[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Thu Mar 8 09:10:29 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4528b518 by security tracker role at 2018-03-08T09:10:23+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,9 @@
+CVE-2018-7756
+ RESERVED
+CVE-2018-7755 (An issue was discovered in the fd_locked_ioctl function in ...)
+ TODO: check
+CVE-2018-7754
+ RESERVED
CVE-2018-7751
RESERVED
CVE-2018-7750
@@ -28,7 +34,7 @@ CVE-2018-1000116 (NET-SNMP version 5.7.2 contains a heap corruption vulnerabilit
NOTE: https://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/
NOTE: Same patch/commit as #788964 (as used for fixing CVE-2015-5621)
NOTE: adresses CVE-2018-1000116 as well.
-CVE-2018-7753 [URI values with character entities not properly sanitized]
+CVE-2018-7753 (An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that ...)
- python-bleach 2.1.3-1 (bug #892252)
[stretch] - python-bleach <not-affected> (Vulnerable code introduced later)
[jessie] - python-bleach <not-affected> (Vulnerable code introduced later)
@@ -109,7 +115,7 @@ CVE-2018-7720 (A cross-site request forgery (CSRF) vulnerability exists in Weste
NOT-FOR-US: Western Bridge Cobub Razor
CVE-2018-7719
RESERVED
-CVE-2018-7752 [Stack buffer overflow in avc_parsers.c]
+CVE-2018-7752 (GPAC through 0.7.1 has a Buffer Overflow in the gf_media_avc_read_sps ...)
- gpac <unfixed>
NOTE: https://github.com/gpac/gpac/issues/997
NOTE: https://github.com/gpac/gpac/commit/90dc7f853d31b0a4e9441cba97feccf36d8b69a4
@@ -229,8 +235,8 @@ CVE-2018-7677
RESERVED
CVE-2018-7676
RESERVED
-CVE-2018-7675
- RESERVED
+CVE-2018-7675 (In NetIQ Sentinel before 8.1.x, a Sentinel user is logged into the ...)
+ TODO: check
CVE-2018-7674
RESERVED
CVE-2018-7673
@@ -713,10 +719,12 @@ CVE-2018-7644 (The XmlSecLibs library as used in the saml2 library in SimpleSAML
NOTE: Fixed by: https://github.com/simplesamlphp/saml2/commit/88a9ae848c4b310b1c53b5700893d890999dd930
CVE-2018-7537 [Denial-of-service possibility in truncatechars_html and truncatewords_html template filters]
RESERVED
+ {DLA-1303-1}
- python-django 1:1.11.11-1
NOTE: https://www.djangoproject.com/weblog/2018/mar/06/security-releases/
CVE-2018-7536 [Denial-of-service possibility in urlize and urlizetrunc template filters]
RESERVED
+ {DLA-1303-1}
- python-django 1:1.11.11-1
NOTE: https://www.djangoproject.com/weblog/2018/mar/06/security-releases/
CVE-2018-7535
@@ -1933,7 +1941,7 @@ CVE-2018-7172 (In index.php in WonderCMS before 2.4.1, remote attackers can dele
NOT-FOR-US: WonderCMS
CVE-2018-7171
RESERVED
-CVE-2018-7170 (nptd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows ...)
+CVE-2018-7170 (ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows ...)
- ntp <unfixed>
- ntpsec <not-affected> (Issue not present)
NOTE: http://www.kb.cert.org/vuls/id/961909
@@ -6009,6 +6017,7 @@ CVE-2018-5734 [A malformed request can trigger an assertion failure in badcache.
NOTE: https://kb.isc.org/article/AA-01562/74/CVE-2018-5734
CVE-2018-5733 [A malicious client can overflow a reference counter in ISC dhcpd]
RESERVED
+ {DSA-4133-1}
- isc-dhcp 4.3.5-3.1 (bug #891785)
NOTE: https://kb.isc.org/article/AA-01567/75/CVE-2018-5733
NOTE: https://bugs.isc.org/Public/Bug/Display.html?id=47140
@@ -6016,6 +6025,7 @@ CVE-2018-5733 [A malicious client can overflow a reference counter in ISC dhcpd]
NOTE: Fixes for 4.3.6p1: https://source.isc.org/cgi-bin/gitweb.cgi?p=dhcp.git;a=commit;h=99a25aedea02d9c259cb8fabf4be700fb32571a3
CVE-2018-5732 [A specially constructed response from a malicious server can cause a buffer overflow in dhclient]
RESERVED
+ {DSA-4133-1}
- isc-dhcp 4.3.5-3.1 (bug #891786)
NOTE: https://kb.isc.org/article/AA-01565/75/CVE-2018-5732
NOTE: https://bugs.isc.org/Public/Bug/Display.html?id=47139
@@ -20867,42 +20877,42 @@ CVE-2018-0226
RESERVED
CVE-2018-0225
RESERVED
-CVE-2018-0224
- RESERVED
-CVE-2018-0223
- RESERVED
+CVE-2018-0224 (A vulnerability in the CLI of the Cisco StarOS operating system for ...)
+ TODO: check
+CVE-2018-0223 (A vulnerability in DesktopServlet in the web-based management interface ...)
+ TODO: check
CVE-2018-0222
RESERVED
-CVE-2018-0221
- RESERVED
-CVE-2018-0220
- RESERVED
-CVE-2018-0219
- RESERVED
-CVE-2018-0218
- RESERVED
-CVE-2018-0217
- RESERVED
-CVE-2018-0216
- RESERVED
-CVE-2018-0215
- RESERVED
-CVE-2018-0214
- RESERVED
-CVE-2018-0213
- RESERVED
-CVE-2018-0212
- RESERVED
-CVE-2018-0211
- RESERVED
-CVE-2018-0210
- RESERVED
-CVE-2018-0209
- RESERVED
-CVE-2018-0208
- RESERVED
-CVE-2018-0207
- RESERVED
+CVE-2018-0221 (A vulnerability in specific CLI commands for the Cisco Identity ...)
+ TODO: check
+CVE-2018-0220 (A vulnerability in the web-based management interface of Cisco ...)
+ TODO: check
+CVE-2018-0219 (A vulnerability in the web-based management interface of Cisco Unified ...)
+ TODO: check
+CVE-2018-0218 (A vulnerability in the web-based user interface of the Cisco Secure ...)
+ TODO: check
+CVE-2018-0217 (A vulnerability in the CLI of the Cisco StarOS operating system for ...)
+ TODO: check
+CVE-2018-0216 (A vulnerability in the web-based management interface of Cisco Identity ...)
+ TODO: check
+CVE-2018-0215 (A vulnerability in the web-based management interface of Cisco Identity ...)
+ TODO: check
+CVE-2018-0214 (A vulnerability in certain CLI commands of Cisco Identity Services ...)
+ TODO: check
+CVE-2018-0213 (A vulnerability in the credential reset functionality for Cisco ...)
+ TODO: check
+CVE-2018-0212 (A vulnerability in the web-based management interface of Cisco Identity ...)
+ TODO: check
+CVE-2018-0211 (A vulnerability in specific CLI commands for the Cisco Identity ...)
+ TODO: check
+CVE-2018-0210 (A vulnerability in the web-based management interface of Cisco Data ...)
+ TODO: check
+CVE-2018-0209 (A vulnerability in the Simple Network Management Protocol (SNMP) ...)
+ TODO: check
+CVE-2018-0208 (A vulnerability in the web-based management interface of the (cloud ...)
+ TODO: check
+CVE-2018-0207 (A vulnerability in the web-based user interface of the Cisco Secure ...)
+ TODO: check
CVE-2018-0206 (A vulnerability in the web-based management interface of Cisco Unified ...)
NOT-FOR-US: Cisco
CVE-2018-0205 (A vulnerability in the User Provisioning tab in the Cisco Prime ...)
