[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat Mar 10 09:10:27 UTC 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
79d4c0a2 by security tracker role at 2018-03-10T09:10:20+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,83 @@
+CVE-2018-8042
+	RESERVED
+CVE-2018-8041
+	RESERVED
+CVE-2018-8040
+	RESERVED
+CVE-2018-8039
+	RESERVED
+CVE-2018-8038
+	RESERVED
+CVE-2018-8037
+	RESERVED
+CVE-2018-8036
+	RESERVED
+CVE-2018-8035
+	RESERVED
+CVE-2018-8034
+	RESERVED
+CVE-2018-8033
+	RESERVED
+CVE-2018-8032
+	RESERVED
+CVE-2018-8031
+	RESERVED
+CVE-2018-8030
+	RESERVED
+CVE-2018-8029
+	RESERVED
+CVE-2018-8028
+	RESERVED
+CVE-2018-8027
+	RESERVED
+CVE-2018-8026
+	RESERVED
+CVE-2018-8025
+	RESERVED
+CVE-2018-8024
+	RESERVED
+CVE-2018-8023
+	RESERVED
+CVE-2018-8022
+	RESERVED
+CVE-2018-8021
+	RESERVED
+CVE-2018-8020
+	RESERVED
+CVE-2018-8019
+	RESERVED
+CVE-2018-8018
+	RESERVED
+CVE-2018-8017
+	RESERVED
+CVE-2018-8016
+	RESERVED
+CVE-2018-8015
+	RESERVED
+CVE-2018-8014
+	RESERVED
+CVE-2018-8013
+	RESERVED
+CVE-2018-8012
+	RESERVED
+CVE-2018-8011
+	RESERVED
+CVE-2018-8010
+	RESERVED
+CVE-2018-8009
+	RESERVED
+CVE-2018-8008
+	RESERVED
+CVE-2018-8007
+	RESERVED
+CVE-2018-8006
+	RESERVED
+CVE-2018-8005
+	RESERVED
+CVE-2018-8004
+	RESERVED
+CVE-2018-8003
+	RESERVED
 CVE-2018-8002 (In PoDoFo 0.9.5, there exists an infinite loop vulnerability in ...)
 	- libpodofo <unfixed> (bug #892520)
 	NOTE: PoC https://bugzilla.redhat.com/show_bug.cgi?id=1548930
@@ -2284,32 +2364,32 @@ CVE-2018-7241
 	RESERVED
 CVE-2018-7240
 	RESERVED
-CVE-2018-7239
-	RESERVED
-CVE-2018-7238
-	RESERVED
-CVE-2018-7237
-	RESERVED
-CVE-2018-7236
-	RESERVED
-CVE-2018-7235
-	RESERVED
-CVE-2018-7234
-	RESERVED
-CVE-2018-7233
-	RESERVED
-CVE-2018-7232
-	RESERVED
-CVE-2018-7231
-	RESERVED
-CVE-2018-7230
-	RESERVED
-CVE-2018-7229
-	RESERVED
-CVE-2018-7228
-	RESERVED
-CVE-2018-7227
-	RESERVED
+CVE-2018-7239 (A DLL hijacking vulnerability exists in Schneider Electric's SoMove ...)
+	TODO: check
+CVE-2018-7238 (A buffer overflow vulnerability exist in the web-based GUI of ...)
+	TODO: check
+CVE-2018-7237 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
+CVE-2018-7236 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
+CVE-2018-7235 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
+CVE-2018-7234 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
+CVE-2018-7233 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
+CVE-2018-7232 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
+CVE-2018-7231 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
+CVE-2018-7230 (A XML external entity (XXE) vulnerability exists in the import.cgi of ...)
+	TODO: check
+CVE-2018-7229 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
+CVE-2018-7228 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
+CVE-2018-7227 (A vulnerability exists in Schneider Electric's Pelco Sarix ...)
+	TODO: check
 CVE-2017-18191 (An issue was discovered in OpenStack Nova 15.x through 15.1.0 and 16.x ...)
 	- nova <unfixed>
 	[stretch] - nova <no-dsa> (Minor issue)
@@ -19061,8 +19141,8 @@ CVE-2017-17284 (Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 .
 	NOT-FOR-US: Huawei
 CVE-2017-17283 (Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 ...)
 	NOT-FOR-US: Huawei
-CVE-2017-17282
-	RESERVED
+CVE-2017-17282 (SCCP (Signalling Connection Control Part) module in Huawei DP300 ...)
+	TODO: check
 CVE-2017-17281 (SFTP module in Huawei DP300 V500R002C00; RP200 V600R006C00; TE30 ...)
 	NOT-FOR-US: Huawei
 CVE-2017-17280 (NFC (Near Field Communication) module in Huawei mobile phones with ...)
@@ -26909,8 +26989,8 @@ CVE-2017-15325
 	RESERVED
 CVE-2017-15324 (Huawei S5700 and S6700 with software of V200R005C00 have a DoS ...)
 	NOT-FOR-US: Huawei
-CVE-2017-15323
-	RESERVED
+CVE-2017-15323 (Huawei DP300 V500R002C00, NIP6600 V500R001C00, V500R001C20, ...)
+	TODO: check
 CVE-2017-15322 (Some Huawei smartphones with software of BGO-L03C158B003CUSTC158D001 ...)
 	NOT-FOR-US: Huawei
 CVE-2017-15321 (Huawei FusionSphere OpenStack V100R006C000SPC102 (NFV) has an ...)
@@ -26925,10 +27005,10 @@ CVE-2017-15317 (AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR12
 	NOT-FOR-US: Huawei
 CVE-2017-15316 (The GPU driver of Mate 9 Huawei smart phones with software before ...)
 	NOT-FOR-US: Huawei
-CVE-2017-15315
-	RESERVED
-CVE-2017-15314
-	RESERVED
+CVE-2017-15315 (Patch module of Huawei NIP6300 V500R001C20SPC100, V500R001C20SPC200, ...)
+	TODO: check
+CVE-2017-15314 (Huawei DP300 V500R002C00, RP200 V500R002C00SPC200, V600R006C00, TE30 ...)
+	TODO: check
 CVE-2017-15313 (Huawei SmartCare V200R003C10 has a CSV injection vulnerability. An ...)
 	NOT-FOR-US: Huawei
 CVE-2017-15312 (Huawei SmartCare V200R003C10 has a stored XSS (cross-site scripting) ...)
@@ -74500,16 +74580,16 @@ CVE-2016-8788
 	REJECTED
 CVE-2016-8787
 	REJECTED
-CVE-2016-8786
-	RESERVED
-CVE-2016-8785
-	RESERVED
-CVE-2016-8784
-	RESERVED
-CVE-2016-8783
-	RESERVED
-CVE-2016-8782
-	RESERVED
+CVE-2016-8786 (Huawei S12700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, ...)
+	TODO: check
+CVE-2016-8785 (Huawei S12700 V200R007C00, V200R008C00, S5700 V200R007C00, S7700 ...)
+	TODO: check
+CVE-2016-8784 (Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, ...)
+	TODO: check
+CVE-2016-8783 (Touchscreen drive in Huawei H60 (Honor 6) Versions earlier than ...)
+	TODO: check
+CVE-2016-8782 (Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, ...)
+	TODO: check
 CVE-2016-8781 (Huawei Secospace USG6300 with software V500R001C20 and ...)
 	NOT-FOR-US: Huawei
 CVE-2016-8780 (Huawei CloudEngine 6800 V100R006C00, CloudEngine 7800 V100R006C00, ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/79d4c0a2a0bc66f070d7c2db0fbae975460ef153

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/79d4c0a2a0bc66f070d7c2db0fbae975460ef153
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180310/24f7f61a/attachment.html>

More information about the Secure-testing-commits mailing list