[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sun Apr 29 21:10:27 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
48397e6b by security tracker role at 2018-04-29T20:10:21+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,31 @@
+CVE-2018-10544
+	RESERVED
+CVE-2018-10543
+	RESERVED
+CVE-2018-10542
+	RESERVED
+CVE-2018-10541
+	RESERVED
+CVE-2018-10540 (An issue was discovered in WavPack 5.1.0 and earlier for W64 input. ...)
+	TODO: check
+CVE-2018-10539 (An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. ...)
+	TODO: check
+CVE-2018-10538 (An issue was discovered in WavPack 5.1.0 and earlier for WAV input. ...)
+	TODO: check
+CVE-2018-10537 (An issue was discovered in WavPack 5.1.0 and earlier. The W64 parser ...)
+	TODO: check
+CVE-2018-10536 (An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser ...)
+	TODO: check
+CVE-2018-10535 (The ignore_section_sym function in elf.c in the Binary File Descriptor ...)
+	TODO: check
+CVE-2018-10534 (The _bfd_XX_bfd_copy_private_bfd_data_common function in peXXigen.c in ...)
+	TODO: check
+CVE-2018-10533
+	RESERVED
+CVE-2018-10532
+	RESERVED
+CVE-2018-10531
+	RESERVED
 CVE-2018-10530
 	RESERVED
 CVE-2018-10529 (An issue was discovered in LibRaw 0.18.9. There is an out-of-bounds ...)
@@ -1594,8 +1622,7 @@ CVE-2018-9846 (In Roundcube from versions 1.2.0 to 1.3.5, with the archive plugi
 	NOTE: https://github.com/roundcube/roundcubemail/commit/5b7e9a2c960eb4fd2364921297020a5dcd2d7dbc (release-1.2)
 	NOTE: https://github.com/roundcube/roundcubemail/commit/c69b851b8a704f6483ec9d1cae7cd1ecd33c3343 (release-1.2)
 	NOTE: https://github.com/roundcube/roundcubemail/commit/7901047474729a7f466eb8c59c92a36fc7cf0e70 (release-1.2)
-CVE-2018-9845
-	RESERVED
+CVE-2018-9845 (Etherpad Lite before 1.6.4 is exploitable for admin access. ...)
 	- etherpad-lite <itp> (bug #576998)
 CVE-2018-9844 (The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress ...)
 	NOT-FOR-US: Iptanus WordPress File Upload plugin for WordPress



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/48397e6b2fbc9d7564339de13294452d869349f1

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/48397e6b2fbc9d7564339de13294452d869349f1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180429/da2e8ead/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list