[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Mon Jan 15 09:10:19 UTC 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c6c1a002 by security tracker role at 2018-01-15T09:10:15+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,11 @@
+CVE-2018-5701
+	RESERVED
+CVE-2018-5700 (Winmail Server through 6.2 allows remote code execution by ...)
+	TODO: check
+CVE-2018-5699
+	RESERVED
+CVE-2017-18031
+	RESERVED
 CVE-2018-5698 (libreadstat.a in WizardMac ReadStat 0.1.1 has a heap-based buffer ...)
 	NOT-FOR-US: WizardMac ReadStat
 CVE-2018-5697 (Icy Phoenix 2.2.0.105 allows SQL injection via an unapprove request to ...)
@@ -18,8 +26,8 @@ CVE-2018-5690 (Cross-site scripting (XSS) vulnerability in admin/users.php in Do
 	- dotclear <removed>
 CVE-2018-5689 (Cross-site scripting (XSS) vulnerability in admin/auth.php in Dotclear ...)
 	- dotclear <removed>
-CVE-2018-5688
-	RESERVED
+CVE-2018-5688 (ILIAS before 5.2.4 has XSS via the cmd parameter to the displayHeader ...)
+	TODO: check
 CVE-2018-5687 (NewsBee allows XSS via the Company Name field in the Settings under ...)
 	NOT-FOR-US: NewsBee CMS
 CVE-2018-5686 (In MuPDF 1.12.0, there is an infinite loop vulnerability and ...)
@@ -311,15 +319,15 @@ CVE-2018-5551
 	RESERVED
 CVE-2018-5550
 	RESERVED
-CVE-2015-9250 (An issue was discovered in Skybox Platform before 7.5.401. Directory ...)
+CVE-2015-9250 (An issue was discovered in Skybox Platform before 7.5.201. Directory ...)
 	NOT-FOR-US: Skybox Platform
-CVE-2015-9249 (An issue was discovered in Skybox Platform before 7.5.401. SQL ...)
+CVE-2015-9249 (An issue was discovered in Skybox Platform before 7.5.201. SQL ...)
 	NOT-FOR-US: Skybox Platform
-CVE-2015-9248 (An issue was discovered in Skybox Platform before 7.5.401. Stored ...)
+CVE-2015-9248 (An issue was discovered in Skybox Platform before 7.5.201. Stored ...)
 	NOT-FOR-US: Skybox Platform
 CVE-2015-9247 (An issue was discovered in Skybox Platform before 7.5.401. Reflected ...)
 	NOT-FOR-US: Skybox Platform
-CVE-2015-9246 (An issue was discovered in Skybox Platform before 7.5.401. Remote ...)
+CVE-2015-9246 (An issue was discovered in Skybox Platform before 7.5.201. Remote ...)
 	NOT-FOR-US: Skybox Platform
 CVE-2018-5549
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c6c1a0029993437cffd1cca1209d9e7383f15c33

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c6c1a0029993437cffd1cca1209d9e7383f15c33
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180115/9afaf3a1/attachment-0001.html>


More information about the Secure-testing-commits mailing list