[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat Feb 16 08:10:30 GMT 2019 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ca0e413e by security tracker role at 2019-02-16T08:10:19Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2019-8357 (An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c ...)
+	TODO: check
+CVE-2019-8356 (An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 ...)
+	TODO: check
+CVE-2019-8355 (An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an ...)
+	TODO: check
+CVE-2019-8354 (An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c ...)
+	TODO: check
+CVE-2019-8353
+	RESERVED
+CVE-2019-8352
+	RESERVED
+CVE-2019-8351
+	RESERVED
 CVE-2019-8350
 	RESERVED
 CVE-2019-8349
@@ -9705,8 +9719,8 @@ CVE-2019-4061
 	RESERVED
 CVE-2019-4060
 	RESERVED
-CVE-2019-4059
-	RESERVED
+CVE-2019-4059 (IBM Rational ClearCase 1.0.0.0 GIT connector does not sufficiently ...)
+	TODO: check
 CVE-2019-4058
 	RESERVED
 CVE-2019-4057
@@ -69341,8 +69355,8 @@ CVE-2018-1897 (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5., and 11.1 ..
 	NOT-FOR-US: IBM
 CVE-2018-1896 (IBM Connections 5.0, 5.5, and 6.0 is vulnerable to possible host ...)
 	NOT-FOR-US: IBM
-CVE-2018-1895
-	RESERVED
+CVE-2018-1895 (IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable ...)
+	TODO: check
 CVE-2018-1894
 	RESERVED
 CVE-2018-1893
@@ -69677,8 +69691,8 @@ CVE-2018-1729
 	RESERVED
 CVE-2018-1728 (IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting. ...)
 	NOT-FOR-US: IBM
-CVE-2018-1727
-	RESERVED
+CVE-2018-1727 (IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is ...)
+	TODO: check
 CVE-2018-1726
 	RESERVED
 CVE-2018-1725
@@ -69729,8 +69743,8 @@ CVE-2018-1703
 	RESERVED
 CVE-2018-1702 (IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum ...)
 	NOT-FOR-US: IBM
-CVE-2018-1701
-	RESERVED
+CVE-2018-1701 (IBM InfoSphere Information Server 11.7 could allow an authenciated ...)
+	TODO: check
 CVE-2018-1700
 	RESERVED
 CVE-2018-1699 (IBM Maximo Asset Management 7.6 through 7.6.3 is vulnerable to SQL ...)
@@ -122053,8 +122067,8 @@ CVE-2017-1697
 	RESERVED
 CVE-2017-1696 (IBM QRadar 7.2 and 7.3 could allow a remote authenticated attacker to ...)
 	NOT-FOR-US: IBM QRadar
-CVE-2017-1695
-	RESERVED
+CVE-2017-1695 (IBM QRadar SIEM 7.2 and 7.3 uses weaker than expected cryptographic ...)
+	TODO: check
 CVE-2017-1694 (IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain ...)
 	NOT-FOR-US: IBM Integration Bus
 CVE-2017-1693 (IBM Integration Bus 9.0 and 10.0 could allow an attacker that has ...)
@@ -168463,13 +168477,11 @@ CVE-2015-4619 (Cross-site request forgery (CSRF) vulnerability in Spina before c
 	NOT-FOR-US: Spina CMS
 CVE-2015-4618
 	RESERVED
-CVE-2015-4617
-	RESERVED
+CVE-2015-4617 (Vulnerability in Easy2map-photos WordPress Plugin v1.09 ...)
 	NOT-FOR-US: WordPress plugin easy2map-photos
 CVE-2015-4616 (Directory traversal vulnerability in includes/MapPinImageSave.php in ...)
 	NOT-FOR-US: Easy2Map plugin for WordPress
-CVE-2015-4615
-	RESERVED
+CVE-2015-4615 (Vulnerability in Easy2map-photos WordPress Plugin v1.09 allows SQL ...)
 	NOT-FOR-US: WordPress plugin easy2map-photos
 CVE-2015-4614 (Multiple SQL injection vulnerabilities in includes/Function.php in the ...)
 	NOT-FOR-US: Easy2Map plugin for WordPress
@@ -212033,8 +212045,7 @@ CVE-2013-5649 (Multiple cross-site scripting (XSS) vulnerabilities in Juniper Ju
 	NOT-FOR-US: Juniper
 CVE-2013-5655 (Directory traversal vulnerability in the FTP server in YingZhi Python ...)
 	NOT-FOR-US: YingZhi Python for iOS
-CVE-2013-5654
-	RESERVED
+CVE-2013-5654 (Vulnerability in YingZhi Python Programming Language v1.9 allows ...)
 	NOT-FOR-US: YingZhi Python for iOS
 CVE-2013-5651 (The virBitmapParse function in util/virbitmap.c in libvirt before ...)
 	- libvirt 1.1.2~rc1-1
@@ -220020,8 +220031,7 @@ CVE-2012-XXXX [null pointer dereference]
 	[squeeze] - chromium-browser <end-of-life>
 	NOTE: http://seclists.org/fulldisclosure/2013/Mar/134
 	NOTE: full disclosure post dosn't make it clear if a CVE was assigned for this or not, but it is fixed in the above version
-CVE-2013-2565
-	RESERVED
+CVE-2013-2565 (A vulnerability in Mambo CMS v4.6.5 where the scripts thumbs.php, ...)
 	NOT-FOR-US: Mambo CMS
 CVE-2013-2564 (Mambo CMS 4.6.5 allows remote attackers to cause a denial of service ...)
 	NOT-FOR-US: Mambo CMS
@@ -220124,8 +220134,8 @@ CVE-2013-2518
 	REJECTED
 CVE-2013-2517
 	REJECTED
-CVE-2013-2516
-	RESERVED
+CVE-2013-2516 (Vulnerability in FileUtils v0.7, Ruby Gem Fileutils <= v0.7 Command ...)
+	TODO: check
 CVE-2013-2515
 	RESERVED
 CVE-2013-2514



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca0e413e54a6e2e514cbc44902cb1d67fee5750e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca0e413e54a6e2e514cbc44902cb1d67fee5750e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190216/a8516c9b/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list