@@ -21031,20 +21041,20 @@ CVE-2018-0149
RESERVED
CVE-2018-0148 (A vulnerability in the web-based management interface of Cisco UCS ...)
NOT-FOR-US: Cisco
-CVE-2018-0147
- RESERVED
+CVE-2018-0147 (A vulnerability in Java deserialization used by Cisco Secure Access ...)
+ TODO: check
CVE-2018-0146 (A vulnerability in the Cisco Data Center Analytics Framework ...)
NOT-FOR-US: Cisco
CVE-2018-0145 (A vulnerability in the web-based management interface of the Cisco Data ...)
NOT-FOR-US: Cisco
-CVE-2018-0144
- RESERVED
+CVE-2018-0144 (A vulnerability in the web-based management interface of Cisco Prime ...)
+ TODO: check
CVE-2018-0143
RESERVED
CVE-2018-0142
RESERVED
-CVE-2018-0141
- RESERVED
+CVE-2018-0141 (A vulnerability in Cisco Prime Collaboration Provisioning (PCP) ...)
+ TODO: check
CVE-2018-0140 (A vulnerability in the spam quarantine of Cisco Email Security ...)
NOT-FOR-US: Cisco
CVE-2018-0139 (A vulnerability in the Interactive Voice Response (IVR) management ...)
@@ -21151,8 +21161,8 @@ CVE-2018-0089 (A vulnerability in the Policy and Charging Rules Function (PCRF)
NOT-FOR-US: Cisco
CVE-2018-0088 (A vulnerability in one of the diagnostic test CLI commands on Cisco ...)
NOT-FOR-US: Cisco
-CVE-2018-0087
- RESERVED
+CVE-2018-0087 (A vulnerability in the FTP server of the Cisco Web Security Appliance ...)
+ TODO: check
CVE-2018-0086 (A vulnerability in the application server of the Cisco Unified Customer ...)
NOT-FOR-US: Cisco
CVE-2017-16994 (The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel ...)
@@ -36007,8 +36017,7 @@ CVE-2017-12176 (xorg-x11-server before 1.19.5 was missing extra length validatio
CVE-2017-12175
RESERVED
NOT-FOR-US: Red Hat Satellite
-CVE-2017-12174
- RESERVED
+CVE-2017-12174 (It was found that when Artemis and HornetQ before 2.4.0 are configured ...)
NOT-FOR-US: Artemis and HornetQ
CVE-2017-12173 [unsanitized input when searching in local cache database]
RESERVED
@@ -54390,7 +54399,7 @@ CVE-2017-6282 (NVIDIA Tegra kernel driver contains a vulnerability in NVMAP wher
TODO: check
CVE-2017-6281
RESERVED
-CVE-2017-6280 (NIVIDIA driver contains a possible out-of-bounds read vulnerability ...)
+CVE-2017-6280 (NVIDIA driver contains a possible out-of-bounds read vulnerability due ...)
NOT-FOR-US: Nvidia component for Android
CVE-2017-6279 (NVIDIA libnvmmlite_audio.so contains an elevation of privilege ...)
NOT-FOR-US: Nvidia component for Android
@@ -64048,6 +64057,7 @@ CVE-2017-3145 [Improper fetch cleanup sequencing in the resolver can cause named
NOTE: Fixed by (9.10.6-P1): https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=commitdiff;h=55baf7d7e25c0e6444cb7e415f14d9e0819b5508
CVE-2017-3144 [dhcp: omapi code doesn't free socket descriptors when empty message is received allowing denial-of-service]
RESERVED
+ {DSA-4133-1}
- isc-dhcp 4.3.5-3.1 (bug #887413)
[wheezy] - isc-dhcp <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1522918
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4528b518d2b60deb1e8afb6538cd57e664038de5
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4528b518d2b60deb1e8afb6538cd57e664038de5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180308/b599863f/attachment.html>
More information about the Secure-testing-commits
mailing list