Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: d1fc77db by security tracker role at 2019-02-07T20:10:16Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,99 @@ +CVE-2019-7627 + RESERVED +CVE-2019-7626 + RESERVED +CVE-2019-7625 + RESERVED +CVE-2019-7624 + RESERVED +CVE-2019-7623 + RESERVED +CVE-2019-7622 + RESERVED +CVE-2019-7621 + RESERVED +CVE-2019-7620 + RESERVED +CVE-2019-7619 + RESERVED +CVE-2019-7618 + RESERVED +CVE-2019-7617 + RESERVED +CVE-2019-7616 + RESERVED +CVE-2019-7615 + RESERVED +CVE-2019-7614 + RESERVED +CVE-2019-7613 + RESERVED +CVE-2019-7612 + RESERVED +CVE-2019-7611 + RESERVED +CVE-2019-7610 + RESERVED +CVE-2019-7609 + RESERVED +CVE-2019-7608 + RESERVED +CVE-2019-7607 + RESERVED +CVE-2019-7606 + RESERVED +CVE-2019-7605 + RESERVED +CVE-2019-7604 + RESERVED +CVE-2019-7603 + RESERVED +CVE-2019-7602 + RESERVED +CVE-2019-7601 + RESERVED +CVE-2019-7600 + RESERVED +CVE-2019-7599 + RESERVED +CVE-2019-7598 + RESERVED +CVE-2019-7597 + RESERVED +CVE-2019-7596 + RESERVED +CVE-2019-7595 + RESERVED +CVE-2019-7594 + RESERVED +CVE-2019-7593 + RESERVED +CVE-2019-7592 + RESERVED +CVE-2019-7591 + RESERVED +CVE-2019-7590 + RESERVED +CVE-2019-7589 + RESERVED +CVE-2019-7588 + RESERVED +CVE-2019-7587 (Bo-blog Wind through 1.6.0-r allows SQL Injection via the ...) + TODO: check +CVE-2019-7586 + RESERVED +CVE-2019-7585 (An issue was discovered in Waimai Super Cms 20150505. ...) + TODO: check +CVE-2019-7584 + RESERVED +CVE-2019-7583 + RESERVED +CVE-2019-7582 (The readBytes function in util/read.c in libming through 0.4.8 allows ...) + TODO: check +CVE-2019-7581 (The parseSWF_ACTIONRECORD function in util/parser.c in libming through ...) + TODO: check +CVE-2019-7580 (ThinkCMF 5.0.190111 allows remote attackers to execute arbitrary PHP ...) + TODO: check CVE-2019-7579 RESERVED CVE-2019-7578 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has ...) @@ -120,8 +216,8 @@ CVE-2019-7537 RESERVED CVE-2019-7536 RESERVED -CVE-2019-7535 - RESERVED +CVE-2019-7535 (index.php in Gurock TestRail 5.3.0.3603 returns potentially sensitive ...) + TODO: check CVE-2019-7534 RESERVED CVE-2019-7533 @@ -559,10 +655,12 @@ CVE-2019-1000021 (slixmpp version before commit 7cd73b594e8122dddf847953fcfc85ab - slixmpp 1.4.2-1 NOTE: https://lab.louiz.org/poezio/slixmpp/commit/7cd73b594e8122dddf847953fcfc85ab4d316416 CVE-2019-1000020 (libarchive version commit 5a98dcf8a86364b3c2c469c85b93647dfb139961 ...) + {DLA-1668-1} - libarchive 3.3.3-4 NOTE: https://github.com/libarchive/libarchive/pull/1120 NOTE: https://github.com/libarchive/libarchive/commit/8312eaa576014cd9b965012af51bc1f967b12423 CVE-2019-1000019 (libarchive version commit bf9aec176c6748f0ee7a678c5f9f9555b9a757c1 ...) + {DLA-1668-1} - libarchive 3.3.3-4 NOTE: https://github.com/libarchive/libarchive/pull/1120 NOTE: https://github.com/libarchive/libarchive/commit/65a23f5dbee4497064e9bb467f81138a62b0dae1 @@ -8073,8 +8171,8 @@ CVE-2019-4010 RESERVED CVE-2019-4009 RESERVED -CVE-2019-4008 - RESERVED +CVE-2019-4008 (API Connect V2018.1 through 2018.4.1.1 is impacted by access token ...) + TODO: check CVE-2019-4007 RESERVED CVE-2019-4006 @@ -8498,7 +8596,7 @@ CVE-2019-3815 (A memory leak was discovered in the backport of fixes for ...) NOTE: specifically the backport of the fix for CVE-2018-16864. CVE-2019-3814 [Suitable client certificate can be used to login as other user] RESERVED - {DSA-4385-1} + {DSA-4385-1 DLA-1667-1} - dovecot 1:2.3.4.1-1 NOTE: https://www.openwall.com/lists/oss-security/2019/02/05/1 CVE-2019-3813 (Spice, versions 0.5.2 through 0.14.1, are vulnerable to an ...) @@ -8745,8 +8843,8 @@ CVE-2019-3706 RESERVED CVE-2019-3705 RESERVED -CVE-2019-3704 - RESERVED +CVE-2019-3704 (VNX Control Station in Dell EMC VNX2 OE for File versions prior to ...) + TODO: check CVE-2019-3703 RESERVED CVE-2019-3702 @@ -15099,8 +15197,8 @@ CVE-2019-1679 RESERVED CVE-2019-1678 RESERVED -CVE-2019-1677 - RESERVED +CVE-2019-1677 (A vulnerability in Cisco Webex Meetings for Android could allow an ...) + TODO: check CVE-2019-1676 RESERVED CVE-2019-1675 @@ -67935,8 +68033,8 @@ CVE-2018-1668 (IBM DataPower Gateway 7.5.0.0 through 7.5.0.19, 7.5.1.0 through . NOT-FOR-US: IBM CVE-2018-1667 (IBM DataPower Gateway 7.6.0.0 through 7.6.0.10, 7.5.2.0 through ...) NOT-FOR-US: IBM -CVE-2018-1666 - RESERVED +CVE-2018-1666 (IBM DataPower Gateway 2018.4.1.0, 7.6.0.0 through 7.6.0.11, 7.5.2.0 ...) + TODO: check CVE-2018-1665 (IBM DataPower Gateway 7.6.0.0 through 7.6.0.10, 7.5.2.0 through ...) NOT-FOR-US: IBM CVE-2018-1664 (IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d1fc77dbb3ce561d2bc5e1078ca09c4de4800ccd -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d1fc77dbb3ce561d2bc5e1078ca09c4de4800ccd You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits