[Git][security-tracker-team/security-tracker][master] Add several new zoneminder issues
Salvatore Bonaccorso
carnil at debian.org
Mon Feb 4 20:30:40 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
291b8b16 by Salvatore Bonaccorso at 2019-02-04T20:30:11Z
Add several new zoneminder issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,61 +5,89 @@ CVE-2019-7354
CVE-2019-7353
RESERVED
CVE-2019-7352 (Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2475
CVE-2019-7351 (Log Injection exists in ZoneMinder through 1.32.3, as an attacker can ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2466
CVE-2019-7350 (Session fixation exists in ZoneMinder through 1.32.3, as an attacker ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2471
CVE-2019-7349 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2465
CVE-2019-7348 (Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2467
CVE-2019-7347 (A Time-of-check Time-of-use (TOCTOU) Race Condition exists in ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2476
CVE-2019-7346 (A CSRF check issue exists in ZoneMinder through 1.32.3 as whenever a ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2469
CVE-2019-7345 (Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2468
CVE-2019-7344 (Reflected XSS exists in ZoneMinder through 1.32.3, allowing an attacker ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2455
CVE-2019-7343 (Reflected - Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2464
CVE-2019-7342 (POST - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2461
CVE-2019-7341 (Reflected - Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2463
CVE-2019-7340 (POST - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2462
CVE-2019-7339 (POST - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2460
CVE-2019-7338 (Self - Stored XSS exists in ZoneMinder through 1.32.3, allowing an ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2454
CVE-2019-7337 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2456
CVE-2019-7336 (Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2457
CVE-2019-7335 (Self - Stored XSS exists in ZoneMinder through 1.32.3, allowing an ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2453
CVE-2019-7334 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2443
CVE-2019-7333 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2441
CVE-2019-7332 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2442
CVE-2019-7331 (Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2451
CVE-2019-7330 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2448
CVE-2019-7329 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2446
CVE-2019-7328 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2449
CVE-2019-7327 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2447
CVE-2019-7326 (Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2452
CVE-2019-7325 (Reflected Cross Site Scripting (XSS) exists in ZoneMinder through ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2450
CVE-2019-7324 (app/Core/Paginator.php in Kanboard before 1.2.8 has XSS in pagination ...)
TODO: check
CVE-2019-7323 (GUP (generic update process) in LightySoft LogMX before 7.4.0 does not ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/291b8b1645a3065de3fa4e69a9bf2d5e41dd5980
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/291b8b1645a3065de3fa4e69a9bf2d5e41dd5980
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190204/ad498bcf/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list