[Git][security-tracker-team/security-tracker][master] automatic update

Sun Nov 11 20:10:39 GMT 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0479646f by security tracker role at 2018-11-11T20:10:22Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,27 @@
+CVE-2018-19182
+	RESERVED
+CVE-2018-19181 (statics/ueditor/php/vendor/Local.class.php in YUNUCMS 1.1.5 allows ...)
+	TODO: check
+CVE-2018-19180 (statics/app/index/controller/Install.php in YUNUCMS 1.1.5 (if ...)
+	TODO: check
+CVE-2018-19179
+	RESERVED
+CVE-2018-19178 (In JEESNS 1.3, ...)
+	TODO: check
+CVE-2018-19177
+	RESERVED
+CVE-2018-19176
+	RESERVED
+CVE-2018-19175
+	RESERVED
+CVE-2018-19174
+	RESERVED
+CVE-2018-19173
+	RESERVED
+CVE-2018-19172
+	RESERVED
+CVE-2018-19171
+	RESERVED
 CVE-2018-19170 (In JPress v1.0-rc.5, there is stored XSS via each of the first three ...)
 	NOT-FOR-US: JPress
 CVE-2018-19169
@@ -3018,12 +3042,14 @@ CVE-2018-17965 (ImageMagick 7.0.7-28 has a memory leak vulnerability in WriteSGI
 CVE-2018-17964 (Aryanic HighPortal 12.5 has XSS via an Add Tags action. ...)
 	NOT-FOR-US: Aryanic HighPortal
 CVE-2018-17963 (qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes ...)
+	{DSA-4338-1}
 	- qemu <unfixed> (bug #911469)
 	- qemu-kvm <removed>
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03267.html
 	NOTE: https://www.openwall.com/lists/oss-security/2018/10/08/1
 	NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=1592a9947036d60dde5404204a5d45975133caf5
 CVE-2018-17962 (Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because ...)
+	{DSA-4338-1}
 	- qemu <unfixed> (bug #911468)
 	- qemu-kvm <removed>
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03268.html
@@ -21366,6 +21392,7 @@ CVE-2018-10840 (Linux kernel is vulnerable to a heap-based buffer overflow in th
 	NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=199347
 	NOTE: Fixed by: https://git.kernel.org/linus/8a2b307c21d4b290e3cbe33f768f194286d07c23
 CVE-2018-10839 (Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is ...)
+	{DSA-4338-1}
 	- qemu <unfixed> (bug #910431)
 	- qemu-kvm <removed>
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03273.html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0479646f3529d305289cb1caac431d955588e152

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0479646f3529d305289cb1caac431d955588e152
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181111/d454fb5a/attachment.html>
