Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 8567d6bb by Salvatore Bonaccorso at 2019-09-16T20:18:17Z Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -5,7 +5,7 @@ CVE-2019-16373 CVE-2019-16372 RESERVED CVE-2019-16371 (LogMeIn LastPass before 4.33.0 allows attackers to construct a crafted ...) - TODO: check + NOT-FOR-US: LogMeIn LastPass CVE-2019-16370 (The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algori ...) TODO: check CVE-2019-16369 @@ -37,11 +37,11 @@ CVE-2019-16357 CVE-2019-16356 RESERVED CVE-2019-16355 (The File Session Manager in Beego 1.10.0 allows local users to read se ...) - TODO: check + NOT-FOR-US: Beego CVE-2019-16354 (The File Session Manager in Beego 1.10.0 allows local users to read se ...) - TODO: check + NOT-FOR-US: Beego CVE-2019-16353 (Emerson GE Automation Proficy Machine Edition 8.0 allows an access vio ...) - TODO: check + NOT-FOR-US: Emerson GE Automation Proficy Machine Edition CVE-2019-16352 (ffjpeg before 2019-08-21 has a heap-based buffer overflow in jfif_load ...) TODO: check CVE-2019-16351 (ffjpeg before 2019-08-18 has a NULL pointer dereference in huffman_dec ...) @@ -49,13 +49,13 @@ CVE-2019-16351 (ffjpeg before 2019-08-18 has a NULL pointer dereference in huffm CVE-2019-16350 (ffjpeg before 2019-08-18 has a NULL pointer dereference in idct2d8x8() ...) TODO: check CVE-2019-16349 (Bento4 1.5.1-628 has a NULL pointer dereference in AP4_ByteStream::Rea ...) - TODO: check + NOT-FOR-US: Bento4 CVE-2019-16348 (marc-q libwav through 2019-08-15 has a NULL pointer dereference in gai ...) - TODO: check + NOT-FOR-US: libwav CVE-2019-16347 (ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngifl ...) - TODO: check + NOT-FOR-US: ngiflib CVE-2019-16346 (ngiflib 0.4 has a heap-based buffer overflow in WritePixel() in ngifli ...) - TODO: check + NOT-FOR-US: ngiflib CVE-2019-16345 RESERVED CVE-2019-16344 @@ -238,7 +238,7 @@ CVE-2016-10959 (The estatik plugin before 2.3.1 for WordPress has authenticated CVE-2016-10958 (The estatik plugin before 2.3.0 for WordPress has unauthenticated arbi ...) NOT-FOR-US: estatik plugin for WordPress CVE-2016-10957 (The Akal theme through 2016-08-22 for WordPress has XSS via the framew ...) - TODO: check + NOT-FOR-US: Akal theme for WordPress CVE-2016-10956 (The mail-masta plugin 1.0 for WordPress has local file inclusion in co ...) NOT-FOR-US: mail-masta plugin for WordPress CVE-2010-5333 (The web server in Integard Pro and Home before 2.0.0.9037 and 2.2.x be ...) @@ -274,7 +274,7 @@ CVE-2019-16266 CVE-2019-16265 RESERVED CVE-2019-16264 (In Escuela de Gestion Publica Plurinacional (EGPP) Sistema Integrado d ...) - TODO: check + NOT-FOR-US: Escuela de Gestion Publica Plurinacional (EGPP) Sistema Integrado de Gestion Academica (GESAC) CVE-2019-16263 RESERVED CVE-2019-16262 @@ -880,7 +880,7 @@ CVE-2019-16058 (An issue was discovered in the pam_p11 component 0.2.0 and 0.3.0 - pam-p11 <unfixed> (bug #939664) NOTE: https://github.com/OpenSC/pam_p11/commit/d150b60e1e14c261b113f55681419ad1dfa8a76c CVE-2019-16057 (The login_mgr.cgi script in D-Link DNS-320 through 2.05.B10 is vulnera ...) - TODO: check + NOT-FOR-US: D-Link CVE-2019-16056 (An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3 ...) - python3.8 3.8.0~b4-1 - python3.7 <unfixed> View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8567d6bb45651c24d1cca33d5b9a50baa2e42448 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8567d6bb45651c24d1cca33d5b9a50baa2e42448 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits