[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat Dec 29 08:10:20 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8beafc8e by security tracker role at 2018-12-29T08:10:12Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,5 @@
+CVE-2018-20580
+	RESERVED
 CVE-2018-20579 (Contiki-NG before 4.2 has a stack-based buffer overflow in the push ...)
 	NOT-FOR-US: Contiki-NG
 CVE-2018-20578 (An issue was discovered in NuttX before 7.27. The function ...)
@@ -383,12 +385,12 @@ CVE-2018-20433 (c3p0 0.9.5.2 allows XXE in extractXmlConfigFromInputStream in ..
 CVE-2018-20432
 	RESERVED
 CVE-2018-20431 (GNU Libextractor through 1.8 has a NULL Pointer Dereference ...)
-	{DLA-1616-1}
+	{DSA-4361-1 DLA-1616-1}
 	- libextractor 1:1.8-2 (bug #917213)
 	NOTE: https://gnunet.org/bugs/view.php?id=5494
 	NOTE: https://gnunet.org/git/libextractor.git/commit/?id=489c4a540bb2c4744471441425b8932b97a153e7
 CVE-2018-20430 (GNU Libextractor through 1.8 has an out-of-bounds read vulnerability in ...)
-	{DLA-1616-1}
+	{DSA-4361-1 DLA-1616-1}
 	- libextractor 1:1.8-2 (bug #917214)
 	NOTE: https://gnunet.org/bugs/view.php?id=5493
 	NOTE: https://gnunet.org/git/libextractor.git/commit/?id=b405d707b36e0654900cba78e89f49779efea110
@@ -19105,29 +19107,29 @@ CVE-2018-15796 (Cloud Foundry Bits Service Release, versions prior to 2.14.0, us
 CVE-2018-15795 (Pivotal CredHub Service Broker, versions prior to 1.1.0, uses a ...)
 	NOT-FOR-US: Pivotal
 CVE-2018-15794
-	RESERVED
+	REJECTED
 CVE-2018-15793
-	RESERVED
+	REJECTED
 CVE-2018-15792
-	RESERVED
+	REJECTED
 CVE-2018-15791
-	RESERVED
+	REJECTED
 CVE-2018-15790
-	RESERVED
+	REJECTED
 CVE-2018-15789
-	RESERVED
+	REJECTED
 CVE-2018-15788
-	RESERVED
+	REJECTED
 CVE-2018-15787
-	RESERVED
+	REJECTED
 CVE-2018-15786
-	RESERVED
+	REJECTED
 CVE-2018-15785
-	RESERVED
+	REJECTED
 CVE-2018-15784
 	RESERVED
 CVE-2018-15783
-	RESERVED
+	REJECTED
 CVE-2018-15782
 	RESERVED
 CVE-2018-15781
@@ -20934,54 +20936,54 @@ CVE-2018-15009
 	RESERVED
 CVE-2018-15008
 	RESERVED
-CVE-2018-15007
-	RESERVED
-CVE-2018-15006
-	RESERVED
-CVE-2018-15005
-	RESERVED
-CVE-2018-15004
-	RESERVED
+CVE-2018-15007 (The Sky Elite 6.0L+ Android device with a build fingerprint of ...)
+	TODO: check
+CVE-2018-15006 (The ZTE ZMAX Champ Android device with a build fingerprint of ...)
+	TODO: check
+CVE-2018-15005 (The ZTE ZMAX Champ Android device with a build fingerprint of ...)
+	TODO: check
+CVE-2018-15004 (The Coolpad Canvas device with a build fingerprint of ...)
+	TODO: check
 CVE-2018-15003
 	RESERVED
-CVE-2018-15002
-	RESERVED
-CVE-2018-15001
-	RESERVED
+CVE-2018-15002 (The Vivo V7 device with a build fingerprint of ...)
+	TODO: check
+CVE-2018-15001 (The Vivo V7 Android device with a build fingerprint of ...)
+	TODO: check
 CVE-2018-15000
 	RESERVED
 CVE-2018-14999
 	RESERVED
-CVE-2018-14998
-	RESERVED
+CVE-2018-14998 (The Leagoo P1 Android device with a build fingerprint of ...)
+	TODO: check
 CVE-2018-14997
 	RESERVED
 CVE-2018-14996
 	RESERVED
-CVE-2018-14995
-	RESERVED
+CVE-2018-14995 (The ZTE Blade Vantage Android device with a build fingerprint of ...)
+	TODO: check
 CVE-2018-14994
 	RESERVED
 CVE-2018-14993
 	RESERVED
-CVE-2018-14992
-	RESERVED
+CVE-2018-14992 (The ASUS ZenFone 3 Max Android device with a build fingerprint of ...)
+	TODO: check
 CVE-2018-14991
 	RESERVED
 CVE-2018-14990
 	RESERVED
 CVE-2018-14989
 	RESERVED
-CVE-2018-14988
-	RESERVED
-CVE-2018-14987
-	RESERVED
-CVE-2018-14986
-	RESERVED
-CVE-2018-14985
-	RESERVED
-CVE-2018-14984
-	RESERVED
+CVE-2018-14988 (The MXQ TV Box 4.4.2 Android device with a build fingerprint of ...)
+	TODO: check
+CVE-2018-14987 (The MXQ TV Box 4.4.2 Android device with a build fingerprint of ...)
+	TODO: check
+CVE-2018-14986 (The Leagoo Z5C Android device with a build fingerprint of ...)
+	TODO: check
+CVE-2018-14985 (The Leagoo Z5C Android device with a build fingerprint of ...)
+	TODO: check
+CVE-2018-14984 (The Leagoo Z5C Android device with a build fingerprint of ...)
+	TODO: check
 CVE-2018-14983
 	RESERVED
 CVE-2018-14982 (Certain LG devices based on Android 6.0 through 8.1 have incorrect ...)
@@ -20990,8 +20992,8 @@ CVE-2018-14981 (Certain LG devices based on Android 6.0 through 8.1 have incorre
 	NOT-FOR-US: LG devices specific issue
 CVE-2018-14980
 	RESERVED
-CVE-2018-14979
-	RESERVED
+CVE-2018-14979 (The ASUS ZenFone 3 Max Android device with a build fingerprint of ...)
+	TODO: check
 CVE-2018-14978 (An issue was discovered in QCMS 3.0.1. CSRF exists via the ...)
 	NOT-FOR-US: QCMS
 CVE-2018-14977 (An issue was discovered in QCMS 3.0.1. ...)
@@ -59701,7 +59703,7 @@ CVE-2018-1183 (In Dell EMC Unisphere for VMAX Virtual Appliance versions prior t
 CVE-2018-1182 (An issue was discovered in EMC RSA Identity Governance and Lifecycle ...)
 	NOT-FOR-US: EMC
 CVE-2018-1181
-	RESERVED
+	REJECTED
 CVE-2017-17447
 	RESERVED
 CVE-2017-17445



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8beafc8e8ce0282be0770e1c0159c0ea1f19ba9c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8beafc8e8ce0282be0770e1c0159c0ea1f19ba9c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181229/b2a42cf1/attachment.html>

More information about the debian-security-tracker-commits mailing list