[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Sat Oct 27 09:10:37 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d5427ed8 by security tracker role at 2018-10-27T08:10:29Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,89 @@
+CVE-2018-18698
+ RESERVED
+CVE-2018-18697
+ RESERVED
+CVE-2018-18696
+ RESERVED
+CVE-2018-18695
+ RESERVED
+CVE-2018-18694 (admin/index.php?id=filesmanager in Monstra CMS 3.0.4 allows remote ...)
+ TODO: check
+CVE-2018-18693
+ RESERVED
+CVE-2018-18692
+ RESERVED
+CVE-2018-18691
+ RESERVED
+CVE-2018-18690 (In the Linux kernel before 4.17, a local attacker able to set ...)
+ TODO: check
+CVE-2018-18689
+ RESERVED
+CVE-2018-18688
+ RESERVED
+CVE-2018-18687
+ RESERVED
+CVE-2018-18686
+ RESERVED
+CVE-2018-18685
+ RESERVED
+CVE-2018-18684
+ RESERVED
+CVE-2018-18683
+ RESERVED
+CVE-2018-18682
+ RESERVED
+CVE-2018-18681
+ RESERVED
+CVE-2018-18680
+ RESERVED
+CVE-2018-18679
+ RESERVED
+CVE-2018-18678
+ RESERVED
+CVE-2018-18677
+ RESERVED
+CVE-2018-18676
+ RESERVED
+CVE-2018-18675
+ RESERVED
+CVE-2018-18674
+ RESERVED
+CVE-2018-18673
+ RESERVED
+CVE-2018-18672
+ RESERVED
+CVE-2018-18671
+ RESERVED
+CVE-2018-18670
+ RESERVED
+CVE-2018-18669
+ RESERVED
+CVE-2018-18668
+ RESERVED
+CVE-2018-18667
+ RESERVED
+CVE-2018-18666
+ RESERVED
+CVE-2018-18665
+ RESERVED
+CVE-2018-18664
+ RESERVED
+CVE-2018-18663
+ RESERVED
+CVE-2018-18662 (There is an out-of-bounds read in fz_run_t3_glyph in fitz/font.c in ...)
+ TODO: check
+CVE-2018-18661 (An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer ...)
+ TODO: check
+CVE-2018-18660 (An issue was discovered in Arcserve Unified Data Protection (UDP) ...)
+ TODO: check
+CVE-2018-18659 (An issue was discovered in Arcserve Unified Data Protection (UDP) ...)
+ TODO: check
+CVE-2018-18658 (An issue was discovered in Arcserve Unified Data Protection (UDP) ...)
+ TODO: check
+CVE-2018-18657 (An issue was discovered in Arcserve Unified Data Protection (UDP) ...)
+ TODO: check
+CVE-2018-18656 (The PureVPN client before 6.1.0 for Windows stores Login Credentials ...)
+ TODO: check
CVE-2018-18653 (The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI ...)
- linux <undetermined>
TODO: check, this should be very Ubuntu specific, but it is introduced with the out-of-tree patch from the Lockdown patchset https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/cosmic/commit/?id=03c7de9e956395f3b36f86f89b62780ad9501eef and so possibly affect our kernel as well in some way.
@@ -179,6 +265,7 @@ CVE-2018-18577
CVE-2018-18576
RESERVED
CVE-2018-18585 (chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts ...)
+ {DLA-1555-1}
- libmspack 0.8-1 (bug #911637)
[stretch] - libmspack <no-dsa> (Minor issue)
NOTE: https://github.com/kyz/libmspack/commit/8759da8db6ec9e866cb8eb143313f397f925bb4f
@@ -192,6 +279,7 @@ CVE-2018-18586 (** DISPUTED ** chmextract.c in the chmextract sample program, as
NOTE: never the idea to use it in "productised" binaries, but rather just simple
NOTE: examples of the library use.
CVE-2018-18584 (In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, ...)
+ {DLA-1555-1}
- cabextract 1.4-5
NOTE: Starting with 1.4-5 cabextract uses the mspack system library
- libmspack 0.8-1 (bug #911640)
@@ -7309,22 +7397,19 @@ CVE-2018-15690
RESERVED
CVE-2018-15689
RESERVED
-CVE-2018-15688 [Out-of-bounds heap write in systemd-networkd dhcpv6 option handling]
- RESERVED
+CVE-2018-15688 (A buffer overflow vulnerability in the dhcp6 client of systemd allows ...)
