[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Wed Oct 10 21:16:12 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ebb30f7c by security tracker role at 2018-10-10T20:15:59Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,41 @@
+CVE-2018-18222
+ RESERVED
+CVE-2018-18221
+ RESERVED
+CVE-2018-18220
+ RESERVED
+CVE-2018-18219
+ RESERVED
+CVE-2018-18218
+ RESERVED
+CVE-2018-18217
+ RESERVED
+CVE-2018-18216
+ RESERVED
+CVE-2018-18215
+ RESERVED
+CVE-2018-18214
+ RESERVED
+CVE-2018-18213
+ RESERVED
+CVE-2018-18212
+ RESERVED
+CVE-2018-18211 (PbootCMS 1.2.1 has SQL injection via the HTTP POST data to the ...)
+ TODO: check
+CVE-2018-18210 (XSS exists in DiliCMS 2.4.0 via the ...)
+ TODO: check
+CVE-2018-18209 (XSS exists in DiliCMS 2.4.0 via the ...)
+ TODO: check
+CVE-2018-18208 (Virtualmin 6.03 allows XSS via the query string, as demonstrated by the ...)
+ TODO: check
+CVE-2018-18207 (Virtualmin 6.03 allows Frame Injection via the settings-editor_read.cgi ...)
+ TODO: check
+CVE-2018-18206 (In the client in Bytom before 1.0.6, checkTopicRegister in ...)
+ TODO: check
+CVE-2018-18205
+ RESERVED
+CVE-2018-18204
+ RESERVED
CVE-2018-18203
RESERVED
CVE-2018-18202 (The QLogic 4Gb Fibre Channel 5.5.2.6.0 and 4/8Gb SAN 7.10.1.20.0 ...)
@@ -607,6 +645,7 @@ CVE-2018-17944
CVE-2018-17943
RESERVED
CVE-2018-17942 (The convert_to_decimal function in vasnprintf.c in Gnulib before ...)
+ {DLA-1543-1}
- gnulib <unfixed> (bug #910757)
NOTE: pspp affecting bug: https://savannah.gnu.org/bugs/?func=detailitem&item_id=54686
NOTE: https://lists.gnu.org/archive/html/bug-gnulib/2018-09/msg00107.html
@@ -643,8 +682,8 @@ CVE-2018-17927
RESERVED
CVE-2018-17926
RESERVED
-CVE-2018-17925
- RESERVED
+CVE-2018-17925 (Multiple instances of this vulnerability (Unsafe ActiveX Control ...)
+ TODO: check
CVE-2018-17924
RESERVED
CVE-2018-17923
@@ -655,16 +694,16 @@ CVE-2018-17921
RESERVED
CVE-2018-17920
RESERVED
-CVE-2018-17919
- RESERVED
+CVE-2018-17919 (All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud ...)
+ TODO: check
CVE-2018-17918
RESERVED
-CVE-2018-17917
- RESERVED
+CVE-2018-17917 (All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud ...)
+ TODO: check
CVE-2018-17916
RESERVED
-CVE-2018-17915
- RESERVED
+CVE-2018-17915 (All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud ...)
+ TODO: check
CVE-2018-17914
RESERVED
CVE-2018-17913
@@ -1408,6 +1447,7 @@ CVE-2018-17569 (network/nw_buf.c in ViaBTC Exchange Server before 2018-08-21 has
CVE-2018-17568 (utils/ut_rpc.c in ViaBTC Exchange Server before 2018-08-21 has an ...)
NOT-FOR-US: ViaBTC Exchange Server
CVE-2018-17567 (Jekyll through 3.6.2, 3.7.x through 3.7.3, and 3.8.x through 3.8.3 ...)
+ {DLA-1541-1}
- jekyll <unfixed> (bug #909933)
NOTE: https://github.com/jekyll/jekyll/pull/7224
NOTE: https://jekyllrb.com/news/2018/09/19/security-fixes-for-3-6-3-7-3-8/
@@ -6856,8 +6896,8 @@ CVE-2018-15313
RESERVED
CVE-2018-15312
RESERVED
-CVE-2018-15311
- RESERVED
+CVE-2018-15311 (When F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or ...)
