[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Mon Dec 10 20:10:30 GMT 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8fe99f21 by security tracker role at 2018-12-10T20:10:21Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,14 +1,874 @@
-CVE-2018-1000866
+CVE-2019-2394
+	RESERVED
+CVE-2019-2393
+	RESERVED
+CVE-2019-2392
+	RESERVED
+CVE-2019-2391
+	RESERVED
+CVE-2019-2390
+	RESERVED
+CVE-2019-2389
+	RESERVED
+CVE-2019-2388
+	RESERVED
+CVE-2019-2387
+	RESERVED
+CVE-2019-2386
+	RESERVED
+CVE-2019-2385
+	RESERVED
+CVE-2019-2384
+	RESERVED
+CVE-2019-2383
+	RESERVED
+CVE-2019-2382
+	RESERVED
+CVE-2019-2381
+	RESERVED
+CVE-2019-2380
+	RESERVED
+CVE-2019-2379
+	RESERVED
+CVE-2019-2378
+	RESERVED
+CVE-2019-2377
+	RESERVED
+CVE-2019-2376
+	RESERVED
+CVE-2019-2375
+	RESERVED
+CVE-2019-2374
+	RESERVED
+CVE-2019-2373
+	RESERVED
+CVE-2019-2372
+	RESERVED
+CVE-2019-2371
+	RESERVED
+CVE-2019-2370
+	RESERVED
+CVE-2019-2369
+	RESERVED
+CVE-2019-2368
+	RESERVED
+CVE-2019-2367
+	RESERVED
+CVE-2019-2366
+	RESERVED
+CVE-2019-2365
+	RESERVED
+CVE-2019-2364
+	RESERVED
+CVE-2019-2363
+	RESERVED
+CVE-2019-2362
+	RESERVED
+CVE-2019-2361
+	RESERVED
+CVE-2019-2360
+	RESERVED
+CVE-2019-2359
+	RESERVED
+CVE-2019-2358
+	RESERVED
+CVE-2019-2357
+	RESERVED
+CVE-2019-2356
+	RESERVED
+CVE-2019-2355
+	RESERVED
+CVE-2019-2354
+	RESERVED
+CVE-2019-2353
+	RESERVED
+CVE-2019-2352
+	RESERVED
+CVE-2019-2351
+	RESERVED
+CVE-2019-2350
+	RESERVED
+CVE-2019-2349
+	RESERVED
+CVE-2019-2348
+	RESERVED
+CVE-2019-2347
+	RESERVED
+CVE-2019-2346
+	RESERVED
+CVE-2019-2345
+	RESERVED
+CVE-2019-2344
+	RESERVED
+CVE-2019-2343
+	RESERVED
+CVE-2019-2342
+	RESERVED
+CVE-2019-2341
+	RESERVED
+CVE-2019-2340
+	RESERVED
+CVE-2019-2339
+	RESERVED
+CVE-2019-2338
+	RESERVED
+CVE-2019-2337
+	RESERVED
+CVE-2019-2336
+	RESERVED
+CVE-2019-2335
+	RESERVED
+CVE-2019-2334
+	RESERVED
+CVE-2019-2333
+	RESERVED
+CVE-2019-2332
+	RESERVED
+CVE-2019-2331
+	RESERVED
+CVE-2019-2330
+	RESERVED
+CVE-2019-2329
+	RESERVED
+CVE-2019-2328
+	RESERVED
+CVE-2019-2327
+	RESERVED
+CVE-2019-2326
+	RESERVED
+CVE-2019-2325
+	RESERVED
+CVE-2019-2324
+	RESERVED
+CVE-2019-2323
+	RESERVED
+CVE-2019-2322
+	RESERVED
+CVE-2019-2321
+	RESERVED
+CVE-2019-2320
+	RESERVED
+CVE-2019-2319
+	RESERVED
+CVE-2019-2318
+	RESERVED
+CVE-2019-2317
+	RESERVED
+CVE-2019-2316
+	RESERVED
+CVE-2019-2315
+	RESERVED
+CVE-2019-2314
+	RESERVED
+CVE-2019-2313
