[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
79d4c0a2 by security tracker role at 2018-03-10T09:10:20+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,83 @@
+CVE-2018-8042
+       RESERVED
+CVE-2018-8041
+       RESERVED
+CVE-2018-8040
+       RESERVED
+CVE-2018-8039
+       RESERVED
+CVE-2018-8038
+       RESERVED
+CVE-2018-8037
+       RESERVED
+CVE-2018-8036
+       RESERVED
+CVE-2018-8035
+       RESERVED
+CVE-2018-8034
+       RESERVED
+CVE-2018-8033
+       RESERVED
+CVE-2018-8032
+       RESERVED
+CVE-2018-8031
+       RESERVED
+CVE-2018-8030
+       RESERVED
+CVE-2018-8029
+       RESERVED
+CVE-2018-8028
+       RESERVED
+CVE-2018-8027
+       RESERVED
+CVE-2018-8026
+       RESERVED
+CVE-2018-8025
+       RESERVED
+CVE-2018-8024
+       RESERVED
+CVE-2018-8023
+       RESERVED
+CVE-2018-8022
+       RESERVED
+CVE-2018-8021
+       RESERVED
+CVE-2018-8020
+       RESERVED
+CVE-2018-8019
+       RESERVED
+CVE-2018-8018
+       RESERVED
+CVE-2018-8017
+       RESERVED
+CVE-2018-8016
+       RESERVED
+CVE-2018-8015
+       RESERVED
+CVE-2018-8014
+       RESERVED
+CVE-2018-8013
+       RESERVED
+CVE-2018-8012
+       RESERVED
+CVE-2018-8011
+       RESERVED
+CVE-2018-8010
+       RESERVED
+CVE-2018-8009
+       RESERVED
+CVE-2018-8008
+       RESERVED
+CVE-2018-8007
+       RESERVED
+CVE-2018-8006
+       RESERVED
+CVE-2018-8005
+       RESERVED
+CVE-2018-8004
+       RESERVED
+CVE-2018-8003
+       RESERVED
 CVE-2018-8002 (In PoDoFo 0.9.5, there exists an infinite loop vulnerability in 
...)
        - libpodofo <unfixed> (bug #892520)
        NOTE: PoC https://bugzilla.redhat.com/show_bug.cgi?id=1548930
@@ -2284,32 +2364,32 @@ CVE-2018-7241
        RESERVED
 CVE-2018-7240
        RESERVED
-CVE-2018-7239
-       RESERVED
-CVE-2018-7238
-       RESERVED
-CVE-2018-7237
-       RESERVED
-CVE-2018-7236
-       RESERVED
-CVE-2018-7235
-       RESERVED
-CVE-2018-7234
-       RESERVED
-CVE-2018-7233
-       RESERVED
-CVE-2018-7232
-       RESERVED
-CVE-2018-7231
-       RESERVED
-CVE-2018-7230
-       RESERVED
-CVE-2018-7229
-       RESERVED
-CVE-2018-7228
-       RESERVED
-CVE-2018-7227
-       RESERVED
+CVE-2018-7239 (A DLL hijacking vulnerability exists in Schneider Electric's 
SoMove ...)
+       TODO: check
+CVE-2018-7238 (A buffer overflow vulnerability exist in the web-based GUI of 
...)
+       TODO: check
+CVE-2018-7237 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
+CVE-2018-7236 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
+CVE-2018-7235 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
+CVE-2018-7234 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
+CVE-2018-7233 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
+CVE-2018-7232 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
+CVE-2018-7231 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
+CVE-2018-7230 (A XML external entity (XXE) vulnerability exists in the 
import.cgi of ...)
+       TODO: check
+CVE-2018-7229 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
+CVE-2018-7228 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
+CVE-2018-7227 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+       TODO: check
 CVE-2017-18191 (An issue was discovered in OpenStack Nova 15.x through 15.1.0 
and 16.x ...)