- systemd <unfixed> (bug #912008)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1639067
NOTE: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1795921
NOTE: https://github.com/systemd/systemd/commit/49653743f69658aeeebdb14faf1ab158f1f2cb20
NOTE: systemd-networkd not enabled by default in Debian
-CVE-2018-15687 [chown_one() can dereference symlinks]
- RESERVED
+CVE-2018-15687 (A race condition in chown_one() of systemd allows an attacker to cause ...)
- systemd <unfixed> (bug #912007)
[stretch] - systemd <not-affected> (Vulnerable code introduced later in v235)
NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1689
NOTE: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1796692
NOTE: https://github.com/systemd/systemd/pull/10517
-CVE-2018-15686 [reexec state injection: fgets() on overlong lines leads to line splitting]
- RESERVED
+CVE-2018-15686 (A vulnerability in unit_deserialize of systemd allows an attacker to ...)
- systemd <unfixed> (bug #912005)
NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1687
NOTE: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1796402
@@ -15420,17 +15505,13 @@ CVE-2017-18313 (Under certain mode of operations, HLOS may be able get direct or
NOT-FOR-US: Qualcomm components for Android
CVE-2017-18312 (While accessing SafeSwitch services, third party can manipulate a ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2017-18311
- RESERVED
+CVE-2017-18311 (XPU Master privilege escalation is possible due to improper access ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2017-18310
- RESERVED
+CVE-2017-18310 (ClientEnv exposes services 0-32 to HLOS in Snapdragon Automobile, ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2017-18309
- RESERVED
+CVE-2017-18309 (A micro-core of QMP transportation may cause a macro-core to read from ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2017-18308
- RESERVED
+CVE-2017-18308 (Modem segments are unlocked after authentication, leaving modem ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2017-18307
RESERVED
@@ -16785,11 +16866,9 @@ CVE-2018-11953
CVE-2018-11952
RESERVED
NOT-FOR-US: Qualcomm components for Android
-CVE-2018-11951
- RESERVED
+CVE-2018-11951 (Improper access control in core module lead XBL_LOADER performs the ZI ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2018-11950
- RESERVED
+CVE-2018-11950 (Unapproved TrustZone applications can be loaded and executed in ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-11949
RESERVED
@@ -16986,24 +17065,23 @@ CVE-2018-11856
CVE-2018-11855
RESERVED
NOT-FOR-US: Qualcomm components for Android
-CVE-2018-11854
- RESERVED
-CVE-2018-11853
- RESERVED
+CVE-2018-11854 (Lack of check of valid length of input parameter may cause buffer ...)
+ TODO: check
+CVE-2018-11853 (Lack of check on out of range for channels When processing channel ...)
+ TODO: check
CVE-2018-11852 (In all android releases (Android for MSM, Firefox OS for MSM, QRD ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-11851 (In all android releases (Android for MSM, Firefox OS for MSM, QRD ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2018-11850
- RESERVED
-CVE-2018-11849
- RESERVED
+CVE-2018-11850 (Lack of check on remaining length parameter When processing scan start ...)
+ TODO: check
+CVE-2018-11849 (Lack of check on out of range of bssid parameter When processing scan ...)
+ TODO: check
CVE-2018-11848
RESERVED
CVE-2018-11847
RESERVED
-CVE-2018-11846
- RESERVED
+CVE-2018-11846 (The use of a non-time-constant memory comparison operation can lead to ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-11845
RESERVED
@@ -17039,23 +17117,22 @@ CVE-2018-11830
RESERVED
CVE-2018-11829
RESERVED
-CVE-2018-11828
- RESERVED
+CVE-2018-11828 (When FW tries to get random mac address generated from new SW RNG and ...)
+ TODO: check
CVE-2018-11827 (In all android releases (Android for MSM, Firefox OS for MSM, QRD ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-11826 (In all android releases (Android for MSM, Firefox OS for MSM, QRD ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-11825
RESERVED
-CVE-2018-11824
- RESERVED
+CVE-2018-11824 (A stack-based buffer overflow can occur in a firmware routine in ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-11823
RESERVED
-CVE-2018-11822
- RESERVED
-CVE-2018-11821
- RESERVED
+CVE-2018-11822 (A possible integer overflow may happen in WLAN during memory ...)
+ TODO: check
+CVE-2018-11821 (Possible integer overflow may happen in WLAN during memory allocation ...)
+ TODO: check
CVE-2018-11820
RESERVED
CVE-2018-11819
@@ -18575,8 +18652,7 @@ CVE-2018-11307
RESERVED
CVE-2018-11306
RESERVED
-CVE-2018-11305
- RESERVED
+CVE-2018-11305 (When a series of FDAL messages are sent to the modem, a Use After Free ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-11304 (Possible buffer overflow in msm_adsp_stream_callback_put due to lack ...)
NOT-FOR-US: Qualcomm components for Android
@@ -31440,8 +31516,7 @@ CVE-2017-18126 (In Android before security patch level 2018-04-05 on Qualcomm ..
NOT-FOR-US: Qualcomm components for Android
CVE-2017-18125 (In Android before security patch level 2018-04-05 on Qualcomm ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2017-18124
- RESERVED
+CVE-2017-18124 (During secure boot, addition is performed on uint8 ptrs which led to ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-6622 (An issue was discovered that affects all producers of BIOS firmware ...)
NOT-FOR-US: Generic TPM issue
@@ -31675,8 +31750,8 @@ CVE-2018-6560 (In dbus-proxy/flatpak-proxy.c in Flatpak before 0.8.9, and 0.9.x
- flatpak 0.10.3-1 (bug #888842)
[stretch] - flatpak 0.8.9-0+deb9u1
NOTE: https://github.com/flatpak/flatpak/commit/52346bf187b5a7f1c0fe9075b328b7ad6abe78f6
-CVE-2018-6559
- RESERVED
+CVE-2018-6559 (The Linux kernel, as used in Ubuntu 18.04 LTS and Ubuntu 18.10, allows ...)
+ TODO: check
CVE-2018-6558 (The pam_fscrypt module in fscrypt before 0.2.4 may incorrectly restore ...)
- fscrypt 0.2.4-1 (bug #907074)
NOTE: https://bugs.launchpad.net/ubuntu/+source/fscrypt/+bug/1787548
@@ -34049,8 +34124,7 @@ CVE-2018-5916
RESERVED
CVE-2018-5915
RESERVED
-CVE-2018-5914
- RESERVED
+CVE-2018-5914 (Improper input validation in TZ led to array out of bound in TZ ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-5913
RESERVED
@@ -34149,8 +34223,7 @@ CVE-2018-5868
RESERVED
CVE-2018-5867
RESERVED
-CVE-2018-5866
- RESERVED
+CVE-2018-5866 (While processing logs, data is copied into a buffer pointed to by an ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-5865 (While processing a debug log event from firmware in all Android ...)
NOT-FOR-US: Qualcomm components for Android
@@ -38988,8 +39061,8 @@ CVE-2018-4024
RESERVED
CVE-2018-4023
RESERVED
-CVE-2018-4022
- RESERVED
+CVE-2018-4022 (A use-after-free vulnerability exists in the way MKVToolNix MKVINFO ...)
+ TODO: check
CVE-2018-4021
RESERVED
CVE-2018-4020
@@ -40834,8 +40907,7 @@ CVE-2018-3590 (In Android before security patch level 2018-04-05 on Qualcomm ...
NOT-FOR-US: Qualcomm components for Android
CVE-2018-3589 (In Android before security patch level 2018-04-05 on Qualcomm ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2018-3588
- RESERVED
+CVE-2018-3588 (There is improper access control of the SSC and GPU mapped regions ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2018-3587 (In a firmware memory dump feature in all Android releases from CAF ...)
NOT-FOR-US: Qualcomm components for Android
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d5427ed85df95e2bd52d28780e9fb6e5b4f5bc7a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d5427ed85df95e2bd52d28780e9fb6e5b4f5bc7a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181027/97bed3a5/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list