+	RESERVED
+CVE-2019-2312
+	RESERVED
+CVE-2019-2311
+	RESERVED
+CVE-2019-2310
+	RESERVED
+CVE-2019-2309
+	RESERVED
+CVE-2019-2308
+	RESERVED
+CVE-2019-2307
+	RESERVED
+CVE-2019-2306
+	RESERVED
+CVE-2019-2305
+	RESERVED
+CVE-2019-2304
+	RESERVED
+CVE-2019-2303
+	RESERVED
+CVE-2019-2302
+	RESERVED
+CVE-2019-2301
+	RESERVED
+CVE-2019-2300
+	RESERVED
+CVE-2019-2299
+	RESERVED
+CVE-2019-2298
+	RESERVED
+CVE-2019-2297
+	RESERVED
+CVE-2019-2296
+	RESERVED
+CVE-2019-2295
+	RESERVED
+CVE-2019-2294
+	RESERVED
+CVE-2019-2293
+	RESERVED
+CVE-2019-2292
+	RESERVED
+CVE-2019-2291
+	RESERVED
+CVE-2019-2290
+	RESERVED
+CVE-2019-2289
+	RESERVED
+CVE-2019-2288
+	RESERVED
+CVE-2019-2287
+	RESERVED
+CVE-2019-2286
+	RESERVED
+CVE-2019-2285
+	RESERVED
+CVE-2019-2284
+	RESERVED
+CVE-2019-2283
+	RESERVED
+CVE-2019-2282
+	RESERVED
+CVE-2019-2281
+	RESERVED
+CVE-2019-2280
+	RESERVED
+CVE-2019-2279
+	RESERVED
+CVE-2019-2278
+	RESERVED
+CVE-2019-2277
+	RESERVED
+CVE-2019-2276
+	RESERVED
+CVE-2019-2275
+	RESERVED
+CVE-2019-2274
+	RESERVED
+CVE-2019-2273
+	RESERVED
+CVE-2019-2272
+	RESERVED
+CVE-2019-2271
+	RESERVED
+CVE-2019-2270
+	RESERVED
+CVE-2019-2269
+	RESERVED
+CVE-2019-2268
+	RESERVED
+CVE-2019-2267
+	RESERVED
+CVE-2019-2266
+	RESERVED
+CVE-2019-2265
+	RESERVED
+CVE-2019-2264
+	RESERVED
+CVE-2019-2263
+	RESERVED
+CVE-2019-2262
+	RESERVED
+CVE-2019-2261
+	RESERVED
+CVE-2019-2260
+	RESERVED
+CVE-2019-2259
+	RESERVED
+CVE-2019-2258
+	RESERVED
+CVE-2019-2257
+	RESERVED
+CVE-2019-2256
+	RESERVED
+CVE-2019-2255
+	RESERVED
+CVE-2019-2254
+	RESERVED
+CVE-2019-2253
+	RESERVED
+CVE-2019-2252
+	RESERVED
+CVE-2019-2251
+	RESERVED
+CVE-2019-2250
+	RESERVED
+CVE-2019-2249
+	RESERVED
+CVE-2019-2248
+	RESERVED
+CVE-2019-2247
+	RESERVED
+CVE-2019-2246
+	RESERVED
+CVE-2019-2245
+	RESERVED
+CVE-2019-2244
+	RESERVED
+CVE-2019-2243
+	RESERVED
+CVE-2019-2242
+	RESERVED
+CVE-2019-2241
+	RESERVED
+CVE-2019-2240
+	RESERVED
+CVE-2019-2239
+	RESERVED
+CVE-2019-2238
+	RESERVED
+CVE-2019-2237
+	RESERVED
+CVE-2019-2236
+	RESERVED
+CVE-2019-2235
+	RESERVED
+CVE-2019-2234
+	RESERVED
+CVE-2019-2233
+	RESERVED
+CVE-2019-2232
+	RESERVED
+CVE-2019-2231
+	RESERVED
+CVE-2019-2230
+	RESERVED
+CVE-2019-2229
+	RESERVED
+CVE-2019-2228
+	RESERVED
+CVE-2019-2227
+	RESERVED
+CVE-2019-2226
+	RESERVED
+CVE-2019-2225
+	RESERVED
+CVE-2019-2224
+	RESERVED
+CVE-2019-2223
+	RESERVED
+CVE-2019-2222
+	RESERVED
+CVE-2019-2221
