[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Mon Sep 3 21:10:33 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
58bc788a by security tracker role at 2018-09-03T20:10:25Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,57 @@
+CVE-2018-16417
+	RESERVED
+CVE-2018-16416 (Cross-site request forgery (CSRF) vulnerability in ...)
+	TODO: check
+CVE-2018-16415
+	RESERVED
+CVE-2018-16414
+	RESERVED
+CVE-2018-16413 (ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the ...)
+	TODO: check
+CVE-2018-16412 (ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the ...)
+	TODO: check
+CVE-2018-16411
+	RESERVED
+CVE-2018-16410 (Vanilla before 2.6.1 allows SQL injection via an invitationID array to ...)
+	TODO: check
+CVE-2018-16409 (In Gogs 0.11.53, an attacker can use migrate to send arbitrary HTTP GET ...)
+	TODO: check
+CVE-2018-16408 (D-Link DIR-846 devices with firmware 100.26 allow remote attackers to ...)
+	TODO: check
+CVE-2018-16407 (An issue was discovered in Mayan EDMS before 3.0.3. The Tags app has ...)
+	TODO: check
+CVE-2018-16406 (An issue was discovered in Mayan EDMS before 3.0.2. The Cabinets app ...)
+	TODO: check
+CVE-2018-16405 (An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app ...)
+	TODO: check
+CVE-2018-16404
+	RESERVED
+CVE-2018-16403 (libdw in elfutils 0.173 checks the end of the attributes list ...)
+	TODO: check
+CVE-2018-16402 (libelf/elf_end.c in elfutils 0.173 allows remote attackers to cause a ...)
+	TODO: check
+CVE-2018-16401
+	RESERVED
+CVE-2018-16400
+	RESERVED
+CVE-2018-16399
+	RESERVED
+CVE-2018-16398 (In Twistlock AuthZ Broker 0.1, regular expressions are mishandled, as ...)
+	TODO: check
+CVE-2018-16397 (In LimeSurvey before 3.14.7, an admin user can leverage a "file upload" ...)
+	TODO: check
+CVE-2018-16396
+	RESERVED
+CVE-2018-16395
+	RESERVED
+CVE-2018-16394
+	RESERVED
+CVE-2018-16393 (Several buffer overflows when handling responses from a Gemsafe V1 ...)
+	TODO: check
+CVE-2018-16392 (Several buffer overflows when handling responses from a TCOS Card in ...)
+	TODO: check
+CVE-2018-16391 (Several buffer overflows when handling responses from a Muscle Card in ...)
+	TODO: check
 CVE-2018-16390
 	RESERVED
 CVE-2018-16389



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/58bc788a6fa3811f4dae3e150e6eb92b743f8b6e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/58bc788a6fa3811f4dae3e150e6eb92b743f8b6e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180903/e6e87de8/attachment.html>


More information about the debian-security-tracker-commits mailing list