[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Thu Nov 29 08:10:24 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
635d7fec by security tracker role at 2018-11-29T08:10:15Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,37 @@
+CVE-2018-19666 (The agent in OSSEC through 3.1.0 on Windows allows local users to gain ...)
+	TODO: check
+CVE-2018-19665
+	RESERVED
+CVE-2018-19664 (libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the ...)
+	TODO: check
+CVE-2018-19663
+	RESERVED
+CVE-2018-19662 (An issue was discovered in libsndfile 1.0.28. There is a buffer ...)
+	TODO: check
+CVE-2018-19661 (An issue was discovered in libsndfile 1.0.28. There is a buffer ...)
+	TODO: check
+CVE-2018-19660
+	RESERVED
+CVE-2018-19659
+	RESERVED
+CVE-2018-19658
+	RESERVED
+CVE-2018-19657
+	RESERVED
+CVE-2018-19656
+	RESERVED
+CVE-2018-19655 (A stack-based buffer overflow in the find_green() function of dcraw ...)
+	TODO: check
+CVE-2018-19654 (An issue was discovered in Sales & Company Management System (SCMS) ...)
+	TODO: check
+CVE-2018-19653
+	RESERVED
+CVE-2018-19652
+	RESERVED
+CVE-2018-19651 (admin/functions/remote.php in Interspire Email Marketer through 6.1.6 ...)
+	TODO: check
+CVE-2018-19650
+	RESERVED
 CVE-2019-1564
 	RESERVED
 CVE-2019-1563
@@ -100,20 +134,20 @@ CVE-2018-19630 (cgi_handle_request in uhttpd in OpenWrt through 18.06.1 and LEDE
 	TODO: check
 CVE-2018-19629
 	RESERVED
-CVE-2018-19628
-	RESERVED
-CVE-2018-19627
-	RESERVED
-CVE-2018-19626
-	RESERVED
-CVE-2018-19625
-	RESERVED
-CVE-2018-19624
-	RESERVED
-CVE-2018-19623
-	RESERVED
-CVE-2018-19622
-	RESERVED
+CVE-2018-19628 (In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This ...)
+	TODO: check
+CVE-2018-19627 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file ...)
+	TODO: check
+CVE-2018-19626 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector ...)
+	TODO: check
+CVE-2018-19625 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine ...)
+	TODO: check
+CVE-2018-19624 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector ...)
+	TODO: check
+CVE-2018-19623 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector ...)
+	TODO: check
+CVE-2018-19622 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector ...)
+	TODO: check
 CVE-2018-19621 (server/index.php?s=/api/teamMember/save in ShowDoc 2.4.2 has a CSRF ...)
 	NOT-FOR-US: ShowDoc
 CVE-2018-19620 (ShowDoc 2.4.1 allows remote attackers to edit other users' notes by ...)
@@ -3350,8 +3384,8 @@ CVE-2018-19372
 	RESERVED
 CVE-2018-19371
 	RESERVED
-CVE-2018-19370
-	RESERVED
+CVE-2018-19370 (A Race condition vulnerability in unzip_file in ...)
+	TODO: check
 CVE-2018-19369
 	RESERVED
 CVE-2018-19368
@@ -6630,8 +6664,8 @@ CVE-2018-18205
 	RESERVED
 CVE-2018-18204
 	RESERVED
-CVE-2018-18203
-	RESERVED
+CVE-2018-18203 (A vulnerability in the update mechanism of Subaru StarLink Harman head ...)
+	TODO: check
 CVE-2018-18202 (The QLogic 4Gb Fibre Channel 5.5.2.6.0 and 4/8Gb SAN 7.10.1.20.0 ...)
 	NOT-FOR-US: IBM
 CVE-2018-18201 (qibosoft V7.0 allows CSRF via ...)
@@ -7314,8 +7348,8 @@ CVE-2018-17932
 	RESERVED
 CVE-2018-17931 (If an attacker has physical access to the VGo Robot (Versions ...)
 	NOT-FOR-US: VGo Robot
-CVE-2018-17930
-	RESERVED
+CVE-2018-17930 (A stack-based buffer overflow vulnerability has been identified in ...)
+	TODO: check
 CVE-2018-17929 (In Delta Industrial Automation TPEditor, TPEditor Versions 1.90 and ...)
 	NOT-FOR-US: TPEditor
 CVE-2018-17928



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/635d7fec0d0241b25fa59d81f7185f57ce5b5313

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/635d7fec0d0241b25fa59d81f7185f57ce5b5313
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181129/770e9126/attachment.html>

More information about the debian-security-tracker-commits mailing list