        - nova <unfixed>
        [stretch] - nova <no-dsa> (Minor issue)
@@ -19061,8 +19141,8 @@ CVE-2017-17284 (Huawei DP300 V500R002C00, RP200 
V500R002C00, V600R006C00, TE30 .
        NOT-FOR-US: Huawei
 CVE-2017-17283 (Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 
...)
        NOT-FOR-US: Huawei
-CVE-2017-17282
-       RESERVED
+CVE-2017-17282 (SCCP (Signalling Connection Control Part) module in Huawei 
DP300 ...)
+       TODO: check
 CVE-2017-17281 (SFTP module in Huawei DP300 V500R002C00; RP200 V600R006C00; 
TE30 ...)
        NOT-FOR-US: Huawei
 CVE-2017-17280 (NFC (Near Field Communication) module in Huawei mobile phones 
with ...)
@@ -26909,8 +26989,8 @@ CVE-2017-15325
        RESERVED
 CVE-2017-15324 (Huawei S5700 and S6700 with software of V200R005C00 have a DoS 
...)
        NOT-FOR-US: Huawei
-CVE-2017-15323
-       RESERVED
+CVE-2017-15323 (Huawei DP300 V500R002C00, NIP6600 V500R001C00, V500R001C20, 
...)
+       TODO: check
 CVE-2017-15322 (Some Huawei smartphones with software of 
BGO-L03C158B003CUSTC158D001 ...)
        NOT-FOR-US: Huawei
 CVE-2017-15321 (Huawei FusionSphere OpenStack V100R006C000SPC102 (NFV) has an 
...)
@@ -26925,10 +27005,10 @@ CVE-2017-15317 (AR120-S V200R006C10, V200R007C00, 
V200R008C20, V200R008C30; AR12
        NOT-FOR-US: Huawei
 CVE-2017-15316 (The GPU driver of Mate 9 Huawei smart phones with software 
before ...)
        NOT-FOR-US: Huawei
-CVE-2017-15315
-       RESERVED
-CVE-2017-15314
-       RESERVED
+CVE-2017-15315 (Patch module of Huawei NIP6300 V500R001C20SPC100, 
V500R001C20SPC200, ...)
+       TODO: check
+CVE-2017-15314 (Huawei DP300 V500R002C00, RP200 V500R002C00SPC200, 
V600R006C00, TE30 ...)
+       TODO: check
 CVE-2017-15313 (Huawei SmartCare V200R003C10 has a CSV injection 
vulnerability. An ...)
        NOT-FOR-US: Huawei
 CVE-2017-15312 (Huawei SmartCare V200R003C10 has a stored XSS (cross-site 
scripting) ...)
@@ -74500,16 +74580,16 @@ CVE-2016-8788
        REJECTED
 CVE-2016-8787
        REJECTED
-CVE-2016-8786
-       RESERVED
-CVE-2016-8785
-       RESERVED
-CVE-2016-8784
-       RESERVED
-CVE-2016-8783
-       RESERVED
-CVE-2016-8782
-       RESERVED
+CVE-2016-8786 (Huawei S12700 V200R005C00, V200R006C00, V200R007C00, 
V200R008C00, ...)
+       TODO: check
+CVE-2016-8785 (Huawei S12700 V200R007C00, V200R008C00, S5700 V200R007C00, 
S7700 ...)
+       TODO: check
+CVE-2016-8784 (Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, 
...)
+       TODO: check
+CVE-2016-8783 (Touchscreen drive in Huawei H60 (Honor 6) Versions earlier than 
...)
+       TODO: check
+CVE-2016-8782 (Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, 
...)
+       TODO: check
 CVE-2016-8781 (Huawei Secospace USG6300 with software V500R001C20 and ...)
        NOT-FOR-US: Huawei
 CVE-2016-8780 (Huawei CloudEngine 6800 V100R006C00, CloudEngine 7800 
V100R006C00, ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/79d4c0a2a0bc66f070d7c2db0fbae975460ef153

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/79d4c0a2a0bc66f070d7c2db0fbae975460ef153
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits