[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Thu Aug 16 09:10:21 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b077d217 by security tracker role at 2018-08-16T08:10:13Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -11177,7 +11177,7 @@ CVE-2018-10908 (It was found that vdsm before version 4.20.37 invokes qemu-img o
CVE-2018-10907
RESERVED
CVE-2018-10906 (In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is ...)
- {DSA-4257-1}
+ {DSA-4257-1 DLA-1468-1}
- fuse3 <itp> (bug #904216)
- fuse 2.9.8-1 (bug #904439)
NOTE: https://github.com/libfuse/libfuse/pull/268
@@ -41555,10 +41555,10 @@ CVE-2018-0430
RESERVED
CVE-2018-0429 (Stack-based buffer overflow in the Cisco Thor decoder before commit ...)
NOT-FOR-US: Cisco
-CVE-2018-0428
- RESERVED
-CVE-2018-0427
- RESERVED
+CVE-2018-0428 (A vulnerability in the account management subsystem of Cisco Web ...)
+ TODO: check
+CVE-2018-0427 (A vulnerability in the CronJob scheduler API of Cisco Digital Network ...)
+ TODO: check
CVE-2018-0426
RESERVED
CVE-2018-0425
@@ -41573,28 +41573,28 @@ CVE-2018-0421
RESERVED
CVE-2018-0420
RESERVED
-CVE-2018-0419
- RESERVED
-CVE-2018-0418
- RESERVED
+CVE-2018-0419 (A vulnerability in certain attachment detection mechanisms of Cisco ...)
+ TODO: check
+CVE-2018-0418 (A vulnerability in the Local Packet Transport Services (LPTS) feature ...)
+ TODO: check
CVE-2018-0417
RESERVED
CVE-2018-0416
RESERVED
-CVE-2018-0415
- RESERVED
+CVE-2018-0415 (A vulnerability in the implementation of Extensible Authentication ...)
+ TODO: check
CVE-2018-0414
RESERVED
CVE-2018-0413 (A vulnerability in the web-based management interface of Cisco Identity ...)
NOT-FOR-US: Cisco
-CVE-2018-0412
- RESERVED
+CVE-2018-0412 (A vulnerability in the implementation of Extensible Authentication ...)
+ TODO: check
CVE-2018-0411 (A vulnerability in the web-based management interface of Cisco Unified ...)
NOT-FOR-US: Cisco
-CVE-2018-0410
- RESERVED
-CVE-2018-0409
- RESERVED
+CVE-2018-0410 (A vulnerability in the web proxy functionality of Cisco AsyncOS ...)
+ TODO: check
+CVE-2018-0409 (A vulnerability in the XCP Router service of the Cisco Unified ...)
+ TODO: check
CVE-2018-0408 (A vulnerability in the web-based management interface of Cisco Small ...)
NOT-FOR-US: Cisco
CVE-2018-0407 (A vulnerability in the web-based management interface of Cisco Small ...)
@@ -41639,8 +41639,8 @@ CVE-2018-0388
RESERVED
CVE-2018-0387 (A vulnerability in Cisco Webex Teams (for Windows and macOS) could ...)
NOT-FOR-US: Cisco
-CVE-2018-0386
- RESERVED
+CVE-2018-0386 (A vulnerability in Cisco Unified Communications Domain Manager ...)
+ TODO: check
CVE-2018-0385 (A vulnerability in the detection engine parsing of Security Socket ...)
NOT-FOR-US: Cisco
CVE-2018-0384 (A vulnerability in the detection engine of Cisco FireSIGHT System ...)
@@ -41677,8 +41677,8 @@ CVE-2018-0369 (A vulnerability in the reassembly logic for fragmented IPv4 packe
NOT-FOR-US: Cisco
CVE-2018-0368 (A vulnerability in Cisco Digital Network Architecture (DNA) Center ...)
NOT-FOR-US: Cisco
-CVE-2018-0367
- RESERVED
+CVE-2018-0367 (A vulnerability in the web-based management interface of the Cisco ...)
+ TODO: check
CVE-2018-0366 (A vulnerability in the web-based management interface of Cisco Web ...)
NOT-FOR-US: Cisco
CVE-2018-0365 (A vulnerability in the web-based management interface of Cisco ...)
@@ -53977,24 +53977,24 @@ CVE-2017-13110
RESERVED
CVE-2017-13109
RESERVED
-CVE-2017-13108
- RESERVED
-CVE-2017-13107
- RESERVED
-CVE-2017-13106
- RESERVED
-CVE-2017-13105
- RESERVED
-CVE-2017-13104
- RESERVED
-CVE-2017-13103
- RESERVED
-CVE-2017-13102
- RESERVED
-CVE-2017-13101
- RESERVED
-CVE-2017-13100
- RESERVED
+CVE-2017-13108 (DFNDR Security Antivirus, Anti-hacking & Cleaner, 5.0.9, 2017-11-01, ...)
+ TODO: check
+CVE-2017-13107 (Live.me - live stream video chat, 3.7.20, 2017-11-06, Android ...)
+ TODO: check
+CVE-2017-13106 (Cheetahmobile CM Launcher 3D - Theme, wallpaper, Secure, Efficient, ...)
+ TODO: check
+CVE-2017-13105 (Hi Security Virus Cleaner - Antivirus, Booster, 3.7.1.1329, ...)
+ TODO: check
+CVE-2017-13104 (Uber Technologies, Inc. UberEATS: Uber for Food Delivery, 1.108.10001, ...)
+ TODO: check
+CVE-2017-13103 (Pinterest, 6.37, 2017-10-24, iOS application uses a hard-coded key for ...)
+ TODO: check
+CVE-2017-13102 (Gameloft Asphalt Xtreme: Offroad Rally Racing, 1.6.0, 2017-08-13, iOS ...)
+ TODO: check
+CVE-2017-13101 (Musical.ly Inc., musical.ly - your video social network, 6.1.6, ...)
+ TODO: check
+CVE-2017-13100 (DistinctDev, Inc., The Moron Test, 6.3.1, 2017-05-04, iOS application ...)
+ TODO: check
CVE-2017-13099 (wolfSSL prior to version 3.12.2 provides a weak Bleichenbacher oracle ...)
- wolfssl 3.13.0+dfsg-1 (bug #884235)
NOTE: https://github.com/wolfSSL/wolfssl/pull/1229
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b077d217d8c8fe7bde4acdf77b3d4ba78b7cc195
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b077d217d8c8fe7bde4acdf77b3d4ba78b7cc195
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180816/9f0f2305/attachment.html>
More information about the debian-security-tracker-commits
mailing list