[Git][security-tracker-team/security-tracker][master] automatic update

Thu Aug 23 09:10:25 BST 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
67f17d04 by security tracker role at 2018-08-23T08:10:17Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,41 @@
+CVE-2018-15745
+	RESERVED
+CVE-2018-15744
+	RESERVED
+CVE-2018-15743
+	RESERVED
+CVE-2018-15742
+	RESERVED
+CVE-2018-15741
+	RESERVED
+CVE-2018-15740
+	RESERVED
+CVE-2018-15739
+	RESERVED
+CVE-2018-15738
+	RESERVED
+CVE-2018-15737
+	RESERVED
+CVE-2018-15736
+	RESERVED
+CVE-2018-15735
+	RESERVED
+CVE-2018-15734
+	RESERVED
+CVE-2018-15733
+	RESERVED
+CVE-2018-15732
+	RESERVED
+CVE-2018-15731
+	RESERVED
+CVE-2018-15730
+	RESERVED
+CVE-2018-15729
+	RESERVED
+CVE-2018-15728
+	RESERVED
+CVE-2018-15727
+	RESERVED
 CVE-2018-1999047
 	- jenkins <removed>
 CVE-2018-1999046
@@ -92,8 +130,8 @@ CVE-2018-15687
 	RESERVED
 CVE-2018-15686
 	RESERVED
-CVE-2018-15685
-	RESERVED
+CVE-2018-15685 (GitHub Electron 1.7.15, 1.8.7, 2.0.7, and 3.0.0-beta.6, in certain ...)
+	TODO: check
 CVE-2018-15684
 	RESERVED
 CVE-2018-15683
@@ -9738,8 +9776,8 @@ CVE-2018-11760
 	RESERVED
 CVE-2018-11759
 	RESERVED
-CVE-2018-11758
-	RESERVED
+CVE-2018-11758 (This affects Apache Cayenne 4.1.M1, 3.2.M1, 4.0.M2 to 4.0.M5, 4.0.B1, ...)
+	TODO: check
 CVE-2018-11757 (In Docker Skeleton Runtime for Apache OpenWhisk, a Docker action ...)
 	NOT-FOR-US: Docker Skeleton Runtime for Apache OpenWhisk
 CVE-2018-11756 (In PHP Runtime for Apache OpenWhisk, a Docker action inheriting one of ...)
@@ -87712,8 +87750,7 @@ CVE-2017-2636 (Race condition in drivers/tty/n_hdlc.c in the Linux kernel throug
 	NOTE: http://www.openwall.com/lists/oss-security/2017/03/07/6
 	NOTE: Fixed by: https://git.kernel.org/linus/82f2341c94d270421f383641b7cd670e474db56b (v4.11-rc2)
 	NOTE: https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html
-CVE-2017-2635 [Null pointer dereference when updating storage size on empty drives]
-	RESERVED
+CVE-2017-2635 (A NULL pointer deference flaw was found in the way libvirt from 2.5.0 ...)
 	- libvirt 3.0.0-3 (bug #856313)
 	[jessie] - libvirt <not-affected> (Vulnerable code introduced later)
 	[wheezy] - libvirt <not-affected> (Vulnerable code introduced later)
@@ -87929,8 +87966,7 @@ CVE-2017-2579 (An out-of-bounds read vulnerability was found in netpbm before 10
 	NOTE: http://www.openwall.com/lists/oss-security/2017/02/05/7
 CVE-2017-2577
 	REJECTED
-CVE-2017-2575 [NULL pointer dereference in image_alloc]
-	RESERVED
+CVE-2017-2575 (A vulnerability was found while fuzzing libbpg 0.9.7. It is a NULL ...)
 	NOT-FOR-US: libbpg
 CVE-2017-2574
 	RESERVED
@@ -93228,8 +93264,7 @@ CVE-2016-9606 (JBoss RESTEasy before version 3.1.2 could be forced into parsing 
 	- resteasy 3.1.4-1 (bug #851430)
 	[jessie] - resteasy <no-dsa> (Minor issue)
 	- resteasy3.0 <undetermined>
-CVE-2016-9605 [Cross site scripting in profile page]
-	RESERVED
+CVE-2016-9605 (A flaw was found in cobbler software component version 2.6.11-1. It ...)
 	- cobbler <removed> (bug #858844)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1433950
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1399333



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/67f17d04118e683462a280948e0a02de4db03129

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/67f17d04118e683462a280948e0a02de4db03129
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180823/4618a4e8/attachment.html>