+	RESERVED
+CVE-2019-2220
+	RESERVED
+CVE-2019-2219
+	RESERVED
+CVE-2019-2218
+	RESERVED
+CVE-2019-2217
+	RESERVED
+CVE-2019-2216
+	RESERVED
+CVE-2019-2215
+	RESERVED
+CVE-2019-2214
+	RESERVED
+CVE-2019-2213
+	RESERVED
+CVE-2019-2212
+	RESERVED
+CVE-2019-2211
+	RESERVED
+CVE-2019-2210
+	RESERVED
+CVE-2019-2209
+	RESERVED
+CVE-2019-2208
+	RESERVED
+CVE-2019-2207
+	RESERVED
+CVE-2019-2206
+	RESERVED
+CVE-2019-2205
+	RESERVED
+CVE-2019-2204
+	RESERVED
+CVE-2019-2203
+	RESERVED
+CVE-2019-2202
+	RESERVED
+CVE-2019-2201
+	RESERVED
+CVE-2019-2200
+	RESERVED
+CVE-2019-2199
+	RESERVED
+CVE-2019-2198
+	RESERVED
+CVE-2019-2197
+	RESERVED
+CVE-2019-2196
+	RESERVED
+CVE-2019-2195
+	RESERVED
+CVE-2019-2194
+	RESERVED
+CVE-2019-2193
+	RESERVED
+CVE-2019-2192
+	RESERVED
+CVE-2019-2191
+	RESERVED
+CVE-2019-2190
+	RESERVED
+CVE-2019-2189
+	RESERVED
+CVE-2019-2188
+	RESERVED
+CVE-2019-2187
+	RESERVED
+CVE-2019-2186
+	RESERVED
+CVE-2019-2185
+	RESERVED
+CVE-2019-2184
+	RESERVED
+CVE-2019-2183
+	RESERVED
+CVE-2019-2182
+	RESERVED
+CVE-2019-2181
+	RESERVED
+CVE-2019-2180
+	RESERVED
+CVE-2019-2179
+	RESERVED
+CVE-2019-2178
+	RESERVED
+CVE-2019-2177
+	RESERVED
+CVE-2019-2176
+	RESERVED
+CVE-2019-2175
+	RESERVED
+CVE-2019-2174
+	RESERVED
+CVE-2019-2173
+	RESERVED
+CVE-2019-2172
+	RESERVED
+CVE-2019-2171
+	RESERVED
+CVE-2019-2170
+	RESERVED
+CVE-2019-2169
+	RESERVED
+CVE-2019-2168
+	RESERVED
+CVE-2019-2167
+	RESERVED
+CVE-2019-2166
+	RESERVED
+CVE-2019-2165
+	RESERVED
+CVE-2019-2164
+	RESERVED
+CVE-2019-2163
+	RESERVED
+CVE-2019-2162
+	RESERVED
+CVE-2019-2161
+	RESERVED
+CVE-2019-2160
+	RESERVED
+CVE-2019-2159
+	RESERVED
+CVE-2019-2158
+	RESERVED
+CVE-2019-2157
+	RESERVED
+CVE-2019-2156
+	RESERVED
+CVE-2019-2155
+	RESERVED
+CVE-2019-2154
+	RESERVED
+CVE-2019-2153
+	RESERVED
+CVE-2019-2152
+	RESERVED
+CVE-2019-2151
+	RESERVED
+CVE-2019-2150
+	RESERVED
+CVE-2019-2149
+	RESERVED
+CVE-2019-2148
+	RESERVED
+CVE-2019-2147
+	RESERVED
+CVE-2019-2146
+	RESERVED
+CVE-2019-2145
+	RESERVED
+CVE-2019-2144
+	RESERVED
+CVE-2019-2143
+	RESERVED
+CVE-2019-2142
+	RESERVED
+CVE-2019-2141
+	RESERVED
+CVE-2019-2140
+	RESERVED
+CVE-2019-2139
+	RESERVED
+CVE-2019-2138
+	RESERVED
+CVE-2019-2137
+	RESERVED
+CVE-2019-2136
+	RESERVED
+CVE-2019-2135
+	RESERVED
+CVE-2019-2134
+	RESERVED
+CVE-2019-2133
+	RESERVED
+CVE-2019-2132
+	RESERVED
+CVE-2019-2131
+	RESERVED
+CVE-2019-2130
+	RESERVED
+CVE-2019-2129
