[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
50222b08 by security tracker role at 2018-09-20T08:10:13Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,61 @@
+CVE-2018-17243 (Global Search in Zoho ManageEngine OpManager before 12.3 123205 allows ...)
+	TODO: check
+CVE-2018-17242
+	RESERVED
+CVE-2018-17241
+	RESERVED
+CVE-2018-17240
+	RESERVED
+CVE-2018-17239
+	RESERVED
+CVE-2018-17238
+	RESERVED
+CVE-2018-17237 (A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of ...)
+	TODO: check
+CVE-2018-17236 (The function MP4Free() in mp4property.cpp in libmp4v2 2.1.0 internally ...)
+	TODO: check
+CVE-2018-17235 (The function mp4v2::impl::MP4Track::FinishSdtp() in mp4track.cpp in ...)
+	TODO: check
+CVE-2018-17234 (Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in ...)
+	TODO: check
+CVE-2018-17233 (A SIGFPE signal is raised in the function ...)
+	TODO: check
+CVE-2018-17232 (SQL injection vulnerability in archivebot.py in docmarionum1 Slack ...)
+	TODO: check
+CVE-2018-17231 (** DISPUTED ** Telegram Desktop (aka tdesktop) 1.3.14 might allow ...)
+	TODO: check
+CVE-2018-17230 (Exiv2::ul2Data in types.cpp in Exiv2 v0.26 allows remote attackers to ...)
+	TODO: check
+CVE-2018-17229 (Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote attackers to ...)
+	TODO: check
+CVE-2018-17228 (nmap4j 1.1.0 allows attackers to execute arbitrary commands via shell ...)
+	TODO: check
+CVE-2018-17227
+	RESERVED
+CVE-2018-17226
+	RESERVED
+CVE-2018-17225
+	RESERVED
+CVE-2018-17224
+	RESERVED
+CVE-2018-17223
+	RESERVED
+CVE-2018-17222
+	RESERVED
+CVE-2018-17221
+	RESERVED
+CVE-2018-17220
+	RESERVED
+CVE-2018-17219
+	RESERVED
+CVE-2018-17218
+	RESERVED
+CVE-2018-17217
+	RESERVED
+CVE-2018-17216
+	RESERVED
+CVE-2018-17215
+	RESERVED
 CVE-2018-17214
 	RESERVED
 CVE-2018-17213
@@ -302,6 +360,7 @@ CVE-2018-17084
 CVE-2018-17083
 	RESERVED
 CVE-2018-17082 (The Apache2 component in PHP before 5.6.38, 7.0.x before 7.0.32, 7.1.x ...)
+	{DLA-1509-1}
 	- php7.3 <unfixed>
 	- php7.2 <unfixed>
 	- php7.1 <unfixed>
@@ -6431,6 +6490,7 @@ CVE-2018-14554
 CVE-2018-14553
 	RESERVED
 CVE-2016-10728 (An issue was discovered in Suricata before 3.1.2. If an ICMPv4 error ...)
+	{DLA-1508-1}
 	- suricata 3.1.2-1
 	NOTE: https://redmine.openinfosecfoundation.org/issues/1880
 	NOTE: https://github.com/OISF/suricata/pull/2210
@@ -21110,8 +21170,8 @@ CVE-2018-8891
 	RESERVED
 CVE-2018-8890
 	RESERVED
-CVE-2018-8889
-	RESERVED
+CVE-2018-8889 (A directory traversal vulnerability in the Connect Service of the ...)
+	TODO: check
 CVE-2018-8888
 	RESERVED
 CVE-2018-8887



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/50222b08047daf092bcd7f0e85e7869cb981bf64

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/50222b08047daf092bcd7f0e85e7869cb981bf64
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180920/2b8b732e/attachment.html>