+ TODO: check
CVE-2018-15310 (A vulnerability in BIG-IP APM portal access 11.5.1-11.5.7, ...)
NOT-FOR-US: F5 BIG-IP
CVE-2018-XXXX [libykneomgr memory corruption]
@@ -10665,18 +10705,18 @@ CVE-2018-13807 (A vulnerability has been identified in SCALANCE X300 (All versio
NOT-FOR-US: Siemens
CVE-2018-13806 (A vulnerability has been identified in SIEMENS TD Keypad Designer (All ...)
NOT-FOR-US: Siemens
-CVE-2018-13805
- RESERVED
+CVE-2018-13805 (A vulnerability has been identified in SIMATIC ET 200SP Open ...)
+ TODO: check
CVE-2018-13804
RESERVED
CVE-2018-13803
RESERVED
-CVE-2018-13802
- RESERVED
-CVE-2018-13801
- RESERVED
-CVE-2018-13800
- RESERVED
+CVE-2018-13802 (A vulnerability has been identified in ROX II (All versions < ...)
+ TODO: check
+CVE-2018-13801 (A vulnerability has been identified in ROX II (All versions < ...)
+ TODO: check
+CVE-2018-13800 (A vulnerability has been identified in SIMATIC S7-1200 CPU family ...)
+ TODO: check
CVE-2018-13799 (A vulnerability has been identified in SIMATIC WinCC OA V3.14 and ...)
NOT-FOR-US: SIMATIC
CVE-2018-13798
@@ -14812,8 +14852,8 @@ CVE-2018-12195
RESERVED
CVE-2018-12194
RESERVED
-CVE-2018-12193
- RESERVED
+CVE-2018-12193 (Insufficient access control in driver stack for Intel QuickAssist ...)
+ TODO: check
CVE-2018-12192
RESERVED
CVE-2018-12191
@@ -14852,10 +14892,10 @@ CVE-2018-12175 (Default install directory permissions in Intel Distribution for
NOT-FOR-US: Intel Distribution for Python
CVE-2018-12174
RESERVED
-CVE-2018-12173
- RESERVED
-CVE-2018-12172
- RESERVED
+CVE-2018-12173 (Insufficient access protection in firmware in Intel Server Board, ...)
+ TODO: check
+CVE-2018-12172 (Improper password hashing in firmware in Intel Server Board ...)
+ TODO: check
CVE-2018-12171 (Privilege escalation in Intel Baseboard Management Controller (BMC) ...)
NOT-FOR-US: Intel Baseboard Management Controller firmware
CVE-2018-12170
@@ -14876,14 +14916,14 @@ CVE-2018-12163 (A DLL injection vulnerability in the Intel IoT Developers Kit 4.
NOT-FOR-US: Intel IoT Developers Kit
CVE-2018-12162 (Directory permissions in the Intel OpenVINO Toolkit for Windows before ...)
NOT-FOR-US: Intel OpenVINO Toolkit for Windows
-CVE-2018-12161
- RESERVED
+CVE-2018-12161 (Insufficient session validation in the webserver component of the ...)
+ TODO: check
CVE-2018-12160 (DLL injection vulnerability in software installer for Intel Data ...)
NOT-FOR-US: Intel
CVE-2018-12159
RESERVED
-CVE-2018-12158
- RESERVED
+CVE-2018-12158 (Insufficient input validation in BIOS update utility in Intel NUC FW ...)
+ TODO: check
CVE-2018-12157
RESERVED
CVE-2018-12156
@@ -14892,10 +14932,10 @@ CVE-2018-12155
RESERVED
CVE-2018-12154
RESERVED
-CVE-2018-12153
- RESERVED
-CVE-2018-12152
- RESERVED
+CVE-2018-12153 (Denial of Service in Unified Shader Compiler in Intel Graphics Drivers ...)
