[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Sat Jan 20 09:10:22 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a9a45cc2 by security tracker role at 2018-01-20T09:10:16+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,307 @@
+CVE-2018-5950
+ RESERVED
+CVE-2018-5949
+ RESERVED
+CVE-2018-5948
+ RESERVED
+CVE-2018-5947
+ RESERVED
+CVE-2018-5946
+ RESERVED
+CVE-2018-5945
+ RESERVED
+CVE-2018-5944
+ RESERVED
+CVE-2018-5943
+ RESERVED
+CVE-2018-5942
+ RESERVED
+CVE-2018-5941
+ RESERVED
+CVE-2018-5940
+ RESERVED
+CVE-2018-5939
+ RESERVED
+CVE-2018-5938
+ RESERVED
+CVE-2018-5937
+ RESERVED
+CVE-2018-5936
+ RESERVED
+CVE-2018-5935
+ RESERVED
+CVE-2018-5934
+ RESERVED
+CVE-2018-5933
+ RESERVED
+CVE-2018-5932
+ RESERVED
+CVE-2018-5931
+ RESERVED
+CVE-2018-5930
+ RESERVED
+CVE-2018-5929
+ RESERVED
+CVE-2018-5928
+ RESERVED
+CVE-2018-5927
+ RESERVED
+CVE-2018-5926
+ RESERVED
+CVE-2018-5925
+ RESERVED
+CVE-2018-5924
+ RESERVED
+CVE-2018-5923
+ RESERVED
+CVE-2018-5922
+ RESERVED
+CVE-2018-5921
+ RESERVED
+CVE-2018-5920
+ RESERVED
+CVE-2018-5919
+ RESERVED
+CVE-2018-5918
+ RESERVED
+CVE-2018-5917
+ RESERVED
+CVE-2018-5916
+ RESERVED
+CVE-2018-5915
+ RESERVED
+CVE-2018-5914
+ RESERVED
+CVE-2018-5913
+ RESERVED
+CVE-2018-5912
+ RESERVED
+CVE-2018-5911
+ RESERVED
+CVE-2018-5910
+ RESERVED
+CVE-2018-5909
+ RESERVED
+CVE-2018-5908
+ RESERVED
+CVE-2018-5907
+ RESERVED
+CVE-2018-5906
+ RESERVED
+CVE-2018-5905
+ RESERVED
+CVE-2018-5904
+ RESERVED
+CVE-2018-5903
+ RESERVED
+CVE-2018-5902
+ RESERVED
+CVE-2018-5901
+ RESERVED
+CVE-2018-5900
+ RESERVED
+CVE-2018-5899
+ RESERVED
+CVE-2018-5898
+ RESERVED
+CVE-2018-5897
+ RESERVED
+CVE-2018-5896
+ RESERVED
+CVE-2018-5895
+ RESERVED
+CVE-2018-5894
+ RESERVED
+CVE-2018-5893
+ RESERVED
+CVE-2018-5892
+ RESERVED
+CVE-2018-5891
+ RESERVED
+CVE-2018-5890
+ RESERVED
+CVE-2018-5889
+ RESERVED
+CVE-2018-5888
+ RESERVED
+CVE-2018-5887
+ RESERVED
+CVE-2018-5886
+ RESERVED
+CVE-2018-5885
+ RESERVED
+CVE-2018-5884
+ RESERVED
+CVE-2018-5883
+ RESERVED
+CVE-2018-5882
+ RESERVED
+CVE-2018-5881
+ RESERVED
+CVE-2018-5880
+ RESERVED
+CVE-2018-5879
+ RESERVED
+CVE-2018-5878
+ RESERVED
+CVE-2018-5877
+ RESERVED
+CVE-2018-5876
+ RESERVED
+CVE-2018-5875
+ RESERVED
+CVE-2018-5874
+ RESERVED
+CVE-2018-5873
+ RESERVED
+CVE-2018-5872
+ RESERVED
+CVE-2018-5871
+ RESERVED
+CVE-2018-5870
+ RESERVED
+CVE-2018-5869
+ RESERVED
