Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4528b518 by security tracker role at 2018-03-08T09:10:23+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,9 @@
+CVE-2018-7756
+ RESERVED
+CVE-2018-7755 (An issue was discovered in the fd_locked_ioctl function in ...)
+ TODO: check
+CVE-2018-7754
+ RESERVED
CVE-2018-7751
RESERVED
CVE-2018-7750
@@ -28,7 +34,7 @@ CVE-2018-1000116 (NET-SNMP version 5.7.2 contains a heap
corruption vulnerabilit
NOTE:
https://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/
NOTE: Same patch/commit as #788964 (as used for fixing CVE-2015-5621)
NOTE: adresses CVE-2018-1000116 as well.
-CVE-2018-7753 [URI values with character entities not properly sanitized]
+CVE-2018-7753 (An issue was discovered in Bleach 2.1.x before 2.1.3.
Attributes that ...)
- python-bleach 2.1.3-1 (bug #892252)
[stretch] - python-bleach <not-affected> (Vulnerable code introduced
later)
[jessie] - python-bleach <not-affected> (Vulnerable code introduced
later)
@@ -109,7 +115,7 @@ CVE-2018-7720 (A cross-site request forgery (CSRF)
vulnerability exists in Weste
NOT-FOR-US: Western Bridge Cobub Razor
CVE-2018-7719
RESERVED
-CVE-2018-7752 [Stack buffer overflow in avc_parsers.c]
+CVE-2018-7752 (GPAC through 0.7.1 has a Buffer Overflow in the
gf_media_avc_read_sps ...)
- gpac <unfixed>
NOTE: https://github.com/gpac/gpac/issues/997
NOTE:
https://github.com/gpac/gpac/commit/90dc7f853d31b0a4e9441cba97feccf36d8b69a4
@@ -229,8 +235,8 @@ CVE-2018-7677
RESERVED
CVE-2018-7676
RESERVED
-CVE-2018-7675
- RESERVED
+CVE-2018-7675 (In NetIQ Sentinel before 8.1.x, a Sentinel user is logged into
the ...)
+ TODO: check
CVE-2018-7674
RESERVED
CVE-2018-7673
@@ -713,10 +719,12 @@ CVE-2018-7644 (The XmlSecLibs library as used in the
saml2 library in SimpleSAML
NOTE: Fixed by:
https://github.com/simplesamlphp/saml2/commit/88a9ae848c4b310b1c53b5700893d890999dd930
CVE-2018-7537 [Denial-of-service possibility in truncatechars_html and
truncatewords_html template filters]
RESERVED
+ {DLA-1303-1}
- python-django 1:1.11.11-1
NOTE:
https://www.djangoproject.com/weblog/2018/mar/06/security-releases/
CVE-2018-7536 [Denial-of-service possibility in urlize and urlizetrunc
template filters]
RESERVED
+ {DLA-1303-1}
- python-django 1:1.11.11-1
NOTE:
https://www.djangoproject.com/weblog/2018/mar/06/security-releases/
CVE-2018-7535
@@ -1933,7 +1941,7 @@ CVE-2018-7172 (In index.php in WonderCMS before 2.4.1,
remote attackers can dele
NOT-FOR-US: WonderCMS
CVE-2018-7171
RESERVED
-CVE-2018-7170 (nptd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows
...)
+CVE-2018-7170 (ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows
...)
- ntp <unfixed>
- ntpsec <not-affected> (Issue not present)
NOTE: http://www.kb.cert.org/vuls/id/961909
@@ -6009,6 +6017,7 @@ CVE-2018-5734 [A malformed request can trigger an
assertion failure in badcache.
