[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat Oct 27 21:10:31 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2b5f449d by security tracker role at 2018-10-27T20:10:19Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2018-18705 (PhpTpoint hospital management system suffers from multiple SQL ...)
+	TODO: check
+CVE-2018-18704 (PhpTpoint Pharmacy Management System suffers from a SQL injection ...)
+	TODO: check
+CVE-2018-18703 (PhpTpoint Mailing Server Using File Handling 1.0 suffers from multiple ...)
+	TODO: check
+CVE-2018-18702 (spider.admincp.php in iCMS v7.0.11 allows SQL injection via ...)
+	TODO: check
+CVE-2018-18701 (An issue was discovered in cp-demangle.c in GNU libiberty, as ...)
+	TODO: check
+CVE-2018-18700 (An issue was discovered in cp-demangle.c in GNU libiberty, as ...)
+	TODO: check
+CVE-2018-18699 (An issue was discovered in GoPro gpmf-parser 1.2.1. There is an ...)
+	TODO: check
 CVE-2018-18698
 	RESERVED
 CVE-2018-18697
@@ -1673,6 +1687,7 @@ CVE-2018-1000807 (Python Cryptographic Authority pyopenssl version prior to vers
 	NOTE: https://github.com/pyca/pyopenssl/pull/723
 	NOTE: https://github.com/pyca/pyopenssl/commit/e73818600065821d588af475b024f4eb518c3509
 CVE-2018-1000805 (Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 ...)
+	{DLA-1556-1}
 	- paramiko <unfixed> (bug #910760)
 	NOTE: https://github.com/paramiko/paramiko/issues/1283
 	NOTE: https://github.com/paramiko/paramiko/commit/56c96a659658acdbb873aef8809a7b508434dcce
@@ -27832,6 +27847,7 @@ CVE-2018-7751 (The svg_probe function in libavformat/img2dec.c in FFmpeg through
 	- libav <not-affected> (Vulnerable code not present)
 	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/a6cba062051f345e8ebfdff34aba071ed73d923f
 CVE-2018-7750 (transport.py in the SSH server implementation of Paramiko before ...)
+	{DLA-1556-1}
 	- paramiko <unfixed> (bug #892859)
 	[stretch] - paramiko <no-dsa> (Minor issue)
 	[wheezy] - paramiko <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2b5f449df9aaf468c33d359e006448c508362d9f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2b5f449df9aaf468c33d359e006448c508362d9f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181027/e868bb78/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list