Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 3fcdb510 by Salvatore Bonaccorso at 2019-10-09T20:33:08Z Process more NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -54,31 +54,31 @@ CVE-2019-17382 (An issue was discovered in zabbix.php?action=dashboard.view& CVE-2019-17381 RESERVED CVE-2019-17380 (cPanel before 82.0.15 allows self XSS in the WHM Update Preferences in ...) - TODO: check + NOT-FOR-US: cPanel CVE-2019-17379 (cPanel before 82.0.15 allows self stored XSS in the WHM SSL Storage Ma ...) - TODO: check + NOT-FOR-US: cPanel CVE-2019-17378 (cPanel before 82.0.15 allows self XSS in the SSL Key Delete interface ...) - TODO: check + NOT-FOR-US: cPanel CVE-2019-17377 (cPanel before 82.0.15 allows self XSS in LiveAPI example scripts (SEC- ...) - TODO: check + NOT-FOR-US: cPanel CVE-2019-17376 (cPanel before 82.0.15 allows self XSS in the SSL Certificate Upload in ...) - TODO: check + NOT-FOR-US: cPanel CVE-2019-17375 (cPanel before 82.0.15 allows API token credentials to persist after an ...) - TODO: check + NOT-FOR-US: cPanel CVE-2019-17374 RESERVED CVE-2019-17373 (Certain NETGEAR devices allow unauthenticated access to critical .cgi ...) - TODO: check + NOT-FOR-US: NETGEAR CVE-2019-17372 (Certain NETGEAR devices allow remote attackers to disable all authenti ...) - TODO: check + NOT-FOR-US: NETGEAR CVE-2019-17371 (libpng 1.6.37 has memory leaks in png_malloc_warn and png_create_info_ ...) TODO: check CVE-2019-17370 (OTCMS v3.85 allows arbitrary PHP Code Execution because admin/sysCheck ...) - TODO: check + NOT-FOR-US: OTCMS CVE-2019-17369 (OTCMS v3.85 has CSRF in the admin/member_deal.php Admin Panel page, le ...) - TODO: check + NOT-FOR-US: OTCMS CVE-2019-17368 (S-CMS v1.5 has XSS in tpl.php via the member/member_login.php from par ...) - TODO: check + NOT-FOR-US: S-CMS CVE-2019-17367 RESERVED CVE-2019-17366 @@ -112,9 +112,9 @@ CVE-2019-17356 CVE-2019-17355 RESERVED CVE-2019-17354 (wan.htm page on Zyxel NBG-418N v2 with firmware version V1.00(AARP.9)C ...) - TODO: check + NOT-FOR-US: Zyxel CVE-2019-17353 (An issue discovered on D-Link DIR-615 devices with firmware version 20 ...) - TODO: check + NOT-FOR-US: D-Link CVE-2019-17352 (In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vul ...) TODO: check CVE-2019-17339 @@ -561,7 +561,7 @@ CVE-2019-17133 (In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in CVE-2019-17129 RESERVED CVE-2019-17128 (Netreo OmniCenter through 12.1.1 allows unauthenticated SQL Injection ...) - TODO: check + NOT-FOR-US: Netreo OmniCenter CVE-2019-17127 RESERVED CVE-2019-17126 @@ -569,7 +569,7 @@ CVE-2019-17126 CVE-2019-17125 RESERVED CVE-2019-17124 (Kramer VIAware 2.5.0719.1034 has Incorrect Access Control. ...) - TODO: check + NOT-FOR-US: Kramer VIAware CVE-2019-17123 RESERVED CVE-2019-17122 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3fcdb51086541c915ea7e2b8280e4c20cb6d3609 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3fcdb51086541c915ea7e2b8280e4c20cb6d3609 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits