[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Sun Aug 4 21:10:28 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f2d244e0 by security tracker role at 2019-08-04T20:10:18Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6013,6 +6013,7 @@ CVE-2019-12816 (Modules.cpp in ZNC before 1.7.4-rc1 allows remote authenticated
NOTE: Versions affected: 0.098 - 1.7.3
NOTE: https://github.com/znc/znc/commit/8de9e376ce531fe7f3c8b0aa4876d15b479b7311
CVE-2019-12815 (An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3. ...)
+ {DSA-4491-1}
- proftpd-dfsg 1.3.6-6 (low; bug #932453)
NOTE: http://bugs.proftpd.org/show_bug.cgi?id=4372
NOTE: https://github.com/proftpd/proftpd/pull/816
@@ -25767,9 +25768,11 @@ CVE-2019-5461 [GitHub Integration SSRF]
- gitlab <unfixed> (bug #933785)
NOTE: https://about.gitlab.com/2019/07/29/security-release-gitlab-12-dot-1-dot-2-released/
CVE-2019-5460 (Double Free in VLC versions <= 3.0.6 leads to a crash. ...)
+ {DSA-4459-1}
- vlc 3.0.7-1
NOTE: https://hackerone.com/reports/503208
CVE-2019-5459 (An Integer underflow in VLC Media Player versions < 3.0.7 leads to ...)
+ {DSA-4459-1}
- vlc 3.0.7-1
NOTE: https://hackerone.com/reports/502816
CVE-2019-5458 (Cross-site scripting (XSS) vulnerability in http-file-server (all vers ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2d244e06f0738e2fb9747e5312fe77f0b319db1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2d244e06f0738e2fb9747e5312fe77f0b319db1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190804/a5effd3d/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list