+	RESERVED
+CVE-2019-2128
+	RESERVED
+CVE-2019-2127
+	RESERVED
+CVE-2019-2126
+	RESERVED
+CVE-2019-2125
+	RESERVED
+CVE-2019-2124
+	RESERVED
+CVE-2019-2123
+	RESERVED
+CVE-2019-2122
+	RESERVED
+CVE-2019-2121
+	RESERVED
+CVE-2019-2120
+	RESERVED
+CVE-2019-2119
+	RESERVED
+CVE-2019-2118
+	RESERVED
+CVE-2019-2117
+	RESERVED
+CVE-2019-2116
+	RESERVED
+CVE-2019-2115
+	RESERVED
+CVE-2019-2114
+	RESERVED
+CVE-2019-2113
+	RESERVED
+CVE-2019-2112
+	RESERVED
+CVE-2019-2111
+	RESERVED
+CVE-2019-2110
+	RESERVED
+CVE-2019-2109
+	RESERVED
+CVE-2019-2108
+	RESERVED
+CVE-2019-2107
+	RESERVED
+CVE-2019-2106
+	RESERVED
+CVE-2019-2105
+	RESERVED
+CVE-2019-2104
+	RESERVED
+CVE-2019-2103
+	RESERVED
+CVE-2019-2102
+	RESERVED
+CVE-2019-2101
+	RESERVED
+CVE-2019-2100
+	RESERVED
+CVE-2019-2099
+	RESERVED
+CVE-2019-2098
+	RESERVED
+CVE-2019-2097
+	RESERVED
+CVE-2019-2096
+	RESERVED
+CVE-2019-2095
+	RESERVED
+CVE-2019-2094
+	RESERVED
+CVE-2019-2093
+	RESERVED
+CVE-2019-2092
+	RESERVED
+CVE-2019-2091
+	RESERVED
+CVE-2019-2090
+	RESERVED
+CVE-2019-2089
+	RESERVED
+CVE-2019-2088
+	RESERVED
+CVE-2019-2087
+	RESERVED
+CVE-2019-2086
+	RESERVED
+CVE-2019-2085
+	RESERVED
+CVE-2019-2084
+	RESERVED
+CVE-2019-2083
+	RESERVED
+CVE-2019-2082
+	RESERVED
+CVE-2019-2081
+	RESERVED
+CVE-2019-2080
+	RESERVED
+CVE-2019-2079
+	RESERVED
+CVE-2019-2078
+	RESERVED
+CVE-2019-2077
+	RESERVED
+CVE-2019-2076
+	RESERVED
+CVE-2019-2075
+	RESERVED
+CVE-2019-2074
+	RESERVED
+CVE-2019-2073
+	RESERVED
+CVE-2019-2072
+	RESERVED
+CVE-2019-2071
+	RESERVED
+CVE-2019-2070
+	RESERVED
+CVE-2019-2069
+	RESERVED
+CVE-2019-2068
+	RESERVED
+CVE-2019-2067
+	RESERVED
+CVE-2019-2066
+	RESERVED
+CVE-2019-2065
+	RESERVED
+CVE-2019-2064
+	RESERVED
+CVE-2019-2063
+	RESERVED
+CVE-2019-2062
+	RESERVED
+CVE-2019-2061
+	RESERVED
+CVE-2019-2060
+	RESERVED
+CVE-2019-2059
+	RESERVED
+CVE-2019-2058
+	RESERVED
+CVE-2019-2057
+	RESERVED
+CVE-2019-2056
+	RESERVED
+CVE-2019-2055
+	RESERVED
+CVE-2019-2054
+	RESERVED
+CVE-2019-2053
+	RESERVED
+CVE-2019-2052
+	RESERVED
+CVE-2019-2051
+	RESERVED
+CVE-2019-2050
+	RESERVED
+CVE-2019-2049
+	RESERVED
+CVE-2019-2048
+	RESERVED
+CVE-2019-2047
+	RESERVED
+CVE-2019-2046
+	RESERVED
+CVE-2019-2045
+	RESERVED
+CVE-2019-2044
+	RESERVED
+CVE-2019-2043
+	RESERVED
+CVE-2019-2042
+	RESERVED
+CVE-2019-2041
+	RESERVED
+CVE-2019-2040
+	RESERVED
+CVE-2019-2039
+	RESERVED
+CVE-2019-2038
+	RESERVED
+CVE-2019-2037
