[Git][security-tracker-team/security-tracker][master] new zoneminder issues
Moritz Muehlenhoff
jmm at debian.org
Fri Dec 21 16:09:08 GMT 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ca8b4fcc by Moritz Muehlenhoff at 2018-12-21T16:08:42Z
new zoneminder issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -173,9 +173,13 @@ CVE-2018-1000835 (KeePassDX version <= 2.5.0.0beta17 contains a XML External
CVE-2018-1000834 (runelite version <= runelite-parent-1.4.23 contains a XML External ...)
NOT-FOR-US: runelite
CVE-2018-1000833 (ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://0dd.zone/2018/10/28/zoneminder-Object-Injection-2/
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2272
CVE-2018-1000832 (ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://0dd.zone/2018/10/28/zoneminder-Object-Injection/
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2271
CVE-2018-1000831 (K9Mail version <= v5.600 contains a XML External Entity (XXE) ...)
NOT-FOR-US: K9Mail
CVE-2018-1000830 (XR3Player version <= V3.124 contains a XML External Entity (XXE) ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca8b4fccf2b184444166d5dd75035667d98aa2e0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca8b4fccf2b184444166d5dd75035667d98aa2e0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181221/f7eb3b23/attachment.html>
More information about the debian-security-tracker-commits
mailing list