+ TODO: check
+CVE-2018-12152 (Pointer corruption in Unified Shader Compiler in Intel Graphics ...)
+ TODO: check
CVE-2018-12151 (Buffer overflow in installer for Intel Extreme Tuning Utility before ...)
NOT-FOR-US: Intel
CVE-2018-12150 (Escalation of privilege in Installer for Intel Extreme Tuning Utility ...)
@@ -14936,8 +14976,8 @@ CVE-2018-12133
RESERVED
CVE-2018-12132
RESERVED
-CVE-2018-12131
- RESERVED
+CVE-2018-12131 (Permissions in the driver pack installers for Intel NVMe before ...)
+ TODO: check
CVE-2018-12130
RESERVED
CVE-2018-12129
@@ -24444,20 +24484,20 @@ CVE-2018-8535
RESERVED
CVE-2018-8534
RESERVED
-CVE-2018-8533
- RESERVED
-CVE-2018-8532
- RESERVED
-CVE-2018-8531
- RESERVED
-CVE-2018-8530
- RESERVED
+CVE-2018-8533 (An information disclosure vulnerability exists in Microsoft SQL Server ...)
+ TODO: check
+CVE-2018-8532 (An information disclosure vulnerability exists in Microsoft SQL Server ...)
+ TODO: check
+CVE-2018-8531 (A remote code execution vulnerability exists in the way that Azure IoT ...)
+ TODO: check
+CVE-2018-8530 (A security feature bypass vulnerability exists when Microsoft Edge ...)
+ TODO: check
CVE-2018-8529
RESERVED
CVE-2018-8528
RESERVED
-CVE-2018-8527
- RESERVED
+CVE-2018-8527 (An information disclosure vulnerability exists in Microsoft SQL Server ...)
+ TODO: check
CVE-2018-8526
RESERVED
CVE-2018-8525
@@ -24474,8 +24514,8 @@ CVE-2018-8520
RESERVED
CVE-2018-8519
RESERVED
-CVE-2018-8518
- RESERVED
+CVE-2018-8518 (An elevation of privilege vulnerability exists when Microsoft ...)
+ TODO: check
CVE-2018-8517
RESERVED
CVE-2018-8516
@@ -24484,74 +24524,74 @@ CVE-2018-8515
RESERVED
CVE-2018-8514
RESERVED
-CVE-2018-8513
- RESERVED
-CVE-2018-8512
- RESERVED
-CVE-2018-8511
- RESERVED
-CVE-2018-8510
- RESERVED
-CVE-2018-8509
- RESERVED
+CVE-2018-8513 (A remote code execution vulnerability exists in the way that the ...)
+ TODO: check
+CVE-2018-8512 (A security feature bypass vulnerability exists in Microsoft Edge when ...)
+ TODO: check
+CVE-2018-8511 (A remote code execution vulnerability exists in the way that the ...)
+ TODO: check
+CVE-2018-8510 (A remote code execution vulnerability exists in the way that the ...)
+ TODO: check
+CVE-2018-8509 (A remote code execution vulnerability exists when Microsoft Edge ...)
+ TODO: check
CVE-2018-8508
RESERVED
CVE-2018-8507
RESERVED
-CVE-2018-8506
- RESERVED
-CVE-2018-8505
- RESERVED
-CVE-2018-8504
- RESERVED
-CVE-2018-8503
- RESERVED
-CVE-2018-8502
- RESERVED
-CVE-2018-8501
- RESERVED
-CVE-2018-8500
- RESERVED
+CVE-2018-8506 (An Information Disclosure vulnerability exists in the way that ...)
+ TODO: check
+CVE-2018-8505 (A remote code execution vulnerability exists in the way that the ...)
+ TODO: check
+CVE-2018-8504 (A remote code execution vulnerability exists in Microsoft Word ...)
+ TODO: check
+CVE-2018-8503 (A remote code execution vulnerability exists in the way that the ...)
+ TODO: check
+CVE-2018-8502 (A remote code execution vulnerability exists in Microsoft Excel ...)
+ TODO: check
+CVE-2018-8501 (A remote code execution vulnerability exists in Microsoft PowerPoint ...)
+ TODO: check
+CVE-2018-8500 (A remote code execution vulnerability exists in the way that the ...)
+ TODO: check
CVE-2018-8499
RESERVED
-CVE-2018-8498
- RESERVED
-CVE-2018-8497
- RESERVED
+CVE-2018-8498 (An elevation of privilege vulnerability exists when Microsoft ...)
+ TODO: check
+CVE-2018-8497 (An elevation of privilege vulnerability exists in the way that the ...)
+ TODO: check
CVE-2018-8496
RESERVED
-CVE-2018-8495
- RESERVED
-CVE-2018-8494
- RESERVED
-CVE-2018-8493
- RESERVED
-CVE-2018-8492
- RESERVED
-CVE-2018-8491
- RESERVED
-CVE-2018-8490
- RESERVED
-CVE-2018-8489
- RESERVED
-CVE-2018-8488
- RESERVED
+CVE-2018-8495 (A remote code execution vulnerability exists when Windows Shell ...)
+ TODO: check
+CVE-2018-8494 (A remote code execution vulnerability exists when the Microsoft XML ...)
+ TODO: check
+CVE-2018-8493 (An information disclosure vulnerability exists when the Windows TCP/IP ...)
+ TODO: check
+CVE-2018-8492 (A security feature bypass vulnerability exists in Device Guard that ...)
+ TODO: check
+CVE-2018-8491 (A remote code execution vulnerability exists when Internet Explorer ...)
+ TODO: check
+CVE-2018-8490 (A remote code execution vulnerability exists when Windows Hyper-V on a ...)
+ TODO: check
+CVE-2018-8489 (A remote code execution vulnerability exists when Windows Hyper-V on a ...)
+ TODO: check
+CVE-2018-8488 (An elevation of privilege vulnerability exists when Microsoft ...)
+ TODO: check
CVE-2018-8487
RESERVED
-CVE-2018-8486
- RESERVED
+CVE-2018-8486 (An information disclosure vulnerability exists when DirectX improperly ...)
+ TODO: check
CVE-2018-8485
RESERVED
-CVE-2018-8484
- RESERVED
+CVE-2018-8484 (An elevation of privilege vulnerability exists when the DirectX ...)
+ TODO: check
CVE-2018-8483
RESERVED
-CVE-2018-8482
- RESERVED
-CVE-2018-8481
- RESERVED
-CVE-2018-8480
- RESERVED
+CVE-2018-8482 (An information disclosure vulnerability exists when Windows Media ...)
+ TODO: check
+CVE-2018-8481 (An information disclosure vulnerability exists when Windows Media ...)
+ TODO: check
+CVE-2018-8480 (An elevation of privilege vulnerability exists when Microsoft ...)
+ TODO: check
CVE-2018-8479 (A spoofing vulnerability exists for the Azure IoT Device Provisioning ...)
NOT-FOR-US: Azure
CVE-2018-8478
@@ -24564,10 +24604,10 @@ CVE-2018-8475 (A remote code execution vulnerability exists when Windows does no
NOT-FOR-US: Microsoft
CVE-2018-8474 (A security feature bypass vulnerability exists when Lync for Mac 2011 ...)
NOT-FOR-US: Microsoft
-CVE-2018-8473
- RESERVED
-CVE-2018-8472
- RESERVED
+CVE-2018-8473 (A remote code execution vulnerability exists when Microsoft Edge ...)
+ TODO: check
+CVE-2018-8472 (An information disclosure vulnerability exists in the way that the ...)
+ TODO: check
CVE-2018-8471
RESERVED
CVE-2018-8470 (A security feature bypass vulnerability exists in Internet Explorer ...)
@@ -24590,8 +24630,8 @@ CVE-2018-8462 (An elevation of privilege vulnerability exists when the DirectX .
NOT-FOR-US: Microsoft
CVE-2018-8461 (A remote code execution vulnerability exists when Internet Explorer ...)
NOT-FOR-US: Microsoft
-CVE-2018-8460
- RESERVED
+CVE-2018-8460 (A remote code execution vulnerability exists when Internet Explorer ...)
+ TODO: check
CVE-2018-8459 (A remote code execution vulnerability exists in the way that the ...)
NOT-FOR-US: Microsoft
CVE-2018-8458
@@ -24604,8 +24644,8 @@ CVE-2018-8455 (An elevation of privilege vulnerability exists in the way that th
NOT-FOR-US: Microsoft
CVE-2018-8454
RESERVED
-CVE-2018-8453
- RESERVED
+CVE-2018-8453 (An elevation of privilege vulnerability exists in Windows when the ...)
+ TODO: check
CVE-2018-8452 (An information disclosure vulnerability exists when the scripting ...)
NOT-FOR-US: Microsoft
CVE-2018-8451
@@ -24614,8 +24654,8 @@ CVE-2018-8450
RESERVED
CVE-2018-8449 (A security feature bypass exists when Device Guard incorrectly ...)
NOT-FOR-US: Microsoft
-CVE-2018-8448
- RESERVED
+CVE-2018-8448 (An elevation of privilege vulnerability exists when Microsoft Exchange ...)
+ TODO: check
CVE-2018-8447 (A remote code execution vulnerability exists when Internet Explorer ...)
NOT-FOR-US: Microsoft
CVE-2018-8446 (An information disclosure vulnerability exists when the Windows kernel ...)
@@ -24646,8 +24686,8 @@ CVE-2018-8434 (An information disclosure vulnerability exists when Windows Hyper
NOT-FOR-US: Microsoft
CVE-2018-8433 (An information disclosure vulnerability exists when the Windows ...)
NOT-FOR-US: Microsoft
-CVE-2018-8432
- RESERVED
+CVE-2018-8432 (A remote code execution vulnerability exists in the way that Microsoft ...)
+ TODO: check
CVE-2018-8431 (An elevation of privilege vulnerability exists when Microsoft ...)
NOT-FOR-US: Microsoft
CVE-2018-8430 (A remote code execution vulnerability exists in Microsoft Word if a ...)
@@ -24656,16 +24696,16 @@ CVE-2018-8429 (An information disclosure vulnerability exists when Microsoft Exc
NOT-FOR-US: Microsoft
CVE-2018-8428 (An elevation of privilege vulnerability exists when Microsoft ...)
NOT-FOR-US: Microsoft
-CVE-2018-8427
- RESERVED
+CVE-2018-8427 (An information disclosure vulnerability exists in the way that ...)
+ TODO: check
CVE-2018-8426 (A cross-site-scripting (XSS) vulnerability exists when Microsoft ...)
NOT-FOR-US: Microsoft
CVE-2018-8425 (A spoofing vulnerability exists when Microsoft Edge improperly handles ...)
NOT-FOR-US: Microsoft
CVE-2018-8424 (An information disclosure vulnerability exists when the Windows GDI ...)
NOT-FOR-US: Microsoft
-CVE-2018-8423
- RESERVED
+CVE-2018-8423 (A remote code execution vulnerability exists in the Microsoft JET ...)
+ TODO: check
CVE-2018-8422 (An information disclosure vulnerability exists when the Windows GDI ...)
NOT-FOR-US: Microsoft
CVE-2018-8421 (A remote code execution vulnerability exists when Microsoft .NET ...)
@@ -24684,12 +24724,12 @@ CVE-2018-8415
RESERVED
CVE-2018-8414 (A remote code execution vulnerability exists when the Windows Shell ...)
NOT-FOR-US: Microsoft
-CVE-2018-8413
- RESERVED
+CVE-2018-8413 (A remote code execution vulnerability exists when "Windows Theme API" ...)
+ TODO: check
CVE-2018-8412 (An elevation of privilege vulnerability exists when the Microsoft ...)
NOT-FOR-US: Microsoft
-CVE-2018-8411
- RESERVED
+CVE-2018-8411 (An elevation of privilege vulnerability exists when NTFS improperly ...)
+ TODO: check
CVE-2018-8410 (An elevation of privilege vulnerability exists when the Windows Kernel ...)
NOT-FOR-US: Microsoft
CVE-2018-8409 (A denial of service vulnerability exists when System.IO.Pipelines ...)
@@ -24844,16 +24884,16 @@ CVE-2018-8335 (A denial of service vulnerability exists in the Microsoft Server
NOT-FOR-US: Microsoft
CVE-2018-8334
RESERVED
-CVE-2018-8333
- RESERVED
+CVE-2018-8333 (An Elevation of Privilege vulnerability exists in Filter Manager when ...)
+ TODO: check
CVE-2018-8332 (A remote code execution vulnerability exists when the Windows font ...)
NOT-FOR-US: Microsoft
CVE-2018-8331 (A remote code execution vulnerability exists in Microsoft Excel ...)
NOT-FOR-US: Microsoft
-CVE-2018-8330
- RESERVED
-CVE-2018-8329
- RESERVED
+CVE-2018-8330 (An information disclosure vulnerability exists when the Windows kernel ...)
+ TODO: check
+CVE-2018-8329 (An Elevation of Privilege vulnerability exists in Windows Subsystem ...)
+ TODO: check
CVE-2018-8328
RESERVED
CVE-2018-8327 (A remote code execution vulnerability exists in PowerShell Editor ...)
@@ -24870,8 +24910,8 @@ CVE-2018-8322
RESERVED
CVE-2018-8321
RESERVED
-CVE-2018-8320
- RESERVED
+CVE-2018-8320 (A security feature bypass vulnerability exists in DNS Global Blocklist ...)
+ TODO: check
CVE-2018-8319 (A Security Feature Bypass vulnerability exists in MSR JavaScript ...)
NOT-FOR-US: Microsoft
CVE-2018-8318
@@ -24926,8 +24966,8 @@ CVE-2018-8294 (A remote code execution vulnerability exists in the way that the
NOT-FOR-US: Microsoft
CVE-2018-8293
RESERVED
-CVE-2018-8292
- RESERVED
+CVE-2018-8292 (An information disclosure vulnerability exists in .NET Core when ...)
+ TODO: check
CVE-2018-8291 (A remote code execution vulnerability exists in the way the scripting ...)
NOT-FOR-US: Microsoft
CVE-2018-8290 (A remote code execution vulnerability exists in the way that the ...)
@@ -24980,8 +25020,8 @@ CVE-2018-8267 (A remote code execution vulnerability exists in the way that the
NOT-FOR-US: Microsoft
CVE-2018-8266 (A remote code execution vulnerability exists in the way that the ...)
NOT-FOR-US: Microsoft
-CVE-2018-8265
- RESERVED
+CVE-2018-8265 (A remote code execution vulnerability exists in the way Microsoft ...)
+ TODO: check
CVE-2018-8264
RESERVED
CVE-2018-8263
@@ -25700,8 +25740,7 @@ CVE-2018-8008 (Apache Storm version 1.0.6 and earlier, 1.2.1 and earlier, and ve
CVE-2018-8007 (Apache CouchDB administrative users can configure the database server ...)
- couchdb <removed>
NOTE: https://blog.couchdb.org/2018/07/10/cve-2018-8007/
-CVE-2018-8006 [Cross-site scripting (XSS) via QueueFilter parameter]
- RESERVED
+CVE-2018-8006 (An instance of a cross-site scripting vulnerability was identified to ...)
- activemq <unfixed> (unimportant)
NOTE: https://issues.apache.org/jira/browse/AMQ-6954
NOTE: https://git-wip-us.apache.org/repos/asf?p=activemq.git;h=d25de5d
@@ -50311,48 +50350,48 @@ CVE-2018-0065
RESERVED
CVE-2018-0064
RESERVED
-CVE-2018-0063
- RESERVED
-CVE-2018-0062
- RESERVED
-CVE-2018-0061
- RESERVED
-CVE-2018-0060
- RESERVED
-CVE-2018-0059
- RESERVED
-CVE-2018-0058
- RESERVED
-CVE-2018-0057
- RESERVED
-CVE-2018-0056
- RESERVED
-CVE-2018-0055
- RESERVED
-CVE-2018-0054
- RESERVED
-CVE-2018-0053
- RESERVED
-CVE-2018-0052
- RESERVED
-CVE-2018-0051
- RESERVED
-CVE-2018-0050
- RESERVED
-CVE-2018-0049
- RESERVED
-CVE-2018-0048
- RESERVED
-CVE-2018-0047
- RESERVED
-CVE-2018-0046
- RESERVED
-CVE-2018-0045
- RESERVED
-CVE-2018-0044
- RESERVED
-CVE-2018-0043
- RESERVED
+CVE-2018-0063 (A vulnerability in the IP next-hop index database in Junos OS 17.3R3 ...)
+ TODO: check
+CVE-2018-0062 (A Denial of Service vulnerability in J-Web service may allow a remote ...)
+ TODO: check
+CVE-2018-0061 (A denial of service vulnerability in the telnetd service on Junos OS ...)
+ TODO: check
+CVE-2018-0060 (An improper input validation weakness in the device control daemon ...)
+ TODO: check
+CVE-2018-0059 (A persistent cross-site scripting vulnerability in the graphical user ...)
+ TODO: check
+CVE-2018-0058 (Receipt of a specially crafted IPv6 exception packet may be able to ...)
+ TODO: check
+CVE-2018-0057 (On MX Series and M120/M320 platforms configured in a Broadband Edge ...)
+ TODO: check
+CVE-2018-0056 (If a duplicate MAC address is learned by two different interfaces on ...)
+ TODO: check
+CVE-2018-0055 (Receipt of a specially crafted DHCPv6 message destined to a Junos OS ...)
+ TODO: check
+CVE-2018-0054 (On QFX5000 Series and EX4600 switches, a high rate of Ethernet pause ...)
+ TODO: check
+CVE-2018-0053 (An authentication bypass vulnerability in the initial boot sequence of ...)
+ TODO: check
+CVE-2018-0052 (If RSH service is enabled on Junos OS and if the PAM authentication is ...)
+ TODO: check
+CVE-2018-0051 (A Denial of Service vulnerability in the SIP application layer gateway ...)
+ TODO: check
+CVE-2018-0050 (An error handling vulnerability in Routing Protocols Daemon (RPD) of ...)
+ TODO: check
+CVE-2018-0049 (A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS ...)
+ TODO: check
+CVE-2018-0048 (A vulnerability in the Routing Protocols Daemon (RPD) with Juniper ...)
+ TODO: check
+CVE-2018-0047 (A persistent cross-site scripting vulnerability in the UI framework ...)
+ TODO: check
+CVE-2018-0046 (A reflected cross-site scripting vulnerability in OpenNMS included ...)
+ TODO: check
+CVE-2018-0045 (Receipt of a specific Draft-Rosen MVPN control packet may cause the ...)
+ TODO: check
+CVE-2018-0044 (An insecure SSHD configuration in Juniper Device Manager (JDM) and ...)
+ TODO: check
+CVE-2018-0043 (Receipt of a specific MPLS packet may cause the routing protocol ...)
+ TODO: check
CVE-2018-0042 (Juniper Networks CSO versions prior to 4.0.0 may log passwords in log ...)
NOT-FOR-US: Juniper Networks CSO
CVE-2018-0041 (Juniper Networks Contrail Service Orchestration releases prior to ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ebb30f7cbe5d529c881aea235dbcd7bbdc42bdc0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ebb30f7cbe5d529c881aea235dbcd7bbdc42bdc0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181010/410ea564/attachment.html>
More information about the debian-security-tracker-commits
mailing list