[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ef7bf3fa by security tracker role at 2018-07-07T08:10:38+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,9 @@
+CVE-2018-13417
+	RESERVED
+CVE-2018-13416
+	RESERVED
+CVE-2018-13415
+	RESERVED
 CVE-2018-13414
 	RESERVED
 CVE-2018-13413
@@ -40331,8 +40337,8 @@ CVE-2016-10547 (Nunjucks is a full featured templating engine for JavaScript. Ve
 	TODO: check
 CVE-2016-10546 (An arbitrary code injection vector was found in PouchDB 6.0.4 and ...)
 	TODO: check
-CVE-2016-10545 (thor ruby gem suffers from a command injection vulnerability due to ...)
-	TODO: check
+CVE-2016-10545
+	REJECTED
 CVE-2016-10544 (uws is a WebSocket server library. By sending a 256mb websocket ...)
 	TODO: check
 CVE-2016-10543 (call is an HTTP router that is primarily used by the hapi framework. ...)
@@ -97177,14 +97183,14 @@ CVE-2016-6543
 	RESERVED
 CVE-2016-6542
 	RESERVED
-CVE-2016-6541
-	RESERVED
-CVE-2016-6540
-	RESERVED
-CVE-2016-6539
-	RESERVED
-CVE-2016-6538
-	RESERVED
+CVE-2016-6541 (TrackR Bravo device allows unauthenticated pairing, which enables ...)
+	TODO: check
+CVE-2016-6540 (Unauthenticated access to the cloud-based service maintained by TrackR ...)
+	TODO: check
+CVE-2016-6539 (The Trackr device ID is constructed of a manufacturer identifier of ...)
+	TODO: check
+CVE-2016-6538 (The TrackR Bravo mobile app stores the account password used to ...)
+	TODO: check
 CVE-2016-6537 (AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store ...)
 	NOT-FOR-US: AVer
 CVE-2016-6536 (The /setup URI on AVer Information EH6108H+ devices with firmware ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ef7bf3fab5b340f503c40779c409c62f7012b297

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ef7bf3fab5b340f503c40779c409c62f7012b297
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180707/faf79a05/attachment.html>