[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
367fba19 by security tracker role at 2018-07-04T20:10:32+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,49 @@
+CVE-2018-13154
+	RESERVED
+CVE-2018-13153
+	RESERVED
+CVE-2018-13152
+	RESERVED
+CVE-2018-13151
+	RESERVED
+CVE-2018-13150
+	RESERVED
+CVE-2018-13149
+	RESERVED
+CVE-2018-13148
+	RESERVED
+CVE-2018-13147
+	RESERVED
+CVE-2018-13146 (The mintToken, buy, and sell functions of a smart contract ...)
+	TODO: check
+CVE-2018-13145 (The mintToken function of a smart contract implementation for ...)
+	TODO: check
+CVE-2018-13144 (The transfer and transferFrom functions of a smart contract ...)
+	TODO: check
+CVE-2018-13143
+	RESERVED
+CVE-2018-13142
+	RESERVED
+CVE-2018-13141
+	RESERVED
+CVE-2018-13140
+	RESERVED
+CVE-2018-13139 (A stack-based buffer overflow in psf_memset in common.c in libsndfile ...)
+	TODO: check
+CVE-2018-13138
+	RESERVED
+CVE-2018-13137
+	RESERVED
+CVE-2018-13136 (The Ultimate Member (aka ultimatemember) plugin before 2.0.18 for ...)
+	TODO: check
+CVE-2018-13135
+	RESERVED
+CVE-2018-13134 (TP-Link Archer C1200 1.13 Build 2018/01/24 rel.52299 EU devices have ...)
+	TODO: check
+CVE-2018-13133 (Golden Frog VyprVPN before 2018-06-21 has a vulnerability associated ...)
+	TODO: check
+CVE-2015-9260
+	RESERVED
 CVE-2018-13132 (Spadeico is a smart contract running on Ethereum. The mint function has ...)
 	NOT-FOR-US: Spadeico
 CVE-2018-13131 (SpadePreSale is a smart contract running on Ethereum. The mint function ...)
@@ -4104,7 +4150,7 @@ CVE-2018-XXXX [gitlab: Removing public deploy keys regression]
 	- gitlab <unfixed> (bug #900522)
 	[stretch] - gitlab <not-affected> (Introduced in 10.1.6)
 	NOTE: https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/
-CVE-2017-0921 [gitlab: Users can update their password without entering current password]
+CVE-2017-0921 (GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and ...)
 	[experimental] - gitlab 10.7.5+dfsg-1
 	- gitlab <unfixed> (bug #900522)
 	NOTE: https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/367fba19f437e8795f02530153bf3f0ccd6604f1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/367fba19f437e8795f02530153bf3f0ccd6604f1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180704/465fa3bc/attachment.html>