[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bd973334 by security tracker role at 2019-02-17T08:10:16Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,89 @@
+CVE-2019-8401
+	RESERVED
+CVE-2019-8400 (ORY Hydra before v1.0.0-rc.3+oryOS.9 has Reflected XSS via the ...)
+	TODO: check
+CVE-2019-8399
+	RESERVED
+CVE-2019-8398 (An issue was discovered in the HDF HDF5 1.10.4 library. There is an out ...)
+	TODO: check
+CVE-2019-8397 (An issue was discovered in the HDF HDF5 1.10.4 library. There is an out ...)
+	TODO: check
+CVE-2019-8396 (A buffer overflow in H5O__layout_encode in H5Olayout.c in the HDF HDF5 ...)
+	TODO: check
+CVE-2019-8395 (An Insecure Direct Object Reference (IDOR) vulnerability exists in Zoho ...)
+	TODO: check
+CVE-2019-8394 (Zoho ManageEngine ServiceDesk Plus (SDP) before 10.0 build 10012 allows ...)
+	TODO: check
+CVE-2019-8393
+	RESERVED
+CVE-2019-8392 (An issue was discovered on D-Link DIR-823G devices with firmware ...)
+	TODO: check
+CVE-2019-8391
+	RESERVED
+CVE-2019-8390
+	RESERVED
+CVE-2019-8389 (A file-read vulnerability was identified in the Wi-Fi transfer feature ...)
+	TODO: check
+CVE-2019-8388
+	RESERVED
+CVE-2019-8387
+	RESERVED
+CVE-2019-8386
+	RESERVED
+CVE-2019-8385
+	RESERVED
+CVE-2019-8384
+	RESERVED
+CVE-2019-8383 (An issue was discovered in AdvanceCOMP before 2.1. An invalid memory ...)
+	TODO: check
+CVE-2019-8382 (An issue was discovered in Bento4 1.5.1-628. A NULL pointer dereference ...)
+	TODO: check
+CVE-2019-8381 (An issue was discovered in Tcpreplay 4.3.1. An invalid memory access ...)
+	TODO: check
+CVE-2019-8380 (An issue was discovered in Bento4 1.5.1-628. A NULL pointer dereference ...)
+	TODO: check
+CVE-2019-8379 (An issue was discovered in AdvanceCOMP before 2.1. A NULL pointer ...)
+	TODO: check
+CVE-2019-8378 (An issue was discovered in Bento4 1.5.1-628. A heap-based buffer ...)
+	TODO: check
+CVE-2019-8377 (An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference ...)
+	TODO: check
+CVE-2019-8376 (An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference ...)
+	TODO: check
+CVE-2019-8375
+	RESERVED
+CVE-2019-8374
+	RESERVED
+CVE-2019-8373
+	RESERVED
+CVE-2019-8372
+	RESERVED
+CVE-2019-8371
+	RESERVED
+CVE-2019-8370
+	RESERVED
+CVE-2019-8369
+	RESERVED
+CVE-2019-8368
+	RESERVED
+CVE-2019-8367
+	RESERVED
+CVE-2019-8366
+	RESERVED
+CVE-2019-8365
+	RESERVED
+CVE-2019-8364
+	RESERVED
+CVE-2019-8363 (Verydows 2.0 has XSS via the index.php?c=main a parameter, as ...)
+	TODO: check
+CVE-2019-8362 (DedeCMS through V5.7SP2 allows arbitrary file upload in ...)
+	TODO: check
+CVE-2019-8361 (PHP Scripts Mall Responsive Video News Script has XSS via the Search ...)
+	TODO: check
+CVE-2019-8360 (Themerig Find a Place CMS Directory 1.5 has SQL Injection via the ...)
+	TODO: check
+CVE-2019-8359
+	RESERVED
 CVE-2019-8358 (In Hiawatha before 10.8.4, a remote attacker is able to do directory ...)
 	TODO: check
 CVE-2019-8357 (An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c ...)
@@ -2127,8 +2213,8 @@ CVE-2014-1000000
 	RESERVED
 CVE-2019-7400 (Rukovoditel before 2.4.1 allows XSS. ...)
 	NOT-FOR-US: Rukovoditel
-CVE-2019-7399
-	RESERVED
+CVE-2019-7399 (Amazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against ...)
+	TODO: check
 CVE-2019-7398 (In ImageMagick before 7.0.8-25, a memory leak exists in WriteDIBImage ...)
 	- imagemagick <unfixed> (unimportant)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/1453



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bd9733343e5b37f7548c6f3e6fe02b186c3d2265

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bd9733343e5b37f7548c6f3e6fe02b186c3d2265
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190217/73e45f1c/attachment.html>