+	RESERVED
+CVE-2019-2036
+	RESERVED
+CVE-2019-2035
+	RESERVED
+CVE-2019-2034
+	RESERVED
+CVE-2019-2033
+	RESERVED
+CVE-2019-2032
+	RESERVED
+CVE-2019-2031
+	RESERVED
+CVE-2019-2030
+	RESERVED
+CVE-2019-2029
+	RESERVED
+CVE-2019-2028
+	RESERVED
+CVE-2019-2027
+	RESERVED
+CVE-2019-2026
+	RESERVED
+CVE-2019-2025
+	RESERVED
+CVE-2019-2024
+	RESERVED
+CVE-2019-2023
+	RESERVED
+CVE-2019-2022
+	RESERVED
+CVE-2019-2021
+	RESERVED
+CVE-2019-2020
+	RESERVED
+CVE-2019-2019
+	RESERVED
+CVE-2019-2018
+	RESERVED
+CVE-2019-2017
+	RESERVED
+CVE-2019-2016
+	RESERVED
+CVE-2019-2015
+	RESERVED
+CVE-2019-2014
+	RESERVED
+CVE-2019-2013
+	RESERVED
+CVE-2019-2012
+	RESERVED
+CVE-2019-2011
+	RESERVED
+CVE-2019-2010
+	RESERVED
+CVE-2019-2009
+	RESERVED
+CVE-2019-2008
+	RESERVED
+CVE-2019-2007
+	RESERVED
+CVE-2019-2006
+	RESERVED
+CVE-2019-2005
+	RESERVED
+CVE-2019-2004
+	RESERVED
+CVE-2019-2003
+	RESERVED
+CVE-2019-2002
+	RESERVED
+CVE-2019-2001
+	RESERVED
+CVE-2019-2000
+	RESERVED
+CVE-2019-1999
+	RESERVED
+CVE-2019-1998
+	RESERVED
+CVE-2019-1997
+	RESERVED
+CVE-2019-1996
+	RESERVED
+CVE-2019-1995
+	RESERVED
+CVE-2019-1994
+	RESERVED
+CVE-2019-1993
+	RESERVED
+CVE-2019-1992
+	RESERVED
+CVE-2019-1991
+	RESERVED
+CVE-2019-1990
+	RESERVED
+CVE-2019-1989
+	RESERVED
+CVE-2019-1988
+	RESERVED
+CVE-2019-1987
+	RESERVED
+CVE-2019-1986
+	RESERVED
+CVE-2019-1985
+	RESERVED
+CVE-2018-20028
+	RESERVED
+CVE-2018-20027
+	RESERVED
+CVE-2018-20026
+	RESERVED
+CVE-2018-20025
+	RESERVED
+CVE-2018-20024
+	RESERVED
+CVE-2018-20023
+	RESERVED
+CVE-2018-20022
+	RESERVED
+CVE-2018-20021
+	RESERVED
+CVE-2018-20020
+	RESERVED
+CVE-2018-20019
+	RESERVED
+CVE-2018-20018 (S-CMS V3.0 has SQL injection via the S_id parameter, as demonstrated by ...)
+	TODO: check
+CVE-2018-20017 (SEMCMS 3.5 has XSS via the first text box to the SEMCMS_Main.php URI. ...)
+	TODO: check
+CVE-2018-20016
+	RESERVED
+CVE-2018-20015 (YzmCMS v5.2 has admin/role/add.html CSRF. ...)
+	TODO: check
+CVE-2018-20014
+	RESERVED
+CVE-2018-20013
+	RESERVED
+CVE-2018-20012 (PHPCMF 4.1.3 has XSS via the first input field to the ...)
+	TODO: check
+CVE-2018-20011 (DomainMOD 4.11.01 has XSS via the assets/add/category.php Category Name ...)
+	TODO: check
+CVE-2018-20010 (DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php ...)
+	TODO: check
+CVE-2018-20009 (DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider.php SSL ...)
