Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: c3fcb6c6 by Salvatore Bonaccorso at 2019-09-30T20:23:54Z Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,17 +1,17 @@ CVE-2019-17051 (Evernote before 7.13 GA on macOS allows code execution because the com ...) - TODO: check + NOT-FOR-US: Evernote CVE-2019-17050 (An issue was discovered in the Voyager package through 1.2.7 for Larav ...) TODO: check CVE-2019-17049 (NETGEAR SRX5308 4.3.5-3 devices allow SQL Injection, as exploited in t ...) - TODO: check + NOT-FOR-US: NETGEAR CVE-2019-17048 RESERVED CVE-2019-17047 RESERVED CVE-2019-17046 (Ilch 2.1.22 allows remote code execution because php is listed under " ...) - TODO: check + NOT-FOR-US: Ilch CMS CVE-2019-17045 (Ilch 2.1.22 allows stored XSS via the title, text, or email id to the ...) - TODO: check + NOT-FOR-US: Ilch CMS CVE-2019-17044 RESERVED CVE-2019-17043 @@ -107,9 +107,9 @@ CVE-2019-16999 (CloudBoot through 2019-03-08 allows SQL Injection via a crafted CVE-2019-16998 RESERVED CVE-2019-16997 (In Metinfo 7.0.0beta, a SQL Injection was discovered in app/system/lan ...) - TODO: check + NOT-FOR-US: Metinfo CVE-2019-16996 (In Metinfo 7.0.0beta, a SQL Injection was discovered in app/system/pro ...) - TODO: check + NOT-FOR-US: Metinfo CVE-2017-18636 (CDG through 2017-01-01 allows downloadDocument.jsp?command=download&am ...) TODO: check CVE-2019-16995 (In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_final ...) @@ -6482,7 +6482,7 @@ CVE-2018-20962 (The Backpack\CRUD Backpack component before 3.4.9 for Laravel al CVE-2019-14753 (SICK FX0-GPNT00000 and FX0-GENT00000 devices through 3.4.0 have a Buff ...) NOT-FOR-US: SICK FX0-GPNT00000 and FX0-GENT00000 devices CVE-2019-14752 (SuiteCRM 7.10.x and 7.11.x has XSS. ...) - TODO: check + NOT-FOR-US: SuiteCRM CVE-2019-14751 (NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, a ...) - nltk 3.4.5-1 (low; bug #935201) [buster] - nltk <no-dsa> (Minor issue) @@ -11296,9 +11296,9 @@ CVE-2019-13469 CVE-2019-13468 RESERVED CVE-2019-13467 (Description: Western Digital SSD Dashboard before 2.5.1.0 and SanDisk ...) - TODO: check + NOT-FOR-US: Western Digital SSD Dashboard and SanDisk SSD Dashboard applications CVE-2019-13466 (Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard ...) - TODO: check + NOT-FOR-US: Western Digital SSD Dashboard and SanDisk SSD Dashboard CVE-2019-13465 RESERVED CVE-2019-13464 (An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) 3.0.2 ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c3fcb6c6e605faf197fa363978bb7777f9f207e7 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c3fcb6c6e605faf197fa363978bb7777f9f207e7 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits