[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Mon Dec 10 20:10:30 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8fe99f21 by security tracker role at 2018-12-10T20:10:21Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,14 +1,874 @@
-CVE-2018-1000866
+CVE-2019-2394
+ RESERVED
+CVE-2019-2393
+ RESERVED
+CVE-2019-2392
+ RESERVED
+CVE-2019-2391
+ RESERVED
+CVE-2019-2390
+ RESERVED
+CVE-2019-2389
+ RESERVED
+CVE-2019-2388
+ RESERVED
+CVE-2019-2387
+ RESERVED
+CVE-2019-2386
+ RESERVED
+CVE-2019-2385
+ RESERVED
+CVE-2019-2384
+ RESERVED
+CVE-2019-2383
+ RESERVED
+CVE-2019-2382
+ RESERVED
+CVE-2019-2381
+ RESERVED
+CVE-2019-2380
+ RESERVED
+CVE-2019-2379
+ RESERVED
+CVE-2019-2378
+ RESERVED
+CVE-2019-2377
+ RESERVED
+CVE-2019-2376
+ RESERVED
+CVE-2019-2375
+ RESERVED
+CVE-2019-2374
+ RESERVED
+CVE-2019-2373
+ RESERVED
+CVE-2019-2372
+ RESERVED
+CVE-2019-2371
+ RESERVED
+CVE-2019-2370
+ RESERVED
+CVE-2019-2369
+ RESERVED
+CVE-2019-2368
+ RESERVED
+CVE-2019-2367
+ RESERVED
+CVE-2019-2366
+ RESERVED
+CVE-2019-2365
+ RESERVED
+CVE-2019-2364
+ RESERVED
+CVE-2019-2363
+ RESERVED
+CVE-2019-2362
+ RESERVED
+CVE-2019-2361
+ RESERVED
+CVE-2019-2360
+ RESERVED
+CVE-2019-2359
+ RESERVED
+CVE-2019-2358
+ RESERVED
+CVE-2019-2357
+ RESERVED
+CVE-2019-2356
+ RESERVED
+CVE-2019-2355
+ RESERVED
+CVE-2019-2354
+ RESERVED
+CVE-2019-2353
+ RESERVED
+CVE-2019-2352
+ RESERVED
+CVE-2019-2351
+ RESERVED
+CVE-2019-2350
+ RESERVED
+CVE-2019-2349
+ RESERVED
+CVE-2019-2348
+ RESERVED
+CVE-2019-2347
+ RESERVED
+CVE-2019-2346
+ RESERVED
+CVE-2019-2345
+ RESERVED
+CVE-2019-2344
+ RESERVED
+CVE-2019-2343
+ RESERVED
+CVE-2019-2342
+ RESERVED
+CVE-2019-2341
+ RESERVED
+CVE-2019-2340
+ RESERVED
+CVE-2019-2339
+ RESERVED
+CVE-2019-2338
+ RESERVED
+CVE-2019-2337
+ RESERVED
+CVE-2019-2336
+ RESERVED
+CVE-2019-2335
+ RESERVED
+CVE-2019-2334
+ RESERVED
+CVE-2019-2333
+ RESERVED
+CVE-2019-2332
+ RESERVED
+CVE-2019-2331
+ RESERVED
+CVE-2019-2330
+ RESERVED
+CVE-2019-2329
+ RESERVED
+CVE-2019-2328
+ RESERVED
+CVE-2019-2327
+ RESERVED
+CVE-2019-2326
+ RESERVED
+CVE-2019-2325
+ RESERVED
+CVE-2019-2324
+ RESERVED
+CVE-2019-2323
+ RESERVED
+CVE-2019-2322
+ RESERVED
+CVE-2019-2321
+ RESERVED
+CVE-2019-2320
+ RESERVED
+CVE-2019-2319
+ RESERVED
+CVE-2019-2318
+ RESERVED
+CVE-2019-2317
+ RESERVED
+CVE-2019-2316
+ RESERVED
+CVE-2019-2315
+ RESERVED
+CVE-2019-2314
+ RESERVED
+CVE-2019-2313
+ RESERVED
+CVE-2019-2312
+ RESERVED
+CVE-2019-2311
+ RESERVED
+CVE-2019-2310
+ RESERVED
+CVE-2019-2309
+ RESERVED
+CVE-2019-2308
+ RESERVED
+CVE-2019-2307
+ RESERVED
+CVE-2019-2306
+ RESERVED
+CVE-2019-2305
+ RESERVED
+CVE-2019-2304
+ RESERVED
+CVE-2019-2303
+ RESERVED
+CVE-2019-2302
+ RESERVED
+CVE-2019-2301
+ RESERVED
+CVE-2019-2300
+ RESERVED
+CVE-2019-2299
+ RESERVED
+CVE-2019-2298
+ RESERVED
+CVE-2019-2297
+ RESERVED
+CVE-2019-2296
+ RESERVED
+CVE-2019-2295
+ RESERVED
+CVE-2019-2294
+ RESERVED
+CVE-2019-2293
+ RESERVED
+CVE-2019-2292
+ RESERVED
+CVE-2019-2291
+ RESERVED
+CVE-2019-2290
+ RESERVED
+CVE-2019-2289
+ RESERVED
+CVE-2019-2288
+ RESERVED
+CVE-2019-2287
+ RESERVED
+CVE-2019-2286
+ RESERVED
+CVE-2019-2285
+ RESERVED
+CVE-2019-2284
+ RESERVED
+CVE-2019-2283
+ RESERVED
+CVE-2019-2282
+ RESERVED
+CVE-2019-2281
+ RESERVED
+CVE-2019-2280
+ RESERVED
+CVE-2019-2279
+ RESERVED
+CVE-2019-2278
+ RESERVED
+CVE-2019-2277
+ RESERVED
+CVE-2019-2276
+ RESERVED
+CVE-2019-2275
+ RESERVED
+CVE-2019-2274
+ RESERVED
+CVE-2019-2273
+ RESERVED
+CVE-2019-2272
+ RESERVED
+CVE-2019-2271
+ RESERVED
+CVE-2019-2270
+ RESERVED
+CVE-2019-2269
+ RESERVED
+CVE-2019-2268
+ RESERVED
+CVE-2019-2267
+ RESERVED
+CVE-2019-2266
+ RESERVED
+CVE-2019-2265
+ RESERVED
+CVE-2019-2264
+ RESERVED
+CVE-2019-2263
+ RESERVED
+CVE-2019-2262
+ RESERVED
+CVE-2019-2261
+ RESERVED
+CVE-2019-2260
+ RESERVED
+CVE-2019-2259
+ RESERVED
+CVE-2019-2258
+ RESERVED
+CVE-2019-2257
+ RESERVED
+CVE-2019-2256
+ RESERVED
+CVE-2019-2255
+ RESERVED
+CVE-2019-2254
+ RESERVED
+CVE-2019-2253
+ RESERVED
+CVE-2019-2252
+ RESERVED
+CVE-2019-2251
+ RESERVED
+CVE-2019-2250
+ RESERVED
+CVE-2019-2249
+ RESERVED
+CVE-2019-2248
+ RESERVED
+CVE-2019-2247
+ RESERVED
+CVE-2019-2246
+ RESERVED
+CVE-2019-2245
+ RESERVED
+CVE-2019-2244
+ RESERVED
+CVE-2019-2243
+ RESERVED
+CVE-2019-2242
+ RESERVED
+CVE-2019-2241
+ RESERVED
+CVE-2019-2240
+ RESERVED
+CVE-2019-2239
+ RESERVED
+CVE-2019-2238
+ RESERVED
+CVE-2019-2237
+ RESERVED
+CVE-2019-2236
+ RESERVED
+CVE-2019-2235
+ RESERVED
+CVE-2019-2234
+ RESERVED
+CVE-2019-2233
+ RESERVED
+CVE-2019-2232
+ RESERVED
+CVE-2019-2231
+ RESERVED
+CVE-2019-2230
+ RESERVED
+CVE-2019-2229
+ RESERVED
+CVE-2019-2228
+ RESERVED
+CVE-2019-2227
+ RESERVED
+CVE-2019-2226
+ RESERVED
+CVE-2019-2225
+ RESERVED
+CVE-2019-2224
+ RESERVED
+CVE-2019-2223
+ RESERVED
+CVE-2019-2222
+ RESERVED
+CVE-2019-2221
+ RESERVED
+CVE-2019-2220
+ RESERVED
+CVE-2019-2219
+ RESERVED
+CVE-2019-2218
+ RESERVED
+CVE-2019-2217
+ RESERVED
+CVE-2019-2216
+ RESERVED
+CVE-2019-2215
+ RESERVED
+CVE-2019-2214
+ RESERVED
+CVE-2019-2213
+ RESERVED
+CVE-2019-2212
+ RESERVED
+CVE-2019-2211
+ RESERVED
+CVE-2019-2210
+ RESERVED
+CVE-2019-2209
+ RESERVED
+CVE-2019-2208
+ RESERVED
+CVE-2019-2207
+ RESERVED
+CVE-2019-2206
+ RESERVED
+CVE-2019-2205
+ RESERVED
+CVE-2019-2204
+ RESERVED
+CVE-2019-2203
+ RESERVED
+CVE-2019-2202
+ RESERVED
+CVE-2019-2201
+ RESERVED
+CVE-2019-2200
+ RESERVED
+CVE-2019-2199
+ RESERVED
+CVE-2019-2198
+ RESERVED
+CVE-2019-2197
+ RESERVED
+CVE-2019-2196
+ RESERVED
+CVE-2019-2195
+ RESERVED
+CVE-2019-2194
+ RESERVED
+CVE-2019-2193
+ RESERVED
+CVE-2019-2192
+ RESERVED
+CVE-2019-2191
+ RESERVED
+CVE-2019-2190
+ RESERVED
+CVE-2019-2189
+ RESERVED
+CVE-2019-2188
+ RESERVED
+CVE-2019-2187
+ RESERVED
+CVE-2019-2186
+ RESERVED
+CVE-2019-2185
+ RESERVED
+CVE-2019-2184
+ RESERVED
+CVE-2019-2183
+ RESERVED
+CVE-2019-2182
+ RESERVED
+CVE-2019-2181
+ RESERVED
+CVE-2019-2180
+ RESERVED
+CVE-2019-2179
+ RESERVED
+CVE-2019-2178
+ RESERVED
+CVE-2019-2177
+ RESERVED
+CVE-2019-2176
+ RESERVED
+CVE-2019-2175
+ RESERVED
+CVE-2019-2174
+ RESERVED
+CVE-2019-2173
+ RESERVED
+CVE-2019-2172
+ RESERVED
+CVE-2019-2171
+ RESERVED
+CVE-2019-2170
+ RESERVED
+CVE-2019-2169
+ RESERVED
+CVE-2019-2168
+ RESERVED
+CVE-2019-2167
+ RESERVED
+CVE-2019-2166
+ RESERVED
+CVE-2019-2165
+ RESERVED
+CVE-2019-2164
+ RESERVED
+CVE-2019-2163
+ RESERVED
+CVE-2019-2162
+ RESERVED
+CVE-2019-2161
+ RESERVED
+CVE-2019-2160
+ RESERVED
+CVE-2019-2159
+ RESERVED
+CVE-2019-2158
+ RESERVED
+CVE-2019-2157
+ RESERVED
+CVE-2019-2156
+ RESERVED
+CVE-2019-2155
+ RESERVED
+CVE-2019-2154
+ RESERVED
+CVE-2019-2153
+ RESERVED
+CVE-2019-2152
+ RESERVED
+CVE-2019-2151
+ RESERVED
+CVE-2019-2150
+ RESERVED
+CVE-2019-2149
+ RESERVED
+CVE-2019-2148
+ RESERVED
+CVE-2019-2147
+ RESERVED
+CVE-2019-2146
+ RESERVED
+CVE-2019-2145
+ RESERVED
+CVE-2019-2144
+ RESERVED
+CVE-2019-2143
+ RESERVED
+CVE-2019-2142
+ RESERVED
+CVE-2019-2141
+ RESERVED
+CVE-2019-2140
+ RESERVED
+CVE-2019-2139
+ RESERVED
+CVE-2019-2138
+ RESERVED
+CVE-2019-2137
+ RESERVED
+CVE-2019-2136
+ RESERVED
+CVE-2019-2135
+ RESERVED
+CVE-2019-2134
+ RESERVED
+CVE-2019-2133
+ RESERVED
+CVE-2019-2132
+ RESERVED
+CVE-2019-2131
+ RESERVED
+CVE-2019-2130
+ RESERVED
+CVE-2019-2129
+ RESERVED
+CVE-2019-2128
+ RESERVED
+CVE-2019-2127
+ RESERVED
+CVE-2019-2126
+ RESERVED
+CVE-2019-2125
+ RESERVED
+CVE-2019-2124
+ RESERVED
+CVE-2019-2123
+ RESERVED
+CVE-2019-2122
+ RESERVED
+CVE-2019-2121
+ RESERVED
+CVE-2019-2120
+ RESERVED
+CVE-2019-2119
+ RESERVED
+CVE-2019-2118
+ RESERVED
+CVE-2019-2117
+ RESERVED
+CVE-2019-2116
+ RESERVED
+CVE-2019-2115
+ RESERVED
+CVE-2019-2114
+ RESERVED
+CVE-2019-2113
+ RESERVED
+CVE-2019-2112
+ RESERVED
+CVE-2019-2111
+ RESERVED
+CVE-2019-2110
+ RESERVED
+CVE-2019-2109
+ RESERVED
+CVE-2019-2108
+ RESERVED
+CVE-2019-2107
+ RESERVED
+CVE-2019-2106
+ RESERVED
+CVE-2019-2105
+ RESERVED
+CVE-2019-2104
+ RESERVED
+CVE-2019-2103
+ RESERVED
+CVE-2019-2102
+ RESERVED
+CVE-2019-2101
+ RESERVED
+CVE-2019-2100
+ RESERVED
+CVE-2019-2099
+ RESERVED
+CVE-2019-2098
+ RESERVED
+CVE-2019-2097
+ RESERVED
+CVE-2019-2096
+ RESERVED
+CVE-2019-2095
+ RESERVED
+CVE-2019-2094
+ RESERVED
+CVE-2019-2093
+ RESERVED
+CVE-2019-2092
+ RESERVED
+CVE-2019-2091
+ RESERVED
+CVE-2019-2090
+ RESERVED
+CVE-2019-2089
+ RESERVED
+CVE-2019-2088
+ RESERVED
+CVE-2019-2087
+ RESERVED
+CVE-2019-2086
+ RESERVED
+CVE-2019-2085
+ RESERVED
+CVE-2019-2084
+ RESERVED
+CVE-2019-2083
+ RESERVED
+CVE-2019-2082
+ RESERVED
+CVE-2019-2081
+ RESERVED
+CVE-2019-2080
+ RESERVED
+CVE-2019-2079
+ RESERVED
+CVE-2019-2078
+ RESERVED
+CVE-2019-2077
+ RESERVED
+CVE-2019-2076
+ RESERVED
+CVE-2019-2075
+ RESERVED
+CVE-2019-2074
+ RESERVED
+CVE-2019-2073
+ RESERVED
+CVE-2019-2072
+ RESERVED
+CVE-2019-2071
+ RESERVED
+CVE-2019-2070
+ RESERVED
+CVE-2019-2069
+ RESERVED
+CVE-2019-2068
+ RESERVED
+CVE-2019-2067
+ RESERVED
+CVE-2019-2066
+ RESERVED
+CVE-2019-2065
+ RESERVED
+CVE-2019-2064
+ RESERVED
+CVE-2019-2063
+ RESERVED
+CVE-2019-2062
+ RESERVED
+CVE-2019-2061
+ RESERVED
+CVE-2019-2060
+ RESERVED
+CVE-2019-2059
+ RESERVED
+CVE-2019-2058
+ RESERVED
+CVE-2019-2057
+ RESERVED
+CVE-2019-2056
+ RESERVED
+CVE-2019-2055
+ RESERVED
+CVE-2019-2054
+ RESERVED
+CVE-2019-2053
+ RESERVED
+CVE-2019-2052
+ RESERVED
+CVE-2019-2051
+ RESERVED
+CVE-2019-2050
+ RESERVED
+CVE-2019-2049
+ RESERVED
+CVE-2019-2048
+ RESERVED
+CVE-2019-2047
+ RESERVED
+CVE-2019-2046
+ RESERVED
+CVE-2019-2045
+ RESERVED
+CVE-2019-2044
+ RESERVED
+CVE-2019-2043
+ RESERVED
+CVE-2019-2042
+ RESERVED
+CVE-2019-2041
+ RESERVED
+CVE-2019-2040
+ RESERVED
+CVE-2019-2039
+ RESERVED
+CVE-2019-2038
+ RESERVED
+CVE-2019-2037
+ RESERVED
+CVE-2019-2036
+ RESERVED
+CVE-2019-2035
+ RESERVED
+CVE-2019-2034
+ RESERVED
+CVE-2019-2033
+ RESERVED
+CVE-2019-2032
+ RESERVED
+CVE-2019-2031
+ RESERVED
+CVE-2019-2030
+ RESERVED
+CVE-2019-2029
+ RESERVED
+CVE-2019-2028
+ RESERVED
+CVE-2019-2027
+ RESERVED
+CVE-2019-2026
+ RESERVED
+CVE-2019-2025
+ RESERVED
+CVE-2019-2024
+ RESERVED
+CVE-2019-2023
+ RESERVED
+CVE-2019-2022
+ RESERVED
+CVE-2019-2021
+ RESERVED
+CVE-2019-2020
+ RESERVED
+CVE-2019-2019
+ RESERVED
+CVE-2019-2018
+ RESERVED
+CVE-2019-2017
+ RESERVED
+CVE-2019-2016
+ RESERVED
+CVE-2019-2015
+ RESERVED
+CVE-2019-2014
+ RESERVED
+CVE-2019-2013
+ RESERVED
+CVE-2019-2012
+ RESERVED
+CVE-2019-2011
+ RESERVED
+CVE-2019-2010
+ RESERVED
+CVE-2019-2009
+ RESERVED
+CVE-2019-2008
+ RESERVED
+CVE-2019-2007
+ RESERVED
+CVE-2019-2006
+ RESERVED
+CVE-2019-2005
+ RESERVED
+CVE-2019-2004
+ RESERVED
+CVE-2019-2003
+ RESERVED
+CVE-2019-2002
+ RESERVED
+CVE-2019-2001
+ RESERVED
+CVE-2019-2000
+ RESERVED
+CVE-2019-1999
+ RESERVED
+CVE-2019-1998
+ RESERVED
+CVE-2019-1997
+ RESERVED
+CVE-2019-1996
+ RESERVED
+CVE-2019-1995
+ RESERVED
+CVE-2019-1994
+ RESERVED
+CVE-2019-1993
+ RESERVED
+CVE-2019-1992
+ RESERVED
+CVE-2019-1991
+ RESERVED
+CVE-2019-1990
+ RESERVED
+CVE-2019-1989
+ RESERVED
+CVE-2019-1988
+ RESERVED
+CVE-2019-1987
+ RESERVED
+CVE-2019-1986
+ RESERVED
+CVE-2019-1985
+ RESERVED
+CVE-2018-20028
+ RESERVED
+CVE-2018-20027
+ RESERVED
+CVE-2018-20026
+ RESERVED
+CVE-2018-20025
+ RESERVED
+CVE-2018-20024
+ RESERVED
+CVE-2018-20023
+ RESERVED
+CVE-2018-20022
+ RESERVED
+CVE-2018-20021
+ RESERVED
+CVE-2018-20020
+ RESERVED
+CVE-2018-20019
+ RESERVED
+CVE-2018-20018 (S-CMS V3.0 has SQL injection via the S_id parameter, as demonstrated by ...)
+ TODO: check
+CVE-2018-20017 (SEMCMS 3.5 has XSS via the first text box to the SEMCMS_Main.php URI. ...)
+ TODO: check
+CVE-2018-20016
+ RESERVED
+CVE-2018-20015 (YzmCMS v5.2 has admin/role/add.html CSRF. ...)
+ TODO: check
+CVE-2018-20014
+ RESERVED
+CVE-2018-20013
+ RESERVED
+CVE-2018-20012 (PHPCMF 4.1.3 has XSS via the first input field to the ...)
+ TODO: check
+CVE-2018-20011 (DomainMOD 4.11.01 has XSS via the assets/add/category.php Category Name ...)
+ TODO: check
+CVE-2018-20010 (DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php ...)
+ TODO: check
+CVE-2018-20009 (DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider.php SSL ...)
+ TODO: check
+CVE-2018-1000866 (A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.59 ...)
NOT-FOR-US: Jenkins
-CVE-2018-1000865
+CVE-2018-1000865 (A sandbox bypass vulnerability exists in Script Security Plugin 1.47 ...)
NOT-FOR-US: Jenkins
-CVE-2018-1000864
+CVE-2018-1000864 (A denial of service vulnerability exists in Jenkins 2.153 and earlier, ...)
NOT-FOR-US: Jenkins
-CVE-2018-1000863
+CVE-2018-1000863 (A data modification vulnerability exists in Jenkins 2.153 and earlier, ...)
NOT-FOR-US: Jenkins
-CVE-2018-1000862
+CVE-2018-1000862 (An information exposure vulnerability exists in Jenkins 2.153 and ...)
NOT-FOR-US: Jenkins
-CVE-2018-1000861
+CVE-2018-1000861 (A code execution vulnerability exists in the Stapler web framework ...)
NOT-FOR-US: Jenkins
CVE-2018-20008
RESERVED
@@ -1409,6 +2269,7 @@ CVE-2018-19788 (A flaw was found in PolicyKit (aka polkit) 0.115 that allows a u
NOTE: https://gitlab.freedesktop.org/polkit/polkit/commit/2cb40c4d5feeaa09325522bd7d97910f1b59e379
NOTE: https://gitlab.freedesktop.org/polkit/polkit/commit/b534a10727455409acd54018a9c91000e7626126
CVE-2018-19787 (An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the ...)
+ {DLA-1604-1}
- lxml 4.2.5-1
[stretch] - lxml <no-dsa> (Minor issue)
NOTE: Fixed by: https://github.com/lxml/lxml/commit/6be1d081b49c97cfd7b3fbd934a193b668629109 (lxml-4.2.5)
@@ -12303,10 +13164,10 @@ CVE-2018-16638
RESERVED
CVE-2018-16637
RESERVED
-CVE-2018-16636
- RESERVED
-CVE-2018-16635
- RESERVED
+CVE-2018-16636 (Nucleus CMS 3.70 allows HTML Injection via the index.php body ...)
+ TODO: check
+CVE-2018-16635 (Blackcat CMS 1.3.2 allows XSS via the willkommen.php?lang=DE page ...)
+ TODO: check
CVE-2018-16634 (Pluck v4.7.7 allows CSRF via admin.php?action=settings. ...)
NOT-FOR-US: Pluck CMS
CVE-2018-16633 (Pluck v4.7.7 allows XSS via the admin.php?action=editpage&page= page ...)
@@ -14464,8 +15325,8 @@ CVE-2018-15807 (POSIM EVO 15.13 for Windows includes an "Emergency Override
NOT-FOR-US: POSIM EVO for Windows
CVE-2018-15806
RESERVED
-CVE-2018-15805
- RESERVED
+CVE-2018-15805 (Accusoft PrizmDoc HTML5 Document Viewer before 13.5 contains an XML ...)
+ TODO: check
CVE-2018-15804 (An issue was discovered in the MapR File System in MapR Converged Data ...)
NOT-FOR-US: MapR File System
CVE-2018-15803
@@ -14474,8 +15335,8 @@ CVE-2018-15802
RESERVED
CVE-2018-15801
RESERVED
-CVE-2018-15800
- RESERVED
+CVE-2018-15800 (Cloud Foundry Bits Service, versions prior to 2.18.0, includes an ...)
+ TODO: check
CVE-2018-15799
RESERVED
CVE-2018-15798
@@ -44529,7 +45390,8 @@ CVE-2018-4869
CVE-2018-4868 (The Exiv2::Jp2Image::readMetadata function in jp2image.cpp in Exiv2 ...)
- exiv2 <not-affected> (Vulnerable code introduced in 0.26)
NOTE: https://github.com/Exiv2/exiv2/issues/202
-CVE-2017-1000500 (Keycloak SSO versions prior to 2.x are vulnerable to Host Header ...)
+CVE-2017-1000500
+ REJECTED
NOT-FOR-US: Keycloak
CVE-2017-1000499 (phpMyAdmin versions 4.7.x (prior to 4.7.6.1/4.7.7) are vulnerable to a ...)
- phpmyadmin <not-affected> (Only affects phpMyAdmin starting from 4.7.0)
@@ -46615,8 +47477,8 @@ CVE-2018-3990
RESERVED
CVE-2018-3989
RESERVED
-CVE-2018-3988
- RESERVED
+CVE-2018-3988 (Signal Messenger for Android 4.24.8 may expose private information ...)
+ TODO: check
CVE-2018-3987
RESERVED
CVE-2018-3986
@@ -52590,8 +53452,8 @@ CVE-2018-1959
RESERVED
CVE-2018-1958
RESERVED
-CVE-2018-1957
- RESERVED
+CVE-2018-1957 (IBM WebSphere Application Server 9 could allow sensitive information ...)
+ TODO: check
CVE-2018-1956
RESERVED
CVE-2018-1955
@@ -53162,8 +54024,8 @@ CVE-2018-1673 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to ...)
NOT-FOR-US: IBM
CVE-2018-1672 (IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 may fail to set the ...)
NOT-FOR-US: IBM
-CVE-2018-1671
- RESERVED
+CVE-2018-1671 (IBM Curam Social Program Management 7.0.3 is vulnerable to HTML ...)
+ TODO: check
CVE-2018-1670 (IBM Financial Transaction Manager for ACH Services for Multi-Platform ...)
NOT-FOR-US: IBM
CVE-2018-1669 (IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 ...)
@@ -54759,8 +55621,8 @@ CVE-2017-17448 (net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4
NOTE: https://patchwork.kernel.org/patch/10089373/
CVE-2018-1280 (Pivotal Greenplum Command Center versions 2.x prior to 2.5.1 contains ...)
NOT-FOR-US: Pivotal
-CVE-2018-1279
- RESERVED
+CVE-2018-1279 (Pivotal RabbitMQ for PCF, all versions, uses a deterministically ...)
+ TODO: check
CVE-2018-1278 (Apps Manager included in Pivotal Application Service, versions 1.12.x ...)
NOT-FOR-US: Pivotal
CVE-2018-1277 (Cloud Foundry Garden-runC, versions prior to 1.13.0, does not ...)
@@ -71271,8 +72133,8 @@ CVE-2017-12879 (Cross-site scripting (XSS-STORED) vulnerability in the DEVICES O
NOT-FOR-US: Paessler PRTG Network Monitor
CVE-2017-12878
RESERVED
-CVE-2016-10502
- RESERVED
+CVE-2016-10502 (While generating trusted application id, An integer overflow can occur ...)
+ TODO: check
CVE-2016-10501 (In Android before 2018-04-05 or earlier security patch level on ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2016-10500
@@ -112729,7 +113591,7 @@ CVE-2016-8568 (The git_commit_message function in oid.c in libgit2 before 0.24.3
CVE-2016-8490
RESERVED
CVE-2016-8489
- RESERVED
+ REJECTED
NOT-FOR-US: Qualcomm components for Android
CVE-2016-8488 (An elevation of privilege vulnerability in Qualcomm closed source ...)
NOT-FOR-US: Qualcomm components for Android
@@ -149212,7 +150074,7 @@ CVE-2015-5456 (Cross-site scripting (XSS) vulnerability in the form method in ..
NOT-FOR-US: PivotX
CVE-2015-5455 (Cross-site scripting (XSS) vulnerability in X-Cart 4.5.0 and earlier ...)
NOT-FOR-US: X-cart
-CVE-2015-5454 (Cross-site scripting (XSS) vulnerability in Nucleus CMS 3.65 allows ...)
+CVE-2015-5454 (Cross-site scripting (XSS) vulnerability in Nucleus CMS allows remote ...)
NOT-FOR-US: Nucleus CMS
CVE-2015-5453 (Watchguard XCS 9.2 and 10.0 before build 150522 allow remote ...)
NOT-FOR-US: Watchguard XCS
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8fe99f217ef67f14da1160bf46e615aa8c747505
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8fe99f217ef67f14da1160bf46e615aa8c747505
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181210/4f768b69/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list