[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f30de984 by security tracker role at 2018-05-07T08:10:19+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,71 @@
+CVE-2018-10794
+	RESERVED
+CVE-2018-10793
+	RESERVED
+CVE-2018-10792
+	RESERVED
+CVE-2018-10791
+	RESERVED
+CVE-2018-10790
+	RESERVED
+CVE-2018-10789
+	RESERVED
+CVE-2018-10788
+	RESERVED
+CVE-2018-10787
+	RESERVED
+CVE-2018-10786
+	RESERVED
+CVE-2018-10785
+	RESERVED
+CVE-2018-10784
+	RESERVED
+CVE-2018-10783
+	RESERVED
+CVE-2018-10782
+	RESERVED
+CVE-2018-10781
+	RESERVED
+CVE-2018-10780 (Exiv2::Image::byteSwap2 in image.cpp in Exiv2 0.26 has a heap-based ...)
+	TODO: check
+CVE-2018-10779 (TIFFWriteScanline in tif_write.c in LibTIFF 3.8.2 has a heap-based ...)
+	TODO: check
+CVE-2018-10778 (Read access violation in the III_dequantize_sample function in ...)
+	TODO: check
+CVE-2018-10777 (Buffer overflow in the WriteMP3GainAPETag function in apetag.c in ...)
+	TODO: check
+CVE-2018-10776 (The getbits function in mpglibDBL/common.c in mp3gain through 1.5.2-r2 ...)
+	TODO: check
+CVE-2018-10775 (NULL pointer dereference in the _fields_add function in fields.c in ...)
+	TODO: check
+CVE-2018-10774 (Read access violation in the isiin_keyword function in isiin.c in ...)
+	TODO: check
+CVE-2018-10773 (NULL pointer deference in the addsn function in serialno.c in ...)
+	TODO: check
+CVE-2018-10772 (The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows ...)
+	TODO: check
+CVE-2018-10771 (Stack-based buffer overflow in the get_key function in parse.c in ...)
+	TODO: check
+CVE-2018-10770
+	RESERVED
+CVE-2018-10769
+	RESERVED
+CVE-2018-10768 (There is a NULL pointer dereference in the AnnotPath::getCoordsLength ...)
+	TODO: check
+CVE-2018-10767 (There is a stack-based buffer over-read in calling GLib in the function ...)
+	TODO: check
+CVE-2018-10766
+	RESERVED
+CVE-2018-10765
+	RESERVED
+CVE-2018-10764
+	RESERVED
+CVE-2018-10763
+	RESERVED
+CVE-2018-10762
+	RESERVED
+CVE-2018-10761
+	RESERVED
 CVE-2018-10760
 	RESERVED
 CVE-2018-10759
@@ -28453,8 +28521,7 @@ CVE-2018-0496
 	RESERVED
 CVE-2018-0495
 	RESERVED
-CVE-2018-0494 [cookie injection]
-	RESERVED
+CVE-2018-0494 (GNU Wget before 1.19.5 is prone to a cookie injection vulnerability in ...)
 	- wget 1.19.5-1 (bug #898076)
 	NOTE: https://lists.gnu.org/archive/html/bug-wget/2018-05/msg00020.html
 	NOTE: https://savannah.gnu.org/bugs/?53763



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f30de984e612e706b348a30b02d87ee0206733e2

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f30de984e612e706b348a30b02d87ee0206733e2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180507/ddf2776d/attachment.html>