+CVE-2018-5868
+ RESERVED
+CVE-2018-5867
+ RESERVED
+CVE-2018-5866
+ RESERVED
+CVE-2018-5865
+ RESERVED
+CVE-2018-5864
+ RESERVED
+CVE-2018-5863
+ RESERVED
+CVE-2018-5862
+ RESERVED
+CVE-2018-5861
+ RESERVED
+CVE-2018-5860
+ RESERVED
+CVE-2018-5859
+ RESERVED
+CVE-2018-5858
+ RESERVED
+CVE-2018-5857
+ RESERVED
+CVE-2018-5856
+ RESERVED
+CVE-2018-5855
+ RESERVED
+CVE-2018-5854
+ RESERVED
+CVE-2018-5853
+ RESERVED
+CVE-2018-5852
+ RESERVED
+CVE-2018-5851
+ RESERVED
+CVE-2018-5850
+ RESERVED
+CVE-2018-5849
+ RESERVED
+CVE-2018-5848
+ RESERVED
+CVE-2018-5847
+ RESERVED
+CVE-2018-5846
+ RESERVED
+CVE-2018-5845
+ RESERVED
+CVE-2018-5844
+ RESERVED
+CVE-2018-5843
+ RESERVED
+CVE-2018-5842
+ RESERVED
+CVE-2018-5841
+ RESERVED
+CVE-2018-5840
+ RESERVED
+CVE-2018-5839
+ RESERVED
+CVE-2018-5838
+ RESERVED
+CVE-2018-5837
+ RESERVED
+CVE-2018-5836
+ RESERVED
+CVE-2018-5835
+ RESERVED
+CVE-2018-5834
+ RESERVED
+CVE-2018-5833
+ RESERVED
+CVE-2018-5832
+ RESERVED
+CVE-2018-5831
+ RESERVED
+CVE-2018-5830
+ RESERVED
+CVE-2018-5829
+ RESERVED
+CVE-2018-5828
+ RESERVED
+CVE-2018-5827
+ RESERVED
+CVE-2018-5826
+ RESERVED
+CVE-2018-5825
+ RESERVED
+CVE-2018-5824
+ RESERVED
+CVE-2018-5823
+ RESERVED
+CVE-2018-5822
+ RESERVED
+CVE-2018-5821
+ RESERVED
+CVE-2018-5820
+ RESERVED
+CVE-2018-5819
+ RESERVED
+CVE-2018-5818
+ RESERVED
+CVE-2018-5817
+ RESERVED
+CVE-2018-5816
+ RESERVED
+CVE-2018-5815
+ RESERVED
+CVE-2018-5814
+ RESERVED
+CVE-2018-5813
+ RESERVED
+CVE-2018-5812
+ RESERVED
+CVE-2018-5811
+ RESERVED
+CVE-2018-5810
+ RESERVED
+CVE-2018-5809
+ RESERVED
+CVE-2018-5808
+ RESERVED
+CVE-2018-5807
+ RESERVED
+CVE-2018-5806
+ RESERVED
+CVE-2018-5805
+ RESERVED
+CVE-2018-5804
+ RESERVED
+CVE-2018-5803
+ RESERVED
+CVE-2018-5802
+ RESERVED
+CVE-2018-5801
+ RESERVED
+CVE-2018-5800
+ RESERVED
+CVE-2018-1000006
+ RESERVED
CVE-2018-5799
RESERVED
CVE-2018-5798
@@ -20729,18 +21033,15 @@ CVE-2017-15114 (When libvirtd is configured by OSP director (tripleo-heat-templa
CVE-2017-15113
RESERVED
NOT-FOR-US: ovirt-engine
-CVE-2017-15112
- RESERVED
+CVE-2017-15112 (keycloak-httpd-client-install versions before 0.8 allow users to ...)
NOT-FOR-US: Keycloak
-CVE-2017-15111
- RESERVED
+CVE-2017-15111 (keycloak-httpd-client-install versions before 0.8 insecurely creates ...)
NOT-FOR-US: Keycloak
CVE-2017-15110 (In Moodle 3.x, students can find out email addresses of other students ...)
