Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits: 57223866 by Moritz Muehlenhoff at 2019-03-28T19:52:23Z phamm fixed new edk issues new telegram-desktop issue - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -456,7 +456,8 @@ CVE-2019-10046 CVE-2019-10045 RESERVED CVE-2019-10044 (Telegram Desktop before 1.5.12 on Windows, and the Telegram applicatio ...) - TODO: check + - telegram-desktop <unfixed> + NOTE: https://github.com/blazeinfosec/advisories/blob/master/telegram-advisory.txt CVE-2019-10043 RESERVED CVE-2019-10042 (The D-Link DIR-816 A2 1.11 router only checks the random token when au ...) @@ -46069,9 +46070,12 @@ CVE-2018-12185 (Insufficient input validation in Intel(R) AMT in Intel(R) CSME b CVE-2018-12184 RESERVED CVE-2018-12183 (Stack overflow in DxeCore for EDK II may allow an unauthenticated user ...) - TODO: check + - edk2 <unfixed> + [stretch] - edk2 <no-dsa> (Minor issue) + NOTE: https://github.com/tianocore/edk2/commit/0a0d5296e448fc350de1594c49b9c0deff7fad60 CVE-2018-12182 (Insufficient memory write check in SMM service for EDK II may allow an ...) - TODO: check + - edk2 <undetermined> + NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=1136 (restricted) CVE-2018-12181 (Stack overflow in corrupted bmp for EDK II may allow unprivileged user ...) - edk2 0~20181115.85588389-3 (bug #924615) [stretch] - edk2 <no-dsa> (Minor issue, will be fixed via point update) @@ -131032,7 +131036,7 @@ CVE-2017-0379 (Libgcrypt before 1.8.1 does not properly consider Curve25519 side NOTE: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=da780c8183cccc8f533c8ace8211ac2cb2bdee7b NOTE: https://eprint.iacr.org/2017/806 CVE-2017-0378 (XSS exists in the login_form function in views/helpers.php in Phamm be ...) - - phamm <unfixed> (bug #868988) + - phamm 0.6.8-1 (bug #868988) [stretch] - phamm <no-dsa> (Minor issue) [jessie] - phamm <no-dsa> (Minor issue) [wheezy] - phamm <no-dsa> (Minor issue) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5722386648ae47cf881129e3789915d3a075d8fe -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5722386648ae47cf881129e3789915d3a075d8fe You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits