[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Thu Jun 7 21:10:27 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d29c9b3c by security tracker role at 2018-06-07T20:10:20+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,453 @@
+CVE-2018-12040
+ RESERVED
+CVE-2018-12039 (joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary ...)
+ TODO: check
+CVE-2018-12038
+ RESERVED
+CVE-2018-12037
+ RESERVED
+CVE-2018-12036 (OWASP Dependency-Check before 3.2.0 allows attackers to write to ...)
+ TODO: check
+CVE-2018-12035
+ RESERVED
+CVE-2018-12034
+ RESERVED
+CVE-2018-12033
+ RESERVED
+CVE-2018-12032
+ RESERVED
+CVE-2018-12031 (Local file inclusion in Eaton Intelligent Power Manager v1.6 allows an ...)
+ TODO: check
+CVE-2018-12030
+ RESERVED
+CVE-2018-12029
+ RESERVED
+CVE-2018-12028
+ RESERVED
+CVE-2018-12027
+ RESERVED
+CVE-2018-12026
+ RESERVED
+CVE-2018-12025
+ RESERVED
+CVE-2018-12024
+ RESERVED
+CVE-2018-12023
+ RESERVED
+CVE-2018-12022
+ RESERVED
+CVE-2018-12021
+ RESERVED
+CVE-2018-12020
+ RESERVED
+CVE-2018-12019
+ RESERVED
+CVE-2018-12018
+ RESERVED
+CVE-2018-12017
+ RESERVED
+CVE-2018-12016 (libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows ...)
+ TODO: check
+CVE-2018-12014
+ RESERVED
+CVE-2018-12013
+ RESERVED
+CVE-2018-12012
+ RESERVED
+CVE-2018-12011
+ RESERVED
+CVE-2018-12010
+ RESERVED
+CVE-2018-12009
+ RESERVED
+CVE-2018-12008
+ RESERVED
+CVE-2018-12007
+ RESERVED
+CVE-2018-12006
+ RESERVED
+CVE-2018-12005
+ RESERVED
+CVE-2018-12004
+ RESERVED
+CVE-2018-12003
+ RESERVED
+CVE-2018-12002
+ RESERVED
+CVE-2018-12001
+ RESERVED
+CVE-2018-12000
+ RESERVED
+CVE-2018-11999
+ RESERVED
+CVE-2018-11998
+ RESERVED
+CVE-2018-11997
+ RESERVED
+CVE-2018-11996
+ RESERVED
+CVE-2018-11995
+ RESERVED
+CVE-2018-11994
+ RESERVED
+CVE-2018-11993
+ RESERVED
+CVE-2018-11992
+ RESERVED
+CVE-2018-11991
+ RESERVED
+CVE-2018-11990
+ RESERVED
+CVE-2018-11989
+ RESERVED
+CVE-2018-11988
+ RESERVED
+CVE-2018-11987
+ RESERVED
+CVE-2018-11986
+ RESERVED
+CVE-2018-11985
+ RESERVED
+CVE-2018-11984
+ RESERVED
+CVE-2018-11983
+ RESERVED
+CVE-2018-11982
+ RESERVED
+CVE-2018-11981
+ RESERVED
+CVE-2018-11980
+ RESERVED
+CVE-2018-11979
+ RESERVED
+CVE-2018-11978
+ RESERVED
+CVE-2018-11977
+ RESERVED
+CVE-2018-11976
+ RESERVED
+CVE-2018-11975
+ RESERVED
+CVE-2018-11974
+ RESERVED
+CVE-2018-11973
+ RESERVED
+CVE-2018-11972
+ RESERVED
+CVE-2018-11971
+ RESERVED
+CVE-2018-11970
+ RESERVED
+CVE-2018-11969
+ RESERVED
+CVE-2018-11968
+ RESERVED
+CVE-2018-11967
+ RESERVED
+CVE-2018-11966
+ RESERVED
+CVE-2018-11965
+ RESERVED
+CVE-2018-11964
+ RESERVED
+CVE-2018-11963
+ RESERVED
+CVE-2018-11962
+ RESERVED
+CVE-2018-11961
+ RESERVED
+CVE-2018-11960
+ RESERVED
+CVE-2018-11959
+ RESERVED
+CVE-2018-11958
+ RESERVED
+CVE-2018-11957
+ RESERVED
+CVE-2018-11956
+ RESERVED
+CVE-2018-11955
+ RESERVED
+CVE-2018-11954
+ RESERVED
+CVE-2018-11953
+ RESERVED
+CVE-2018-11952
+ RESERVED
+CVE-2018-11951
+ RESERVED
+CVE-2018-11950
+ RESERVED
+CVE-2018-11949
+ RESERVED
+CVE-2018-11948
+ RESERVED
+CVE-2018-11947
+ RESERVED
+CVE-2018-11946
+ RESERVED
+CVE-2018-11945
+ RESERVED
+CVE-2018-11944
+ RESERVED
+CVE-2018-11943
+ RESERVED
+CVE-2018-11942
+ RESERVED
+CVE-2018-11941
+ RESERVED
+CVE-2018-11940
+ RESERVED
+CVE-2018-11939
+ RESERVED
+CVE-2018-11938
+ RESERVED
+CVE-2018-11937
+ RESERVED
+CVE-2018-11936
+ RESERVED
+CVE-2018-11935
+ RESERVED
+CVE-2018-11934
+ RESERVED
+CVE-2018-11933
+ RESERVED
+CVE-2018-11932
+ RESERVED
+CVE-2018-11931
+ RESERVED
+CVE-2018-11930
+ RESERVED
+CVE-2018-11929
+ RESERVED
+CVE-2018-11928
+ RESERVED
+CVE-2018-11927
+ RESERVED
+CVE-2018-11926
+ RESERVED
+CVE-2018-11925
+ RESERVED
+CVE-2018-11924
+ RESERVED
+CVE-2018-11923
+ RESERVED
+CVE-2018-11922
+ RESERVED
+CVE-2018-11921
+ RESERVED
+CVE-2018-11920
+ RESERVED
+CVE-2018-11919
+ RESERVED
+CVE-2018-11918
+ RESERVED
+CVE-2018-11917
+ RESERVED
+CVE-2018-11916
+ RESERVED
+CVE-2018-11915
+ RESERVED
+CVE-2018-11914
+ RESERVED
+CVE-2018-11913
+ RESERVED
+CVE-2018-11912
+ RESERVED
+CVE-2018-11911
+ RESERVED
+CVE-2018-11910
+ RESERVED
+CVE-2018-11909
+ RESERVED
+CVE-2018-11908
+ RESERVED
+CVE-2018-11907
+ RESERVED
+CVE-2018-11906
+ RESERVED
+CVE-2018-11905
+ RESERVED
+CVE-2018-11904
+ RESERVED
+CVE-2018-11903
+ RESERVED
+CVE-2018-11902
+ RESERVED
+CVE-2018-11901
+ RESERVED
+CVE-2018-11900
+ RESERVED
+CVE-2018-11899
+ RESERVED
+CVE-2018-11898
+ RESERVED
+CVE-2018-11897
+ RESERVED
+CVE-2018-11896
+ RESERVED
+CVE-2018-11895
+ RESERVED
+CVE-2018-11894
+ RESERVED
+CVE-2018-11893
+ RESERVED
+CVE-2018-11892
+ RESERVED
+CVE-2018-11891
+ RESERVED
+CVE-2018-11890
+ RESERVED
+CVE-2018-11889
+ RESERVED
+CVE-2018-11888
+ RESERVED
+CVE-2018-11887
+ RESERVED
+CVE-2018-11886
+ RESERVED
+CVE-2018-11885
+ RESERVED
+CVE-2018-11884
+ RESERVED
+CVE-2018-11883
+ RESERVED
+CVE-2018-11882
+ RESERVED
+CVE-2018-11881
+ RESERVED
+CVE-2018-11880
+ RESERVED
+CVE-2018-11879
+ RESERVED
+CVE-2018-11878
+ RESERVED
+CVE-2018-11877
+ RESERVED
+CVE-2018-11876
+ RESERVED
+CVE-2018-11875
+ RESERVED
+CVE-2018-11874
+ RESERVED
+CVE-2018-11873
+ RESERVED
+CVE-2018-11872
+ RESERVED
+CVE-2018-11871
+ RESERVED
+CVE-2018-11870
+ RESERVED
+CVE-2018-11869
+ RESERVED
+CVE-2018-11868
+ RESERVED
+CVE-2018-11867
+ RESERVED
+CVE-2018-11866
+ RESERVED
+CVE-2018-11865
+ RESERVED
+CVE-2018-11864
+ RESERVED
+CVE-2018-11863
+ RESERVED
+CVE-2018-11862
+ RESERVED
+CVE-2018-11861
+ RESERVED
+CVE-2018-11860
+ RESERVED
+CVE-2018-11859
+ RESERVED
+CVE-2018-11858
+ RESERVED
+CVE-2018-11857
+ RESERVED
+CVE-2018-11856
+ RESERVED
+CVE-2018-11855
+ RESERVED
+CVE-2018-11854
+ RESERVED
+CVE-2018-11853
+ RESERVED
+CVE-2018-11852
+ RESERVED
+CVE-2018-11851
+ RESERVED
+CVE-2018-11850
+ RESERVED
+CVE-2018-11849
+ RESERVED
+CVE-2018-11848
+ RESERVED
+CVE-2018-11847
+ RESERVED
+CVE-2018-11846
+ RESERVED
+CVE-2018-11845
+ RESERVED
+CVE-2018-11844
+ RESERVED
+CVE-2018-11843
+ RESERVED
+CVE-2018-11842
+ RESERVED
+CVE-2018-11841
+ RESERVED
+CVE-2018-11840
+ RESERVED
+CVE-2018-11839
+ RESERVED
+CVE-2018-11838
+ RESERVED
+CVE-2018-11837
+ RESERVED
+CVE-2018-11836
+ RESERVED
+CVE-2018-11835
+ RESERVED
+CVE-2018-11834
+ RESERVED
+CVE-2018-11833
+ RESERVED
+CVE-2018-11832
+ RESERVED
+CVE-2018-11831
+ RESERVED
+CVE-2018-11830
+ RESERVED
+CVE-2018-11829
+ RESERVED
+CVE-2018-11828
+ RESERVED
+CVE-2018-11827
+ RESERVED
+CVE-2018-11826
+ RESERVED
+CVE-2018-11825
+ RESERVED
+CVE-2018-11824
+ RESERVED
+CVE-2018-11823
+ RESERVED
+CVE-2018-11822
+ RESERVED
+CVE-2018-11821
+ RESERVED
+CVE-2018-11820
+ RESERVED
+CVE-2018-11819
+ RESERVED
+CVE-2018-11818
+ RESERVED
+CVE-2018-11817
+ RESERVED
+CVE-2018-11816
+ RESERVED
+CVE-2018-11815
+ RESERVED
CVE-2018-XXXX [Stack overflow in BGP mask expressions]
- bird 1.6.4-1 (bug #900967)
NOTE: https://gitlab.labs.nic.cz/labs/bird/blob/v1.6.4/NEWS#L11
@@ -48,7 +498,7 @@ CVE-2018-1000194 (A path traversal vulnerability exists in Jenkins 2.120 and old
TODO: check
CVE-2018-1000193 (A improper neutralization of control sequences vulnerability exists in ...)
TODO: check
-CVE-2018-12015 [Archive::Tar: directory traversal]
+CVE-2018-12015 (In Perl through 5.26.2, the Archive::Tar module allows remote attackers ...)
- perl <unfixed> (bug #900834)
CVE-2018-1000192 (A information exposure vulnerability exists in Jenkins 2.120 and ...)
NOT-FOR-US: Jenkins plugin
@@ -10295,10 +10745,10 @@ CVE-2018-7691
RESERVED
CVE-2018-7690
RESERVED
-CVE-2018-7689
- RESERVED
-CVE-2018-7688
- RESERVED
+CVE-2018-7689 (Lack of permission checks in the InitializeDevelPackage function in ...)
+ TODO: check
+CVE-2018-7688 (A missing permission check in the review handling of openSUSE Open ...)
+ TODO: check
CVE-2018-7687 (The Micro Focus Client for OES before version 2 SP4 IR8a has a ...)
NOT-FOR-US: Micro Focus Client for OES
CVE-2018-7686
@@ -13458,8 +13908,8 @@ CVE-2018-6672
RESERVED
CVE-2018-6671
RESERVED
-CVE-2018-6670
- RESERVED
+CVE-2018-6670 (External Entity Attack vulnerability in the ePO extension in McAfee ...)
+ TODO: check
CVE-2018-6669
RESERVED
CVE-2018-6668
@@ -27559,8 +28009,8 @@ CVE-2018-1549
RESERVED
CVE-2018-1548
RESERVED
-CVE-2018-1547
- RESERVED
+CVE-2018-1547 (IBM Robotic Process Automation with Automation Anywhere 10.0 could ...)
+ TODO: check
CVE-2018-1546
RESERVED
CVE-2018-1545
@@ -27625,8 +28075,8 @@ CVE-2018-1516
RESERVED
CVE-2018-1515 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5 ...)
NOT-FOR-US: IBM
-CVE-2018-1514
- RESERVED
+CVE-2018-1514 (IBM Robotic Process Automation with Automation Anywhere 10.0 is ...)
+ TODO: check
CVE-2018-1513
RESERVED
CVE-2018-1512
@@ -32223,8 +32673,8 @@ CVE-2018-0355
RESERVED
CVE-2018-0354
RESERVED
-CVE-2018-0353
- RESERVED
+CVE-2018-0353 (A vulnerability in traffic-monitoring functions in Cisco Web Security ...)
+ TODO: check
CVE-2018-0352
RESERVED
CVE-2018-0351
@@ -32285,22 +32735,22 @@ CVE-2018-0324 (A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure
NOT-FOR-US: Cisco
CVE-2018-0323 (A vulnerability in the web management interface of Cisco Enterprise NFV ...)
NOT-FOR-US: Cisco
-CVE-2018-0322
- RESERVED
-CVE-2018-0321
- RESERVED
-CVE-2018-0320
- RESERVED
-CVE-2018-0319
- RESERVED
-CVE-2018-0318
- RESERVED
-CVE-2018-0317
- RESERVED
-CVE-2018-0316
- RESERVED
-CVE-2018-0315
- RESERVED
+CVE-2018-0322 (A vulnerability in the web management interface of Cisco Prime ...)
+ TODO: check
+CVE-2018-0321 (A vulnerability in Cisco Prime Collaboration Provisioning (PCP) could ...)
+ TODO: check
+CVE-2018-0320 (A vulnerability in the web framework code of Cisco Prime Collaboration ...)
+ TODO: check
+CVE-2018-0319 (A vulnerability in the password recovery function of Cisco Prime ...)
+ TODO: check
+CVE-2018-0318 (A vulnerability in the password reset function of Cisco Prime ...)
+ TODO: check
+CVE-2018-0317 (A vulnerability in the web interface of Cisco Prime Collaboration ...)
+ TODO: check
+CVE-2018-0316 (A vulnerability in the Session Initiation Protocol (SIP) call-handling ...)
+ TODO: check
+CVE-2018-0315 (A vulnerability in the authentication, authorization, and accounting ...)
+ TODO: check
CVE-2018-0314
RESERVED
CVE-2018-0313
@@ -32337,8 +32787,8 @@ CVE-2018-0298
RESERVED
CVE-2018-0297 (A vulnerability in the detection engine of Cisco Firepower Threat ...)
NOT-FOR-US: Cisco
-CVE-2018-0296
- RESERVED
+CVE-2018-0296 (A vulnerability in the web interface of the Cisco Adaptive Security ...)
+ TODO: check
CVE-2018-0295
RESERVED
CVE-2018-0294
@@ -32381,8 +32831,8 @@ CVE-2018-0276 (A vulnerability in Cisco WebEx Connect IM could allow an ...)
NOT-FOR-US: Cisco
CVE-2018-0275 (A vulnerability in the support tunnel feature of Cisco Identity ...)
NOT-FOR-US: Cisco
-CVE-2018-0274
- RESERVED
+CVE-2018-0274 (A vulnerability in the CLI parser of Cisco Network Services ...)
+ TODO: check
CVE-2018-0273 (A vulnerability in the IPsec Manager of Cisco StarOS for Cisco ...)
NOT-FOR-US: Cisco
CVE-2018-0272 (A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco ...)
@@ -32403,8 +32853,8 @@ CVE-2018-0265
RESERVED
CVE-2018-0264 (A vulnerability in the Cisco WebEx Network Recording Player for ...)
NOT-FOR-US: Cisco
-CVE-2018-0263
- RESERVED
+CVE-2018-0263 (A vulnerability in Cisco Meeting Server (CMS) could allow an ...)
+ TODO: check
CVE-2018-0262 (A vulnerability in Cisco Meeting Server could allow an unauthenticated, ...)
NOT-FOR-US: Cisco
CVE-2018-0261
@@ -64554,8 +65004,8 @@ CVE-2017-6781 (A vulnerability in the management of shell user accounts for Cisc
NOT-FOR-US: Cisco
CVE-2017-6780 (A vulnerability in the TCP throttling process for Cisco IoT Field ...)
NOT-FOR-US: Cisco
-CVE-2017-6779
- RESERVED
+CVE-2017-6779 (Multiple Cisco products are affected by a vulnerability in local file ...)
+ TODO: check
CVE-2017-6778 (A vulnerability in the Elastic Services Controller (ESC) web interface ...)
NOT-FOR-US: Cisco
CVE-2017-6777 (A vulnerability in the ConfD server of the Cisco Elastic Services ...)
@@ -66114,16 +66564,16 @@ CVE-2017-6296 (NVIDIA TrustZone Software contains a TOCTOU issue in the DRM ...)
NOT-FOR-US: NVIDIA
CVE-2017-6295 (NVIDIA TrustZone Software contains a vulnerability in the Keymaster ...)
NOT-FOR-US: NVIDIA
-CVE-2017-6294
- RESERVED
+CVE-2017-6294 (In Android before the 2018-06-05 security patch level, NVIDIA Tegra X1 ...)
+ TODO: check
CVE-2017-6293 (In Android before the 2018-05-05 security patch level, NVIDIA Tegra X1 ...)
NOT-FOR-US: Nvidia component for Android
-CVE-2017-6292
- RESERVED
+CVE-2017-6292 (In Android before the 2018-06-05 security patch level, NVIDIA TLZ ...)
+ TODO: check
CVE-2017-6291
RESERVED
-CVE-2017-6290
- RESERVED
+CVE-2017-6290 (In Android before the 2018-06-05 security patch level, NVIDIA TLK ...)
+ TODO: check
CVE-2017-6289 (In Android before the 2018-05-05 security patch level, NVIDIA Trusted ...)
NOT-FOR-US: Nvidia component for Android
CVE-2017-6288 (NVIDIA libnvrm contains a possible out of bounds read due to a missing ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d29c9b3c4d9e1b5e852ff70f9a94ae9837ee05f9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d29c9b3c4d9e1b5e852ff70f9a94ae9837ee05f9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180607/140e6f6b/attachment.html>
More information about the debian-security-tracker-commits
mailing list