NOTE: https://kb.isc.org/article/AA-01562/74/CVE-2018-5734
CVE-2018-5733 [A malicious client can overflow a reference counter in ISC
dhcpd]
RESERVED
+ {DSA-4133-1}
- isc-dhcp 4.3.5-3.1 (bug #891785)
NOTE: https://kb.isc.org/article/AA-01567/75/CVE-2018-5733
NOTE: https://bugs.isc.org/Public/Bug/Display.html?id=47140
@@ -6016,6 +6025,7 @@ CVE-2018-5733 [A malicious client can overflow a
reference counter in ISC dhcpd]
NOTE: Fixes for 4.3.6p1:
https://source.isc.org/cgi-bin/gitweb.cgi?p=dhcp.git;a=commit;h=99a25aedea02d9c259cb8fabf4be700fb32571a3
CVE-2018-5732 [A specially constructed response from a malicious server can
cause a buffer overflow in dhclient]
RESERVED
+ {DSA-4133-1}
- isc-dhcp 4.3.5-3.1 (bug #891786)
NOTE: https://kb.isc.org/article/AA-01565/75/CVE-2018-5732
NOTE: https://bugs.isc.org/Public/Bug/Display.html?id=47139
@@ -20867,42 +20877,42 @@ CVE-2018-0226
RESERVED
CVE-2018-0225
RESERVED
-CVE-2018-0224
- RESERVED
-CVE-2018-0223
- RESERVED
+CVE-2018-0224 (A vulnerability in the CLI of the Cisco StarOS operating system
for ...)
+ TODO: check
+CVE-2018-0223 (A vulnerability in DesktopServlet in the web-based management
interface ...)
+ TODO: check
CVE-2018-0222
RESERVED
-CVE-2018-0221
- RESERVED
-CVE-2018-0220
- RESERVED
-CVE-2018-0219
- RESERVED
-CVE-2018-0218
- RESERVED
-CVE-2018-0217
- RESERVED
-CVE-2018-0216
- RESERVED
-CVE-2018-0215
- RESERVED
-CVE-2018-0214
- RESERVED
-CVE-2018-0213
- RESERVED
-CVE-2018-0212
- RESERVED
-CVE-2018-0211
- RESERVED
-CVE-2018-0210
- RESERVED
-CVE-2018-0209
- RESERVED
-CVE-2018-0208
- RESERVED
-CVE-2018-0207
- RESERVED
+CVE-2018-0221 (A vulnerability in specific CLI commands for the Cisco Identity
...)
+ TODO: check
+CVE-2018-0220 (A vulnerability in the web-based management interface of Cisco
...)
+ TODO: check
+CVE-2018-0219 (A vulnerability in the web-based management interface of Cisco
Unified ...)
+ TODO: check
+CVE-2018-0218 (A vulnerability in the web-based user interface of the Cisco
Secure ...)
+ TODO: check
+CVE-2018-0217 (A vulnerability in the CLI of the Cisco StarOS operating system
for ...)
+ TODO: check
+CVE-2018-0216 (A vulnerability in the web-based management interface of Cisco
Identity ...)
+ TODO: check
+CVE-2018-0215 (A vulnerability in the web-based management interface of Cisco
Identity ...)
+ TODO: check
+CVE-2018-0214 (A vulnerability in certain CLI commands of Cisco Identity
Services ...)
+ TODO: check
+CVE-2018-0213 (A vulnerability in the credential reset functionality for Cisco
...)
+ TODO: check
+CVE-2018-0212 (A vulnerability in the web-based management interface of Cisco
Identity ...)
+ TODO: check
+CVE-2018-0211 (A vulnerability in specific CLI commands for the Cisco Identity
...)
+ TODO: check
+CVE-2018-0210 (A vulnerability in the web-based management interface of Cisco
Data ...)
+ TODO: check
+CVE-2018-0209 (A vulnerability in the Simple Network Management Protocol
(SNMP) ...)
+ TODO: check
+CVE-2018-0208 (A vulnerability in the web-based management interface of the
(cloud ...)
+ TODO: check
+CVE-2018-0207 (A vulnerability in the web-based user interface of the Cisco
Secure ...)
+ TODO: check
CVE-2018-0206 (A vulnerability in the web-based management interface of Cisco
Unified ...)
NOT-FOR-US: Cisco
CVE-2018-0205 (A vulnerability in the User Provisioning tab in the Cisco Prime
...)
