE-2015-9273 +CVE-2015-9273 (The wp-slimstat (aka Slimstat Analytics) plugin before 4.1.6.1 for ...) NOT-FOR-US: WordPress plugin wp-slimstat CVE-2015-9272 (The videowhisper-video-presentation plugin 3.31.17 for WordPress allows ...) NOT-FOR-US: videowhisper-video-presentation plugin for WordPress @@ -430,6 +442,7 @@ CVE-2018-17827 (HisiPHP 1.0.8 allows remote attackers to execute arbitrary PHP c CVE-2018-17826 (HisiPHP 1.0.8 allows CSRF via admin.php/admin/user/adduser.html to add ...) NOT-FOR-US: HisiPHP CVE-2018-17825 (An issue was discovered in AdPlug 2.3.1. There are several double-free ...) + {DLA-1534-1} - adplug <unfixed> (bug #910534) [stretch] - adplug <no-dsa> (Minor issue) NOTE: https://github.com/adplug/adplug/issues/67 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b7ece766f8e3c6eb7ee56b2e927ac44e8eefe47 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b7ece766f8e3c6eb7ee56b2e927ac44e8eefe47 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits