Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: ce0fbfc8 by Salvatore Bonaccorso at 2019-07-17T20:47:42Z Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -45,9 +45,9 @@ CVE-2019-13615 (VideoLAN VLC media player 3.0.7.1 has a heap-based buffer over-r - vlc <unfixed> (bug #932241) NOTE: https://trac.videolan.org/vlc/ticket/22474 CVE-2019-13614 (CMD_SET_CONFIG_COUNTRY in the TP-Link Device Debug protocol in TP-Link ...) - TODO: check + NOT-FOR-US: TP-Link CVE-2019-13613 (CMD_FTEST_CONFIG in the TP-Link Device Debug protocol in TP-Link Wirel ...) - TODO: check + NOT-FOR-US: TP-Link CVE-2019-13612 (MDaemon Email Server 19 skips SpamAssassin checks by default for e-mai ...) NOT-FOR-US: MDaemon Email Server CVE-2019-13611 (An issue was discovered in python-engineio through 3.8.2. There is a C ...) @@ -1095,9 +1095,9 @@ CVE-2019-13587 CVE-2019-13586 RESERVED CVE-2019-13585 (The remote admin webserver on FANUC Robotics Virtual Robot Controller ...) - TODO: check + NOT-FOR-US: FANUC Robotics Virtual Robot Controller CVE-2019-13584 (The remote admin webserver on FANUC Robotics Virtual Robot Controller ...) - TODO: check + NOT-FOR-US: FANUC Robotics Virtual Robot Controller CVE-2019-13583 RESERVED CVE-2019-13582 @@ -1490,7 +1490,7 @@ CVE-2019-13405 CVE-2019-13404 (** DISPUTED ** The MSI installer for Python through 2.7.16 on Windows ...) NOT-FOR-US: Disputed issue for Windows installer for Python CVE-2019-13403 (Temenos CWX version 8.9 has an Broken Access Control vulnerability in ...) - TODO: check + NOT-FOR-US: Temenos CWX CVE-2019-13402 (/usr/sbin/default.sh and /usr/apache/htdocs/cgi-bin/admin/hardfactoryd ...) NOT-FOR-US: Dynacolor CVE-2019-13401 (Dynacolor FCM-MB40 v1.2.0.0 devices have CSRF in all scripts under cgi ...) @@ -1613,7 +1613,7 @@ CVE-2019-13348 CVE-2019-13347 RESERVED CVE-2019-13346 (In MyT 1.5.1, the User[username] parameter has XSS. ...) - TODO: check + NOT-FOR-US: MyT CVE-2019-13345 (The cachemgr.cgi web module of Squid through 4.7 has XSS via the user_ ...) {DLA-1847-1} - squid <unfixed> (bug #931478) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ce0fbfc80075dcb8df5028ff3a824a5c8b4e0d66 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ce0fbfc80075dcb8df5028ff3a824a5c8b4e0d66 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits