Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f2d244e0 by security tracker role at 2019-08-04T20:10:18Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6013,6 +6013,7 @@ CVE-2019-12816 (Modules.cpp in ZNC before 1.7.4-rc1
allows remote authenticated
NOTE: Versions affected: 0.098 - 1.7.3
NOTE:
https://github.com/znc/znc/commit/8de9e376ce531fe7f3c8b0aa4876d15b479b7311
CVE-2019-12815 (An arbitrary file copy vulnerability in mod_copy in ProFTPD up
to 1.3. ...)
+ {DSA-4491-1}
- proftpd-dfsg 1.3.6-6 (low; bug #932453)
NOTE: http://bugs.proftpd.org/show_bug.cgi?id=4372
NOTE: https://github.com/proftpd/proftpd/pull/816
@@ -25767,9 +25768,11 @@ CVE-2019-5461 [GitHub Integration SSRF]
- gitlab <unfixed> (bug #933785)
NOTE:
https://about.gitlab.com/2019/07/29/security-release-gitlab-12-dot-1-dot-2-released/
CVE-2019-5460 (Double Free in VLC versions <= 3.0.6 leads to a crash. ...)
+ {DSA-4459-1}
- vlc 3.0.7-1
NOTE: https://hackerone.com/reports/503208
CVE-2019-5459 (An Integer underflow in VLC Media Player versions < 3.0.7
leads to ...)
+ {DSA-4459-1}
- vlc 3.0.7-1
NOTE: https://hackerone.com/reports/502816
CVE-2019-5458 (Cross-site scripting (XSS) vulnerability in http-file-server
(all vers ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2d244e06f0738e2fb9747e5312fe77f0b319db1
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2d244e06f0738e2fb9747e5312fe77f0b319db1
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
