[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Tue Jan 16 09:10:19 UTC 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
996f7384 by security tracker role at 2018-01-16T09:10:14+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,9 @@
+CVE-2018-5704
+	RESERVED
+CVE-2018-5703
+	RESERVED
+CVE-2017-18032
+	RESERVED
 CVE-2018-5701
 	RESERVED
 CVE-2018-5700 (Winmail Server through 6.2 allows remote code execution by ...)
@@ -38,6 +44,7 @@ CVE-2018-5686 (In MuPDF 1.12.0, there is an infinite loop vulnerability and ...)
 	NOTE: pdf_parse_array function in source/pdf/pdf-parse.c does not consider
 	NOTE: EOF.
 CVE-2018-5685 (In GraphicsMagick 1.3.27, there is an infinite loop and application ...)
+	{DLA-1245-1}
 	- graphicsmagick 1.3.27-4 (bug #887158)
 	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/52a91ddb1aa6
 	NOTE: https://sourceforge.net/p/graphicsmagick/bugs/541/
@@ -843,10 +850,10 @@ CVE-2018-5331 (Discuz! DiscuzX X3.4 has XSS via the view parameter to ...)
 	NOT-FOR-US: Discuz!
 CVE-2018-5330
 	RESERVED
-CVE-2018-5329
-	RESERVED
-CVE-2018-5328
-	RESERVED
+CVE-2018-5329 (ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 is vulnerable to Cross-Site ...)
+	TODO: check
+CVE-2018-5328 (ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 allows access to various ...)
+	TODO: check
 CVE-2018-5327 (Cheetah Mobile Armorfly Browser & Downloader 1.1.05.0010, when ...)
 	NOT-FOR-US: Cheetah Mobile Armorfly Browser & Downloader
 CVE-2018-5326 (Cheetah Mobile CM Browser 5.22.06.0012, when installed on unspecified ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/996f738405521084d218da22a411646060b2da5a

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/996f738405521084d218da22a411646060b2da5a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180116/6a7fbcee/attachment-0001.html>

More information about the Secure-testing-commits mailing list