[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
jmm at debian.org
Tue Jul 3 16:41:58 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
57d7d96a by Moritz Muehlenhoff at 2018-07-03T17:41:33+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -32,57 +32,57 @@ CVE-2018-13093 (An issue was discovered in fs/xfs/xfs_icache.c in the Linux kern
NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=199367
NOTE: https://git.kernel.org/pub/scm/fs/xfs/xfs-linux.git/commit/?h=for-next&id=afca6c5b2595fc44383919fba740c194b0b76aff
CVE-2018-13092 (The mintToken function of a smart contract implementation for Reimburse ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13091 (The mintToken function of a smart contract implementation for sumocoin ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13090 (The mintToken function of a smart contract implementation for ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13089 (The mintToken function of a smart contract implementation for Universal ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13088 (The mintToken function of a smart contract implementation for Futures ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13087 (The mintToken function of a smart contract implementation for Coinstar ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13086 (The mintToken function of a smart contract implementation for IADOWR ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13085 (The mintToken function of a smart contract implementation for FreeCoin ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13084 (The mintToken function of a smart contract implementation for Good Time ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13083 (The mintToken function of a smart contract implementation for Plaza ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13082 (The mintToken function of a smart contract implementation for MODI ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13081 (The mintToken function of a smart contract implementation for GZS Token ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13080 (The mintToken function of a smart contract implementation for Goutex ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13079 (The mintToken function of a smart contract implementation for GoodTo ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13078 (The mintToken function of a smart contract implementation for Jitech ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13077 (The mintToken function of a smart contract implementation for CTB, an ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13076 (The mintToken function of a smart contract implementation for Betcash ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13075 (The mintToken function of a smart contract implementation for Carbon ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13074 (The mintToken function of a smart contract implementation for FIBToken ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13073 (The mintToken function of a smart contract implementation for ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13072 (The mintToken function of a smart contract implementation for ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13071 (The mintToken function of a smart contract implementation for CCindex10 ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13070 (The mintToken function of a smart contract implementation for ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13069 (The mintToken function of a smart contract implementation for DYchain ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13068 (The mintToken function of a smart contract implementation for ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13067 (/upload/catalog/controller/account/password.php in OpenCart through ...)
- TODO: check
+ NOT-FOR-US: OpenCart
CVE-2018-13066 (There is a memory leak in util/parser.c in libming 0.4.8, which will ...)
- ming <removed>
NOTE: https://github.com/libming/libming/issues/146
@@ -105,7 +105,7 @@ CVE-2018-13058
CVE-2018-13057
RESERVED
CVE-2018-13056 (An issue was discovered on zzcms 8.3. There is a vulnerability at ...)
- TODO: check
+ NOT-FOR-US: zzcms
CVE-2018-13055
RESERVED
CVE-2018-13053 (The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the ...)
@@ -117,7 +117,7 @@ CVE-2018-13052
CVE-2018-13051
RESERVED
CVE-2018-13050 (A SQL Injection vulnerability exists in Zoho ManageEngine Applications ...)
- TODO: check
+ NOT-FOR-US: Zoho
CVE-2018-13048
RESERVED
CVE-2018-13047
@@ -267,9 +267,11 @@ CVE-2018-12984 (Hycus CMS 1.0.4 allows Authentication Bypass via "'=' 'OR'&
NOT-FOR-US: Hycus CMS
CVE-2018-12983 (A stack-based buffer over-read in the ...)
- libpodofo <unfixed> (low)
+ [stretch] - libpodofo <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1595693
CVE-2018-12982 (Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad() function ...)
- libpodofo <unfixed> (low)
+ [stretch] - libpodofo <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1595689
CVE-2018-12981
RESERVED
@@ -1378,13 +1380,13 @@ CVE-2018-12578 (There is a heap-based buffer overflow in bmp_compress1_row in ..
- sam2p <removed>
NOTE: https://github.com/pts/sam2p/issues/39
CVE-2018-12577 (The Ping and Traceroute features on TP-Link TL-WR841N v13 00000001 ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2018-12576 (TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2018-12575 (On TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 171019 ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2018-12574 (CSRF exists for all actions in the web interface on TP-Link TL-WR841N ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2018-12573
RESERVED
CVE-2018-12572
@@ -1516,9 +1518,9 @@ CVE-2018-12531 (An issue was discovered in MetInfo 6.0.0. install\index.php allo
CVE-2018-12530 (An issue was discovered in MetInfo 6.0.0. admin/app/batch/csvup.php ...)
NOT-FOR-US: MetInfo
CVE-2018-12529 (An issue was discovered on Intex N150 devices. The router firmware ...)
- TODO: check
+ NOT-FOR-US: Intex
CVE-2018-12528 (An issue was discovered on Intex N150 devices. The backup/restore ...)
- TODO: check
+ NOT-FOR-US: Intex
CVE-2018-12527
RESERVED
CVE-2018-12526 (Telesquare SDT-CS3B1 and SDT-CW3B1 devices through 1.2.0 have a default ...)
@@ -1576,7 +1578,7 @@ CVE-2018-12501 (Nagios Fusion before 4.1.4 has XSS, aka TPS#13332-13335. ...)
CVE-2018-12500
RESERVED
CVE-2018-12499 (The Motorola MBP853 firmware does not correctly validate server ...)
- TODO: check
+ NOT-FOR-US: Motoral
CVE-2018-12498 (spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id ...)
NOT-FOR-US: iCMS
CVE-2018-12497
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/57d7d96a1a2ad47bd6d7ffb0f98273da649ca539
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/57d7d96a1a2ad47bd6d7ffb0f98273da649ca539
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180703/ab45c73a/attachment.html>
More information about the debian-security-tracker-commits
mailing list