+	TODO: check
+CVE-2018-1000866 (A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.59 ...)
 	NOT-FOR-US: Jenkins
-CVE-2018-1000865
+CVE-2018-1000865 (A sandbox bypass vulnerability exists in Script Security Plugin 1.47 ...)
 	NOT-FOR-US: Jenkins
-CVE-2018-1000864
+CVE-2018-1000864 (A denial of service vulnerability exists in Jenkins 2.153 and earlier, ...)
 	NOT-FOR-US: Jenkins
-CVE-2018-1000863
+CVE-2018-1000863 (A data modification vulnerability exists in Jenkins 2.153 and earlier, ...)
 	NOT-FOR-US: Jenkins
-CVE-2018-1000862
+CVE-2018-1000862 (An information exposure vulnerability exists in Jenkins 2.153 and ...)
 	NOT-FOR-US: Jenkins
-CVE-2018-1000861
+CVE-2018-1000861 (A code execution vulnerability exists in the Stapler web framework ...)
 	NOT-FOR-US: Jenkins
 CVE-2018-20008
 	RESERVED
@@ -1409,6 +2269,7 @@ CVE-2018-19788 (A flaw was found in PolicyKit (aka polkit) 0.115 that allows a u
 	NOTE: https://gitlab.freedesktop.org/polkit/polkit/commit/2cb40c4d5feeaa09325522bd7d97910f1b59e379
 	NOTE: https://gitlab.freedesktop.org/polkit/polkit/commit/b534a10727455409acd54018a9c91000e7626126
 CVE-2018-19787 (An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the ...)
+	{DLA-1604-1}
 	- lxml 4.2.5-1
 	[stretch] - lxml <no-dsa> (Minor issue)
 	NOTE: Fixed by: https://github.com/lxml/lxml/commit/6be1d081b49c97cfd7b3fbd934a193b668629109 (lxml-4.2.5)
@@ -12303,10 +13164,10 @@ CVE-2018-16638
 	RESERVED
 CVE-2018-16637
 	RESERVED
-CVE-2018-16636
-	RESERVED
-CVE-2018-16635
-	RESERVED
+CVE-2018-16636 (Nucleus CMS 3.70 allows HTML Injection via the index.php body ...)
+	TODO: check
+CVE-2018-16635 (Blackcat CMS 1.3.2 allows XSS via the willkommen.php?lang=DE page ...)
+	TODO: check
 CVE-2018-16634 (Pluck v4.7.7 allows CSRF via admin.php?action=settings. ...)
 	NOT-FOR-US: Pluck CMS
 CVE-2018-16633 (Pluck v4.7.7 allows XSS via the admin.php?action=editpage&page= page ...)
@@ -14464,8 +15325,8 @@ CVE-2018-15807 (POSIM EVO 15.13 for Windows includes an "Emergency Override
 	NOT-FOR-US: POSIM EVO for Windows
 CVE-2018-15806
 	RESERVED
-CVE-2018-15805
-	RESERVED
+CVE-2018-15805 (Accusoft PrizmDoc HTML5 Document Viewer before 13.5 contains an XML ...)
+	TODO: check
 CVE-2018-15804 (An issue was discovered in the MapR File System in MapR Converged Data ...)
 	NOT-FOR-US: MapR File System
 CVE-2018-15803
@@ -14474,8 +15335,8 @@ CVE-2018-15802
 	RESERVED
 CVE-2018-15801
 	RESERVED
-CVE-2018-15800
-	RESERVED
+CVE-2018-15800 (Cloud Foundry Bits Service, versions prior to 2.18.0, includes an ...)
+	TODO: check
 CVE-2018-15799
 	RESERVED
 CVE-2018-15798
@@ -44529,7 +45390,8 @@ CVE-2018-4869
 CVE-2018-4868 (The Exiv2::Jp2Image::readMetadata function in jp2image.cpp in Exiv2 ...)
 	- exiv2 <not-affected> (Vulnerable code introduced in 0.26)
 	NOTE: https://github.com/Exiv2/exiv2/issues/202
-CVE-2017-1000500 (Keycloak SSO versions prior to 2.x are vulnerable to Host Header ...)
