[Git][security-tracker-team/security-tracker][master] automatic update

Sat Aug 3 21:10:29 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cdf005ca by security tracker role at 2019-08-03T20:10:17Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,207 @@
+CVE-2019-14653 (pandao Editor.md 1.5.0 allows XSS via an attribute of an ABBR or SUP e ...)
+	TODO: check
+CVE-2019-14652
+	RESERVED
+CVE-2019-14651
+	RESERVED
+CVE-2019-14650
+	RESERVED
+CVE-2019-14649
+	RESERVED
+CVE-2019-14648
+	RESERVED
+CVE-2019-14647
+	RESERVED
+CVE-2019-14646
+	RESERVED
+CVE-2019-14645
+	RESERVED
+CVE-2019-14644
+	RESERVED
+CVE-2019-14643
+	RESERVED
+CVE-2019-14642
+	RESERVED
+CVE-2019-14641
+	RESERVED
+CVE-2019-14640
+	RESERVED
+CVE-2019-14639
+	RESERVED
+CVE-2019-14638
+	RESERVED
+CVE-2019-14637
+	RESERVED
+CVE-2019-14636
+	RESERVED
+CVE-2019-14635
+	RESERVED
+CVE-2019-14634
+	RESERVED
+CVE-2019-14633
+	RESERVED
+CVE-2019-14632
+	RESERVED
+CVE-2019-14631
+	RESERVED
+CVE-2019-14630
+	RESERVED
+CVE-2019-14629
+	RESERVED
+CVE-2019-14628
+	RESERVED
+CVE-2019-14627
+	RESERVED
+CVE-2019-14626
+	RESERVED
+CVE-2019-14625
+	RESERVED
+CVE-2019-14624
+	RESERVED
+CVE-2019-14623
+	RESERVED
+CVE-2019-14622
+	RESERVED
+CVE-2019-14621
+	RESERVED
+CVE-2019-14620
+	RESERVED
+CVE-2019-14619
+	RESERVED
+CVE-2019-14618
+	RESERVED
+CVE-2019-14617
+	RESERVED
+CVE-2019-14616
+	RESERVED
+CVE-2019-14615
+	RESERVED
+CVE-2019-14614
+	RESERVED
+CVE-2019-14613
+	RESERVED
+CVE-2019-14612
+	RESERVED
+CVE-2019-14611
+	RESERVED
+CVE-2019-14610
+	RESERVED
+CVE-2019-14609
+	RESERVED
+CVE-2019-14608
+	RESERVED
+CVE-2019-14607
+	RESERVED
+CVE-2019-14606
+	RESERVED
+CVE-2019-14605
+	RESERVED
+CVE-2019-14604
+	RESERVED
+CVE-2019-14603
+	RESERVED
+CVE-2019-14602
+	RESERVED
+CVE-2019-14601
+	RESERVED
+CVE-2019-14600
+	RESERVED
+CVE-2019-14599
+	RESERVED
+CVE-2019-14598
+	RESERVED
+CVE-2019-14597
+	RESERVED
+CVE-2019-14596
+	RESERVED
+CVE-2019-14595
+	RESERVED
+CVE-2019-14594
+	RESERVED
+CVE-2019-14593
+	RESERVED
+CVE-2019-14592
+	RESERVED
+CVE-2019-14591
+	RESERVED
+CVE-2019-14590
+	RESERVED
+CVE-2019-14589
+	RESERVED
+CVE-2019-14588
+	RESERVED
+CVE-2019-14587
+	RESERVED
+CVE-2019-14586
+	RESERVED
+CVE-2019-14585
+	RESERVED
+CVE-2019-14584
+	RESERVED
+CVE-2019-14583
+	RESERVED
+CVE-2019-14582
+	RESERVED
+CVE-2019-14581
+	RESERVED
+CVE-2019-14580
+	RESERVED
+CVE-2019-14579
+	RESERVED
+CVE-2019-14578
+	RESERVED
+CVE-2019-14577
+	RESERVED
+CVE-2019-14576
+	RESERVED
+CVE-2019-14575
+	RESERVED
+CVE-2019-14574
+	RESERVED
+CVE-2019-14573
+	RESERVED
+CVE-2019-14572
+	RESERVED
+CVE-2019-14571
+	RESERVED
+CVE-2019-14570
+	RESERVED
+CVE-2019-14569
+	RESERVED
+CVE-2019-14568
+	RESERVED
+CVE-2019-14567
+	RESERVED
+CVE-2019-14566
+	RESERVED
+CVE-2019-14565
+	RESERVED
+CVE-2019-14564
+	RESERVED
+CVE-2019-14563
+	RESERVED
+CVE-2019-14562
+	RESERVED
+CVE-2019-14561
+	RESERVED
+CVE-2019-14560
+	RESERVED
+CVE-2019-14559
+	RESERVED
+CVE-2019-14558
+	RESERVED
+CVE-2019-14557
+	RESERVED
+CVE-2019-14556
+	RESERVED
+CVE-2019-14555
+	RESERVED
+CVE-2019-14554
+	RESERVED
+CVE-2019-14553
+	RESERVED
+CVE-2019-14552
+	RESERVED
 CVE-2017-XXXX [IPv6 mroute missing type check]
 	- linux 4.11.6-1
 	NOTE: https://git.kernel.org/linus/99253eb750fda6a644d5188fb26c43bad8d5a745
@@ -6027,7 +6231,7 @@ CVE-2019-12734
 CVE-2019-12733
 	RESERVED
 CVE-2019-12735 (getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote ...)
-	{DSA-4487-1 DSA-4467-1}
+	{DSA-4487-1 DSA-4467-1 DLA-1871-1}
 	- vim 2:8.1.0875-4 (bug #930020)
 	- neovim 0.3.4-3 (bug #930024)
 	NOTE: https://github.com/numirias/security/blob/master/doc/2019-06-04_ace-vim-neovim.md
@@ -93167,6 +93371,7 @@ CVE-2017-17095 (tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attack
 CVE-2017-17088 (The Enterprise version of SyncBreeze 10.2.12 and earlier is affected b ...)
 	NOT-FOR-US: SyncBreeze
 CVE-2017-17087 (fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp f ...)
+	{DLA-1871-1}
 	- vim 2:8.0.1401-1
 	[stretch] - vim <no-dsa> (Minor issue)
 	[wheezy] - vim <no-dsa> (Minor issue)
@@ -113314,7 +113519,7 @@ CVE-2017-11110 (The ole_init function in ole.c in catdoc 0.95 allows remote atta
 	- catdoc 1:0.95-3 (bug #867717)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1468471
 CVE-2017-11109 (Vim 8.0 allows attackers to cause a denial of service (invalid free) o ...)
-	{DLA-1030-1}
+	{DLA-1871-1 DLA-1030-1}
 	- vim 2:8.0.0197-5 (low; bug #867720)
 	[stretch] - vim 2:8.0.0197-4+deb9u1
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1468492



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cdf005ca7a1162847e3c46484332073cc9a942be

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cdf005ca7a1162847e3c46484332073cc9a942be
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190803/0182df0d/attachment.html>
