[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Tue Jul 17 21:10:28 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dc2fc7b0 by security tracker role at 2018-07-17T20:10:21+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,61 @@
+CVE-2018-14366
+	RESERVED
+CVE-2018-14365
+	RESERVED
+CVE-2018-14364
+	RESERVED
+CVE-2018-14363 (An issue was discovered in NeoMutt before 2018-07-16. newsrc.c does not ...)
+	TODO: check
+CVE-2018-14362 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14361 (An issue was discovered in NeoMutt before 2018-07-16. nntp.c proceeds ...)
+	TODO: check
+CVE-2018-14360 (An issue was discovered in NeoMutt before 2018-07-16. nntp_add_group in ...)
+	TODO: check
+CVE-2018-14359 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14358 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14357 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14356 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14355 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14354 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14353 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14352 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14351 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14350 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14349 (An issue was discovered in Mutt before 1.10.1 and NeoMutt before ...)
+	TODO: check
+CVE-2018-14348
+	RESERVED
+CVE-2018-14347 (GNU Libextractor before 1.7 contains an infinite loop vulnerability in ...)
+	TODO: check
+CVE-2018-14346 (GNU Libextractor before 1.7 has a stack-based buffer overflow in ...)
+	TODO: check
+CVE-2018-14345 (An issue was discovered in SDDM through 0.17.0. If configured with ...)
+	TODO: check
+CVE-2018-14344
+	RESERVED
+CVE-2018-14343
+	RESERVED
+CVE-2018-14342
+	RESERVED
+CVE-2018-14341
+	RESERVED
+CVE-2018-14340
+	RESERVED
+CVE-2018-14339
+	RESERVED
+CVE-2018-14338 (samples/geotag.cpp in the example code of Exiv2 0.26 misuses the ...)
+	TODO: check
 CVE-2018-14337 (The CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 ...)
 	- mruby <unfixed> (bug #903985)
 	NOTE: https://github.com/mruby/mruby/issues/4062
@@ -1041,18 +1099,18 @@ CVE-2018-13866 (An issue was discovered in the HDF HDF5 1.8.20 library. There is
 	NOTE: https://github.com/TeamSeri0us/pocs/tree/master/hdf5
 CVE-2018-13865 (An issue was discovered in idreamsoft iCMS 7.0.9. XSS exists via the ...)
 	NOT-FOR-US: idreamsoft iCMS
-CVE-2018-13864
-	RESERVED
-CVE-2018-13862
-	RESERVED
-CVE-2018-13861
-	RESERVED
-CVE-2018-13860
-	RESERVED
-CVE-2018-13859
-	RESERVED
-CVE-2018-13858
-	RESERVED
+CVE-2018-13864 (A directory traversal vulnerability has been found in the Assets ...)
+	TODO: check
+CVE-2018-13862 (Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 ...)
+	TODO: check
+CVE-2018-13861 (Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 ...)
+	TODO: check
+CVE-2018-13860 (MusicCenter / Trivum Multiroom Setup Tool V8.76 - SNR 8604.26 - C4 ...)
+	TODO: check
+CVE-2018-13859 (MusicCenter / Trivum Multiroom Setup Tool V8.76 - SNR 8604.26 - C4 ...)
+	TODO: check
+CVE-2018-13858 (MusicCenter / Trivum Multiroom Setup Tool V8.76 - SNR 8604.26 - C4 ...)
+	TODO: check
 CVE-2018-13863 (The MongoDB bson JavaScript module (also known as js-bson) versions ...)
 	- node-bson <itp> (bug #897282)
 	NOTE: https://github.com/mongodb/js-bson/commit/bd61c45157c53a1698ff23770160cf4783e9ea4a
@@ -19724,8 +19782,8 @@ CVE-2018-6683
 	RESERVED
 CVE-2018-6682
 	RESERVED
-CVE-2018-6681
-	RESERVED
+CVE-2018-6681 (Abuse of Functionality vulnerability in the web interface in McAfee ...)
+	TODO: check
 CVE-2018-6680
 	RESERVED
 CVE-2018-6679
@@ -33786,8 +33844,8 @@ CVE-2018-1614 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using ...
 	NOT-FOR-US: IBM
 CVE-2018-1613
 	RESERVED
-CVE-2018-1612
-	RESERVED
+CVE-2018-1612 (IBM QRadar Incident Forensics (IBM QRadar SIEM 7.2, and 7.3) could ...)
+	TODO: check
 CVE-2018-1611
 	RESERVED
 CVE-2018-1610



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dc2fc7b0b5fbc78d51eca9073cb6ea66a37cd2a3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dc2fc7b0b5fbc78d51eca9073cb6ea66a37cd2a3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180717/c4fdb887/attachment.html>

More information about the debian-security-tracker-commits mailing list