+CVE-2017-1000500
+	REJECTED
 	NOT-FOR-US: Keycloak
 CVE-2017-1000499 (phpMyAdmin versions 4.7.x (prior to 4.7.6.1/4.7.7) are vulnerable to a ...)
 	- phpmyadmin <not-affected> (Only affects phpMyAdmin starting from 4.7.0)
@@ -46615,8 +47477,8 @@ CVE-2018-3990
 	RESERVED
 CVE-2018-3989
 	RESERVED
-CVE-2018-3988
-	RESERVED
+CVE-2018-3988 (Signal Messenger for Android 4.24.8 may expose private information ...)
+	TODO: check
 CVE-2018-3987
 	RESERVED
 CVE-2018-3986
@@ -52590,8 +53452,8 @@ CVE-2018-1959
 	RESERVED
 CVE-2018-1958
 	RESERVED
-CVE-2018-1957
-	RESERVED
+CVE-2018-1957 (IBM WebSphere Application Server 9 could allow sensitive information ...)
+	TODO: check
 CVE-2018-1956
 	RESERVED
 CVE-2018-1955
@@ -53162,8 +54024,8 @@ CVE-2018-1673 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2018-1672 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 may fail to set the ...)
 	NOT-FOR-US: IBM
-CVE-2018-1671
-	RESERVED
+CVE-2018-1671 (IBM Curam Social Program Management 7.0.3 is vulnerable to HTML ...)
+	TODO: check
 CVE-2018-1670 (IBM Financial Transaction Manager for ACH Services for Multi-Platform ...)
 	NOT-FOR-US: IBM
 CVE-2018-1669 (IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 ...)
@@ -54759,8 +55621,8 @@ CVE-2017-17448 (net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4
 	NOTE: https://patchwork.kernel.org/patch/10089373/
 CVE-2018-1280 (Pivotal Greenplum Command Center versions 2.x prior to 2.5.1 contains ...)
 	NOT-FOR-US: Pivotal
-CVE-2018-1279
-	RESERVED
+CVE-2018-1279 (Pivotal RabbitMQ for PCF, all versions, uses a deterministically ...)
+	TODO: check
 CVE-2018-1278 (Apps Manager included in Pivotal Application Service, versions 1.12.x ...)
 	NOT-FOR-US: Pivotal
 CVE-2018-1277 (Cloud Foundry Garden-runC, versions prior to 1.13.0, does not ...)
@@ -71271,8 +72133,8 @@ CVE-2017-12879 (Cross-site scripting (XSS-STORED) vulnerability in the DEVICES O
 	NOT-FOR-US: Paessler PRTG Network Monitor
 CVE-2017-12878
 	RESERVED
-CVE-2016-10502
-	RESERVED
+CVE-2016-10502 (While generating trusted application id, An integer overflow can occur ...)
+	TODO: check
 CVE-2016-10501 (In Android before 2018-04-05 or earlier security patch level on ...)
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2016-10500
@@ -112729,7 +113591,7 @@ CVE-2016-8568 (The git_commit_message function in oid.c in libgit2 before 0.24.3
 CVE-2016-8490
 	RESERVED
 CVE-2016-8489
-	RESERVED
+	REJECTED
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2016-8488 (An elevation of privilege vulnerability in Qualcomm closed source ...)
 	NOT-FOR-US: Qualcomm components for Android
@@ -149212,7 +150074,7 @@ CVE-2015-5456 (Cross-site scripting (XSS) vulnerability in the form method in ..
 	NOT-FOR-US: PivotX
 CVE-2015-5455 (Cross-site scripting (XSS) vulnerability in X-Cart 4.5.0 and earlier ...)
 	NOT-FOR-US: X-cart
-CVE-2015-5454 (Cross-site scripting (XSS) vulnerability in Nucleus CMS 3.65 allows ...)
+CVE-2015-5454 (Cross-site scripting (XSS) vulnerability in Nucleus CMS allows remote ...)
 	NOT-FOR-US: Nucleus CMS
 CVE-2015-5453 (Watchguard XCS 9.2 and 10.0 before build 150522 allow remote ...)
 	NOT-FOR-US: Watchguard XCS



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8fe99f217ef67f14da1160bf46e615aa8c747505

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8fe99f217ef67f14da1160bf46e615aa8c747505
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181210/4f768b69/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list