Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 3c528b7b by Salvatore Bonaccorso at 2019-06-22T12:25:29Z Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -210,7 +210,7 @@ CVE-2019-12838 CVE-2019-12837 RESERVED CVE-2019-12836 (The Bobronix JEditor editor before 3.0.6 for Jira allows an attacker t ...) - TODO: check + NOT-FOR-US: Bobronix JEditor editor for Jira CVE-2019-12835 (formats/xml.cpp in Leanify 0.4.3 allows for a controlled out-of-bounds ...) NOT-FOR-US: Leanify CVE-2019-12834 @@ -826,7 +826,7 @@ CVE-2019-12574 CVE-2019-12573 RESERVED CVE-2019-12572 (A vulnerability in the London Trust Media Private Internet Access (PIA ...) - TODO: check + NOT-FOR-US: London Trust Media Private Internet Access (PIA) VPN Client CVE-2019-12571 RESERVED CVE-2019-12570 @@ -3844,7 +3844,7 @@ CVE-2019-11394 CVE-2019-11393 (An issue was discovered in /admin/users/update in M/Monit before 3.7.3 ...) NOT-FOR-US: M/Monit CVE-2019-11392 (BlogEngine.NET 3.3.7 and earlier allows XXE via an apml file to syndic ...) - TODO: check + NOT-FOR-US: BlogEngine.NET CVE-2019-11391 (An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ...) - modsecurity-crs <unfixed> (unimportant; bug #928053) NOTE: https://github.com/SpiderLabs/owasp-modsecurity-crs/issues/1357 @@ -4819,7 +4819,7 @@ CVE-2019-11013 CVE-2019-11012 RESERVED CVE-2019-11011 (Akamai CloudTest before 58.30 allows remote code execution. ...) - TODO: check + NOT-FOR-US: Akamai CloudTest CVE-2019-11010 (In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a memory leak in ...) {DLA-1755-1} - graphicsmagick 1.4~hg15968-1 (bug #927029) @@ -5657,11 +5657,11 @@ CVE-2019-10722 CVE-2019-10721 RESERVED CVE-2019-10720 (BlogEngine.NET 3.3.7.0 and earlier allows Directory Traversal and Remo ...) - TODO: check + NOT-FOR-US: BlogEngine.NET CVE-2019-10719 (BlogEngine.NET 3.3.7.0 and earlier allows Directory Traversal and Remo ...) - TODO: check + NOT-FOR-US: BlogEngine.NET CVE-2019-10718 (BlogEngine.NET 3.3.7.0 and earlier allows XML External Entity Blind In ...) - TODO: check + NOT-FOR-US: BlogEngine.NET CVE-2019-10717 RESERVED CVE-2019-10716 @@ -6585,7 +6585,7 @@ CVE-2019-10272 (An issue was discovered in Weaver e-cology 9.0. There is a CRLF CVE-2019-10271 RESERVED CVE-2019-10270 (An arbitrary password reset issue was discovered in the Ultimate Membe ...) - TODO: check + NOT-FOR-US: Ultimate Member plugin for WordPress CVE-2019-10269 (BWA (aka Burrow-Wheeler Aligner) before 2019-01-23 has a stack-based b ...) - bwa 0.7.17-3 (low; bug #926014) [stretch] - bwa 0.7.15-2+deb9u1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3c528b7bd0e32f5f7a2e0e4fd5f7e7660a462da5 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3c528b7bd0e32f5f7a2e0e4fd5f7e7660a462da5 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits