[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat Oct 6 09:10:56 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2641bce9 by security tracker role at 2018-10-06T08:10:46Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5329,8 +5329,8 @@ CVE-2018-15765
 	RESERVED
 CVE-2018-15764 (Dell EMC ESRS Policy Manager versions 6.8 and prior contain a remote ...)
 	NOT-FOR-US: EMC ESRS Policy Manager
-CVE-2018-15763
-	RESERVED
+CVE-2018-15763 (Pivotal Container Service, versions prior to 1.2.0, contains an ...)
+	TODO: check
 CVE-2018-15762
 	RESERVED
 CVE-2018-15761
@@ -11876,8 +11876,8 @@ CVE-2018-13049 (The constructSQL function in inc/search.class.php in GLPI 9.2.x
 	NOTE: Only supported behind an authenticated HTTP zone
 CVE-2018-13044
 	RESERVED
-CVE-2018-13042
-	RESERVED
+CVE-2018-13042 (The 1Password application 6.8 for Android is affected by a Denial Of ...)
+	TODO: check
 CVE-2018-13041 (The mint function of a smart contract implementation for Link Platform ...)
 	NOT-FOR-US: Link Platform
 CVE-2018-13040 (OpenSID 18.06-pasca has a CSRF vulnerability. This vulnerability can ...)
@@ -15293,8 +15293,7 @@ CVE-2018-11799
 	RESERVED
 CVE-2018-11798
 	RESERVED
-CVE-2018-11797
-	RESERVED
+CVE-2018-11797 (In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11, a carefully ...)
 	- libpdfbox-java <unfixed> (bug #910390)
 	[stretch] - libpdfbox-java <no-dsa> (Minor issue)
 	- libpdfbox2-java <unfixed> (bug #910391)
@@ -17281,12 +17280,12 @@ CVE-2018-11085
 	REJECTED
 CVE-2018-11084 (Cloud Foundry Garden-runC release, versions prior to 1.16.1, prevents ...)
 	TODO: check
-CVE-2018-11083
-	RESERVED
-CVE-2018-11082
-	RESERVED
-CVE-2018-11081
-	RESERVED
+CVE-2018-11083 (Cloud Foundry BOSH, versions v264 prior to v264.14.0 and v265 prior to ...)
+	TODO: check
+CVE-2018-11082 (Cloud Foundry UAA, all versions prior to 4.20.0 and Cloud Foundry UAA ...)
+	TODO: check
+CVE-2018-11081 (Pivotal Operations Manager, versions 2.2.x prior to 2.2.1, 2.1.x prior ...)
+	TODO: check
 CVE-2018-11080
 	RESERVED
 CVE-2018-11079
@@ -17319,8 +17318,8 @@ CVE-2018-11066
 	RESERVED
 CVE-2018-11065 (The WorkPoint component, which is embedded in all RSA Archer, versions ...)
 	NOT-FOR-US: RSA
-CVE-2018-11064
-	RESERVED
+CVE-2018-11064 (Dell EMC Unity OE versions 4.3.0.x and 4.3.1.x and UnityVSA OE ...)
+	TODO: check
 CVE-2018-11063 (Dell WMS versions 1.1 and prior are impacted by multiple unquoted ...)
 	NOT-FOR-US: Dell WMS
 CVE-2018-11062
@@ -45197,8 +45196,8 @@ CVE-2018-1266 (Cloud Foundry Cloud Controller, versions prior to 1.52.0, contain
 	NOT-FOR-US: Cloud Foundry
 CVE-2018-1265 (Cloud Foundry Diego, release versions prior to 2.8.0, does not ...)
 	NOT-FOR-US: Cloud Foundry
-CVE-2018-1264
-	RESERVED
+CVE-2018-1264 (Cloud Foundry Log Cache, versions prior to 1.1.1, logs its UAA client ...)
+	TODO: check
 CVE-2018-1263 (Addresses partial fix in CVE-2018-1261. Pivotal ...)
 	NOT-FOR-US: Spring-integration-zip
 CVE-2018-1262 (Cloud Foundry Foundation UAA, versions 4.12.X and 4.13.X, introduced a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2641bce9b2d79e9b333b27efdd35253ecd776047

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2641bce9b2d79e9b333b27efdd35253ecd776047
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181006/bc7d0c73/attachment.html>

More information about the debian-security-tracker-commits mailing list