[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Fri Jan 5 09:10:18 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
84398225 by security tracker role at 2018-01-05T09:10:14+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,29 @@
+CVE-2018-5233
+ RESERVED
+CVE-2018-5232
+ RESERVED
+CVE-2018-5231
+ RESERVED
+CVE-2018-5230
+ RESERVED
+CVE-2018-5229
+ RESERVED
+CVE-2018-5228
+ RESERVED
+CVE-2018-5227
+ RESERVED
+CVE-2018-5226
+ RESERVED
+CVE-2018-5225
+ RESERVED
+CVE-2018-5224
+ RESERVED
+CVE-2018-5223
+ RESERVED
+CVE-2018-5222
+ RESERVED
+CVE-2018-5221
+ RESERVED
CVE-2018-5220 (In K7 Antivirus 15.1.0306, the driver file (K7Sentry.sys) allows local ...)
NOT-FOR-US: K7 Antivirus
CVE-2018-5219 (In K7 Antivirus 15.1.0306, the driver file (K7FWHlpr.sys) allows local ...)
@@ -13517,8 +13543,8 @@ CVE-2017-16906 (In Horde Groupware 5.2.19, there is XSS via the URL field in a .
- php-horde <undetermined>
NOTE: http://code610.blogspot.com/2017/11/rce-via-xss-horde-5219.html
TODO: check
-CVE-2017-16905
- RESERVED
+CVE-2017-16905 (The DuoLingo TinyCards application before 1.0 for Android has one use ...)
+ TODO: check
CVE-2017-16904 (The Public tologin feature in admin.php in LvyeCMS through 3.1 allows ...)
NOT-FOR-US: LvyeCMS
CVE-2017-16903 (LvyeCMS through 3.1 allows remote attackers to upload and execute ...)
@@ -14398,8 +14424,8 @@ CVE-2017-16755
RESERVED
CVE-2017-16754 (Bolt before 3.3.6 does not properly restrict access to _profiler ...)
NOT-FOR-US: Bolt CMS
-CVE-2017-16753
- RESERVED
+CVE-2017-16753 (An Improper Input Validation issue was discovered in Advantech ...)
+ TODO: check
CVE-2017-16752
RESERVED
CVE-2017-16751
@@ -14448,32 +14474,32 @@ CVE-2017-16730
RESERVED
CVE-2017-16729
RESERVED
-CVE-2017-16728
- RESERVED
+CVE-2017-16728 (An Untrusted Pointer Dereference issue was discovered in Advantech ...)
+ TODO: check
CVE-2017-16727 (A Credentials Management issue was discovered in Moxa NPort W2150A ...)
NOT-FOR-US: Moxa
CVE-2017-16726
RESERVED
CVE-2017-16725 (A Stack-based Buffer Overflow issue was discovered in Xiongmai ...)
NOT-FOR-US: Xiongmai Technology IP Cameras and DVRs
-CVE-2017-16724
- RESERVED
+CVE-2017-16724 (A Stack-based Buffer Overflow issue was discovered in Advantech ...)
+ TODO: check
CVE-2017-16723 (A Cross-site Scripting issue was discovered in PHOENIX CONTACT FL ...)
NOT-FOR-US: PHOENIX
CVE-2017-16722
RESERVED
CVE-2017-16721 (A Cross-site Scripting issue was discovered in Geovap Reliance SCADA ...)
NOT-FOR-US: Geovap Reliance SCADA
-CVE-2017-16720
- RESERVED
+CVE-2017-16720 (A Path Traversal issue was discovered in WebAccess versions prior to ...)
+ TODO: check
CVE-2017-16719 (An Injection issue was discovered in Moxa NPort 5110 Version 2.2, NPort ...)
NOT-FOR-US: Moxa
CVE-2017-16718
RESERVED
CVE-2017-16717 (A Heap-based Buffer Overflow issue was discovered in WECON LeviStudio ...)
NOT-FOR-US: WECON LeviStudio HMI
-CVE-2017-16716
- RESERVED
+CVE-2017-16716 (A SQL Injection issue was discovered in WebAccess versions prior to ...)
+ TODO: check
CVE-2017-16715 (An Information Exposure issue was discovered in Moxa NPort 5110 Version ...)
NOT-FOR-US: Moxa
CVE-2017-16714
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/843982251b8036aa9407b6b725f00274bd066ebf
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/843982251b8036aa9407b6b725f00274bd066ebf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180105/b635c038/attachment-0001.html>
More information about the Secure-testing-commits
mailing list