Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
30e3c01b by Salvatore Bonaccorso at 2018-10-20T14:47:59Z
Cleanup trailing whitespaces
- - - - -
4211f01e by Salvatore Bonaccorso at 2018-10-20T14:48:30Z
Add Debian bug reference for CVE-2018-17963/qemu
- - - - -
cd23889d by Salvatore Bonaccorso at 2018-10-20T14:49:03Z
Add Debian bug reference for CVE-2018-17962/qemu
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1517,11 +1517,11 @@ CVE-2018-17965 (ImageMagick 7.0.7-28 has a memory leak
vulnerability in WriteSGI
CVE-2018-17964 (Aryanic HighPortal 12.5 has XSS via an Add Tags action. ...)
NOT-FOR-US: Aryanic HighPortal
CVE-2018-17963 (qemu_deliver_packet_iov in net/net.c in Qemu accepts packet
sizes ...)
- - qemu <unfixed>
+ - qemu <unfixed> (bug #911469)
- qemu-kvm <removed>
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03267.html
CVE-2018-17962 (Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c
because ...)
- - qemu <unfixed>
+ - qemu <unfixed> (bug #911468)
- qemu-kvm <removed>
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03268.html
CVE-2018-17961 (Artifex Ghostscript 9.25 and earlier allows attackers to
bypass a ...)
@@ -47133,9 +47133,9 @@ CVE-2018-1152 (libjpeg-turbo 1.5.90 is vulnerable to a
denial of service ...)
CVE-2018-1151 (The web server on Western Digital TV Media Player 1.03.07 and
TV Live ...)
NOT-FOR-US: web server on Western Digital TV Media Player and TV Live
Hub
CVE-2018-1150 (NUUO's NVRMini2 3.8.0 and below contains a backdoor that would
allow ...)
- NOT-FOR-US: NUUO
+ NOT-FOR-US: NUUO
CVE-2018-1149 (cgi_system in NUUO's NVRMini2 3.8.0 and below allows remote
attackers ...)
- NOT-FOR-US: NUUO
+ NOT-FOR-US: NUUO
CVE-2018-1148 (In Nessus before 7.1.0, Session Fixation exists due to
insufficient ...)
NOT-FOR-US: Nessus
CVE-2018-1147 (In Nessus before 7.1.0, a XSS vulnerability exists due to
improper ...)
@@ -94878,13 +94878,13 @@ CVE-2017-2797 (An exploitable heap overflow
vulnerability exists in the ...)
CVE-2017-2796
RESERVED
CVE-2017-2795 (An exploitable heap corruption vulnerability exists in the Txo
...)
- NOT-FOR-US: Antenna House
+ NOT-FOR-US: Antenna House
CVE-2017-2794 (An exploitable stack-based buffer overflow vulnerability exists
in the ...)
NOT-FOR-US: Antenna House
CVE-2017-2793 (An exploitable heap corruption vulnerability exists in the ...)
NOT-FOR-US: Antenna House
CVE-2017-2792 (An exploitable heap corruption vulnerability exists in the
iBldDirInfo ...)
- NOT-FOR-US: Antenna House
+ NOT-FOR-US: Antenna House
CVE-2017-2791 (JustSystems Ichitaro 2016 Trial contains a vulnerability that
exists ...)
NOT-FOR-US: JustSystems Ichitaro 2016 Trial
CVE-2017-2790 (When processing a record type of 0x3c from a Workbook stream
from an ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/59b899673e2211e2b79447702b94f43f5f980007...cd23889d5edbf3d88c4352a8490091132611b63e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/59b899673e2211e2b79447702b94f43f5f980007...cd23889d5edbf3d88c4352a8490091132611b63e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