- moodle <removed>
CVE-2017-15109
RESERVED
-CVE-2017-15108 [spice-vdagent: Improper validation of xfers->save_dir in vdagent_file_xfers_data()]
- RESERVED
+CVE-2017-15108 (spice-vdagent up to and including 0.17.0 does not properly escape save ...)
- spice-vdagent <unfixed> (bug #883238)
[stretch] - spice-vdagent <no-dsa> (Minor issue)
[jessie] - spice-vdagent <no-dsa> (Minor issue)
@@ -21816,8 +22117,8 @@ CVE-2017-14804 [build: Exploit extractbuild to write to files in the host system
RESERVED
- obs-build <unfixed> (bug #887306)
NOTE: https://bugzilla.novell.com/show_bug.cgi?id=1069904
-CVE-2017-14803
- RESERVED
+CVE-2017-14803 (In NetIQ Access Manager 4.3 and 4.4, a bug exists in Identity Server ...)
+ TODO: check
CVE-2017-14802
RESERVED
CVE-2017-14801
@@ -22875,14 +23176,14 @@ CVE-2017-14462
RESERVED
CVE-2017-14461
RESERVED
-CVE-2017-14460
- RESERVED
+CVE-2017-14460 (An exploitable overly permissive cross-domain (CORS) whitelist ...)
+ TODO: check
CVE-2017-14459
RESERVED
CVE-2017-14458
RESERVED
-CVE-2017-14457
- RESERVED
+CVE-2017-14457 (An exploitable information leak/denial of service vulnerability exists ...)
+ TODO: check
CVE-2017-14456
RESERVED
CVE-2017-14455
@@ -29784,8 +30085,8 @@ CVE-2017-12132 (The DNS stub resolver in the GNU C Library (aka glibc or libc6)
NOTE: https://arxiv.org/pdf/1205.4011.pdf
CVE-2017-12131 (The Easy Testimonials plugin 3.0.4 for WordPress has XSS in ...)
NOT-FOR-US: Wordpress plugin
-CVE-2017-12130
- RESERVED
+CVE-2017-12130 (An exploitable NULL pointer dereference vulnerability exists in the ...)
+ TODO: check
CVE-2017-12129
RESERVED
CVE-2017-12128
@@ -29806,22 +30107,22 @@ CVE-2017-12121
RESERVED
CVE-2017-12120
RESERVED
-CVE-2017-12119
- RESERVED
-CVE-2017-12118
- RESERVED
-CVE-2017-12117
- RESERVED
-CVE-2017-12116
- RESERVED
-CVE-2017-12115
- RESERVED
-CVE-2017-12114
- RESERVED
-CVE-2017-12113
- RESERVED
-CVE-2017-12112
- RESERVED
+CVE-2017-12119 (An exploitable unhandled exception vulnerability exists in multiple ...)
+ TODO: check
+CVE-2017-12118 (An exploitable improper authorization vulnerability exists in ...)
+ TODO: check
+CVE-2017-12117 (An exploitable improper authorization vulnerability exists in ...)
+ TODO: check
+CVE-2017-12116 (An exploitable improper authorization vulnerability exists in ...)
+ TODO: check
+CVE-2017-12115 (An exploitable improper authorization vulnerability exists in ...)
+ TODO: check
+CVE-2017-12114 (An exploitable improper authorization vulnerability exists in ...)
+ TODO: check
+CVE-2017-12113 (An exploitable improper authorization vulnerability exists in ...)
+ TODO: check
+CVE-2017-12112 (An exploitable improper authorization vulnerability exists in ...)
+ TODO: check
CVE-2017-12111 (An exploitable out-of-bounds vulnerability exists in the xls_addCell ...)
TODO: check, libxls is not packaged in Debian, but embedded in r-cran-readxl
CVE-2017-12110 (An exploitable integer overflow vulnerability exists in the ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a9a45cc2157305ad2f2fe1edc9eb7335c3145624
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a9a45cc2157305ad2f2fe1edc9eb7335c3145624
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180120/538ef897/attachment.html>
More information about the Secure-testing-commits
mailing list