[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sun Oct 7 21:10:47 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5b7ece76 by security tracker role at 2018-10-07T20:10:38Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,15 @@
+CVE-2018-18026
+	RESERVED
+CVE-2018-18025 (In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in ...)
+	TODO: check
+CVE-2018-18024 (In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ...)
+	TODO: check
+CVE-2018-18023 (In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in ...)
+	TODO: check
+CVE-2018-18022
+	RESERVED
+CVE-2012-6710 (ext_find_user in eXtplorer through 2.1.2 allows remote attackers to ...)
+	TODO: check
 CVE-2018-18020 (In QPDF 8.2.1, in libqpdf/QPDFWriter.cc, QPDFWriter::unparseObject and ...)
 	- qpdf <unfixed>
 	NOTE: https://github.com/qpdf/qpdf/issues/243
@@ -85,7 +97,7 @@ CVE-2018-17981
 	RESERVED
 CVE-2018-17980
 	RESERVED
-CVE-2015-9273
+CVE-2015-9273 (The wp-slimstat (aka Slimstat Analytics) plugin before 4.1.6.1 for ...)
 	NOT-FOR-US: WordPress plugin wp-slimstat
 CVE-2015-9272 (The videowhisper-video-presentation plugin 3.31.17 for WordPress allows ...)
 	NOT-FOR-US: videowhisper-video-presentation plugin for WordPress
@@ -430,6 +442,7 @@ CVE-2018-17827 (HisiPHP 1.0.8 allows remote attackers to execute arbitrary PHP c
 CVE-2018-17826 (HisiPHP 1.0.8 allows CSRF via admin.php/admin/user/adduser.html to add ...)
 	NOT-FOR-US: HisiPHP
 CVE-2018-17825 (An issue was discovered in AdPlug 2.3.1. There are several double-free ...)
+	{DLA-1534-1}
 	- adplug <unfixed> (bug #910534)
 	[stretch] - adplug <no-dsa> (Minor issue)
 	NOTE: https://github.com/adplug/adplug/issues/67



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b7ece766f8e3c6eb7ee56b2e927ac44e8eefe47

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b7ece766f8e3c6eb7ee56b2e927ac44e8eefe47
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181007/b0676710/attachment.html>

More information about the debian-security-tracker-commits mailing list