[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Tue Oct 16 21:11:22 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c4314720 by security tracker role at 2018-10-16T20:11:11Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,35 @@
+CVE-2018-18399
+ RESERVED
+CVE-2018-18398
+ RESERVED
+CVE-2018-18397
+ RESERVED
+CVE-2018-18396
+ RESERVED
+CVE-2018-18395
+ RESERVED
+CVE-2018-18394
+ RESERVED
+CVE-2018-18393
+ RESERVED
+CVE-2018-18392
+ RESERVED
+CVE-2018-18391
+ RESERVED
+CVE-2018-18390
+ RESERVED
+CVE-2018-18389 (Due to incorrect access control in Neo4j Enterprise Database Server ...)
+ TODO: check
+CVE-2018-18388
+ RESERVED
+CVE-2018-18387
+ RESERVED
+CVE-2018-18386
+ RESERVED
+CVE-2018-18385 (Asciidoctor v1.5.7.1 allows remote attackers to cause a denial of ...)
+ TODO: check
+CVE-2018-18384 (Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive ...)
+ TODO: check
CVE-2018-18383
RESERVED
CVE-2018-18382 (Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php ...)
@@ -12157,8 +12189,8 @@ CVE-2018-13401
RESERVED
CVE-2018-13400
RESERVED
-CVE-2018-13399
- RESERVED
+CVE-2018-13399 (The Microsoft Windows Installer for Atlassian Fisheye and Crucible ...)
+ TODO: check
CVE-2018-13398 (The administrative smart-commits resource in Atlassian Fisheye and ...)
NOT-FOR-US: Atlassian Fisheye and Crucible
CVE-2018-13397
@@ -16377,6 +16409,7 @@ CVE-2018-11799
CVE-2018-11798
RESERVED
CVE-2018-11797 (In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11, a carefully ...)
+ {DLA-1547-1}
- libpdfbox-java 1:1.8.16-1 (bug #910390)
[stretch] - libpdfbox-java <no-dsa> (Minor issue)
- libpdfbox2-java 2.0.12-1 (bug #910391)
@@ -19187,8 +19220,7 @@ CVE-2018-10840 (Linux kernel is vulnerable to a heap-based buffer overflow in th
[wheezy] - linux <not-affected> (Vulnerable code not present)
NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=199347
NOTE: Fixed by: https://git.kernel.org/linus/8a2b307c21d4b290e3cbe33f768f194286d07c23
-CVE-2018-10839 [ne2000: integer overflow leads to buffer overflow issue]
- RESERVED
+CVE-2018-10839 (Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is ...)
- qemu <unfixed> (bug #910431)
- qemu-kvm <removed>
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03273.html
@@ -44454,8 +44486,8 @@ CVE-2018-1779
RESERVED
CVE-2018-1778
RESERVED
-CVE-2018-1777
- RESERVED
+CVE-2018-1777 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable ...)
+ TODO: check
CVE-2018-1776
RESERVED
CVE-2018-1775
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c43147209ecda9d67cb9f95c07d17b00475e8e4a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c43147209ecda9d67cb9f95c07d17b00475e8e4a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181016/28989cf9/attachment.html>
More information about the debian-security-tracker-commits
mailing list