[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sun Jul 1 21:13:45 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0c84f419 by security tracker role at 2018-07-01T20:11:13+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,23 @@
+CVE-2018-13041 (The mint function of a smart contract implementation for Link Platform ...)
+	TODO: check
+CVE-2018-13040 (OpenSID 18.06-pasca has a CSRF vulnerability. This vulnerability can ...)
+	TODO: check
+CVE-2018-13039 (OpenSID 18.06-pasca has reflected Cross Site Scripting (XSS) via the ...)
+	TODO: check
+CVE-2018-13038 (OpenSID 18.06-pasca has an Unrestricted File Upload vulnerability via ...)
+	TODO: check
+CVE-2018-13037 (An issue was discovered in jpeg-compressor 0.1. The bmp_load function ...)
+	TODO: check
+CVE-2018-13036
+	RESERVED
+CVE-2018-13035
+	RESERVED
+CVE-2018-13034
+	RESERVED
+CVE-2018-13033 (The Binary File Descriptor (BFD) library (aka libbfd), as distributed ...)
+	TODO: check
+CVE-2018-13032 (ECESSA ShieldLink SL175EHQ 10.7.4 devices have CSRF to add superuser ...)
+	TODO: check
 CVE-2018-13031
 	RESERVED
 CVE-2018-13030 (An issue was discovered in jpeg-compressor 0.1. The build_huffman ...)
@@ -24705,6 +24725,7 @@ CVE-2017-1000437 (Creolabs Gravity 1.0 contains a stack based buffer overflow in
 CVE-2017-1000434 (Wordpress plugin Furikake version 0.1.0 is vulnerable to an Open ...)
 	NOT-FOR-US: Wordpress plugin Furikake
 CVE-2017-1000433 (pysaml2 version 4.4.0 and older accept any password when run with ...)
+	{DLA-1410-1}
 	- python-pysaml2 <unfixed> (bug #886423)
 	NOTE: https://github.com/rohe/pysaml2/issues/451
 	NOTE: Fixed by: https://github.com/rohe/pysaml2/commit/6312a41e037954850867f29d329e5007df1424a5



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c84f419cd32f0473cad820997c3cabe5afb9b33

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c84f419cd32f0473cad820997c3cabe5afb9b33
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180701/460bad50/attachment.html>

More information about the debian-security-tracker-commits mailing list