@@ -21031,20 +21041,20 @@ CVE-2018-0149
RESERVED
CVE-2018-0148 (A vulnerability in the web-based management interface of Cisco
UCS ...)
NOT-FOR-US: Cisco
-CVE-2018-0147
- RESERVED
+CVE-2018-0147 (A vulnerability in Java deserialization used by Cisco Secure
Access ...)
+ TODO: check
CVE-2018-0146 (A vulnerability in the Cisco Data Center Analytics Framework
...)
NOT-FOR-US: Cisco
CVE-2018-0145 (A vulnerability in the web-based management interface of the
Cisco Data ...)
NOT-FOR-US: Cisco
-CVE-2018-0144
- RESERVED
+CVE-2018-0144 (A vulnerability in the web-based management interface of Cisco
Prime ...)
+ TODO: check
CVE-2018-0143
RESERVED
CVE-2018-0142
RESERVED
-CVE-2018-0141
- RESERVED
+CVE-2018-0141 (A vulnerability in Cisco Prime Collaboration Provisioning (PCP)
...)
+ TODO: check
CVE-2018-0140 (A vulnerability in the spam quarantine of Cisco Email Security
...)
NOT-FOR-US: Cisco
CVE-2018-0139 (A vulnerability in the Interactive Voice Response (IVR)
management ...)
@@ -21151,8 +21161,8 @@ CVE-2018-0089 (A vulnerability in the Policy and
Charging Rules Function (PCRF)
NOT-FOR-US: Cisco
CVE-2018-0088 (A vulnerability in one of the diagnostic test CLI commands on
Cisco ...)
NOT-FOR-US: Cisco
-CVE-2018-0087
- RESERVED
+CVE-2018-0087 (A vulnerability in the FTP server of the Cisco Web Security
Appliance ...)
+ TODO: check
CVE-2018-0086 (A vulnerability in the application server of the Cisco Unified
Customer ...)
NOT-FOR-US: Cisco
CVE-2017-16994 (The walk_hugetlb_range function in mm/pagewalk.c in the Linux
kernel ...)
@@ -36007,8 +36017,7 @@ CVE-2017-12176 (xorg-x11-server before 1.19.5 was
missing extra length validatio
CVE-2017-12175
RESERVED
NOT-FOR-US: Red Hat Satellite
-CVE-2017-12174
- RESERVED
+CVE-2017-12174 (It was found that when Artemis and HornetQ before 2.4.0 are
configured ...)
NOT-FOR-US: Artemis and HornetQ
CVE-2017-12173 [unsanitized input when searching in local cache database]
RESERVED
@@ -54390,7 +54399,7 @@ CVE-2017-6282 (NVIDIA Tegra kernel driver contains a
vulnerability in NVMAP wher
TODO: check
CVE-2017-6281
RESERVED
-CVE-2017-6280 (NIVIDIA driver contains a possible out-of-bounds read
vulnerability ...)
+CVE-2017-6280 (NVIDIA driver contains a possible out-of-bounds read
vulnerability due ...)
NOT-FOR-US: Nvidia component for Android
CVE-2017-6279 (NVIDIA libnvmmlite_audio.so contains an elevation of privilege
...)
NOT-FOR-US: Nvidia component for Android
@@ -64048,6 +64057,7 @@ CVE-2017-3145 [Improper fetch cleanup sequencing in the
resolver can cause named
NOTE: Fixed by (9.10.6-P1):
https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=commitdiff;h=55baf7d7e25c0e6444cb7e415f14d9e0819b5508
CVE-2017-3144 [dhcp: omapi code doesn't free socket descriptors when empty
message is received allowing denial-of-service]
RESERVED
+ {DSA-4133-1}
- isc-dhcp 4.3.5-3.1 (bug #887413)
[wheezy] - isc-dhcp <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1522918
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4528b518d2b60deb1e8afb6538cd57e664038de5
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4528b518d2b60deb1e8afb6538cd57e664038de5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
