[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Fri Feb 22 08:10:31 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
27baf37b by security tracker role at 2019-02-22T08:10:24Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,37 @@
+CVE-2019-9002 (An issue was discovered in Tiny Issue 1.3.1 and pixeline Bugs through ...)
+	TODO: check
+CVE-2019-9001
+	RESERVED
+CVE-2019-9000
+	RESERVED
+CVE-2019-8999
+	RESERVED
+CVE-2019-8998
+	RESERVED
+CVE-2019-8997
+	RESERVED
+CVE-2019-8996 (In Signiant Manager+Agents before 13.5, the implementation of the set ...)
+	TODO: check
+CVE-2019-8995
+	RESERVED
+CVE-2019-8994
+	RESERVED
+CVE-2019-8993
+	RESERVED
+CVE-2019-8992
+	RESERVED
+CVE-2019-8991
+	RESERVED
+CVE-2019-8990
+	RESERVED
+CVE-2019-8989
+	RESERVED
+CVE-2019-8988
+	RESERVED
+CVE-2019-8987
+	RESERVED
+CVE-2019-8986
+	RESERVED
 CVE-2019-8985 (On Netis WF2880 and WF2411 2.1.36123 devices, there is a stack-based ...)
 	TODO: check
 CVE-2019-8984 (MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS (issue 2 of 2). ...)
@@ -9,10 +43,11 @@ CVE-2019-8982 (com/wavemaker/studio/StudioService.java in WaveMaker Studio 6.6 .
 CVE-2019-8981
 	RESERVED
 CVE-2018-20783 (In PHP before 5.6.39, 7.x before 7.0.33, 7.1.x before 7.1.25, and 7.2.x ...)
+	{DSA-4353-1 DLA-1608-1}
 	- php7.3 7.3.0-1
 	- php7.0 <removed>
 	- php5 <removed>
-        NOTE: Fixed in 5.6.39, 7.0.33, 7.1.25, 7.2.13
+	NOTE: Fixed in 5.6.39, 7.0.33, 7.1.25, 7.2.13
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77143
 CVE-2018-1002161 [SQL injection in multiple remote calls]
 	- koji <unfixed> (bug #922922)
@@ -84,8 +119,8 @@ CVE-2019-1000041
 	REJECTED
 CVE-2019-1000030
 	REJECTED
-CVE-2019-8955
-	RESERVED
+CVE-2019-8955 (In Tor before 0.3.3.12, 0.3.4.x before 0.3.4.11, 0.3.5.x before ...)
+	TODO: check
 CVE-2019-8954 (In Indexhibit 2.1.5, remote attackers can execute arbitrary code via ...)
 	NOT-FOR-US: Indexhibit 
 CVE-2019-8953 (The HAProxy package before 0.59_16 for pfSense has XSS via the desc ...)
@@ -6080,8 +6115,8 @@ CVE-2019-6342
 	RESERVED
 CVE-2019-6341
 	RESERVED
-CVE-2019-6340
-	RESERVED
+CVE-2019-6340 (Some field types do not properly sanitize data from non-form sources ...)
+	TODO: check
 CVE-2019-6337
 	RESERVED
 CVE-2019-6336
@@ -18251,12 +18286,12 @@ CVE-2019-1702
 	RESERVED
 CVE-2019-1701
 	RESERVED
-CVE-2019-1700
-	RESERVED
+CVE-2019-1700 (A vulnerability in field-programmable gate array (FPGA) ingress buffer ...)
+	TODO: check
 CVE-2019-1699
 	RESERVED
-CVE-2019-1698
-	RESERVED
+CVE-2019-1698 (A vulnerability in the web-based user interface of Cisco Internet of ...)
+	TODO: check
 CVE-2019-1697
 	RESERVED
 CVE-2019-1696
@@ -18269,8 +18304,8 @@ CVE-2019-1693
 	RESERVED
 CVE-2019-1692
 	RESERVED
-CVE-2019-1691
-	RESERVED
+CVE-2019-1691 (A vulnerability in the detection engine of Cisco Firepower Threat ...)
+	TODO: check
 CVE-2019-1690
 	RESERVED
 CVE-2019-1689
@@ -18281,16 +18316,16 @@ CVE-2019-1687
 	RESERVED
 CVE-2019-1686
 	RESERVED
-CVE-2019-1685
-	RESERVED
-CVE-2019-1684
-	RESERVED
+CVE-2019-1685 (A vulnerability in the Security Assertion Markup Language (SAML) ...)
+	TODO: check
+CVE-2019-1684 (A vulnerability in the Cisco Discovery Protocol or Link Layer ...)
+	TODO: check
 CVE-2019-1683
 	RESERVED
 CVE-2019-1682
 	RESERVED
-CVE-2019-1681
-	RESERVED
+CVE-2019-1681 (A vulnerability in the TFTP service of Cisco Network Convergence ...)
+	TODO: check
 CVE-2019-1680 (A vulnerability in Cisco Webex Business Suite could allow an ...)
 	NOT-FOR-US: Cisco
 CVE-2019-1679 (A vulnerability in the web interface of Cisco TelePresence Conductor, ...)
@@ -18317,8 +18352,8 @@ CVE-2019-1669 (A vulnerability in the data acquisition (DAQ) component of Cisco
 	NOT-FOR-US: Cisco
 CVE-2019-1668 (A vulnerability in the chat feed feature of Cisco SocialMiner could ...)
 	NOT-FOR-US: Cisco
-CVE-2019-1667
-	RESERVED
+CVE-2019-1667 (A vulnerability in the Graphite interface of Cisco HyperFlex software ...)
+	TODO: check
 CVE-2019-1666 (A vulnerability in the Graphite service of Cisco HyperFlex software ...)
 	TODO: check
 CVE-2019-1665 (A vulnerability in the web-based management interface of Cisco ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/27baf37b725719db56e4d0e8fc9a6fde6a52a18c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/27baf37b725719db56e4d0e8fc9a6fde6a52a18c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190222/9cb8194e/attachment.html>


More information about the debian-security-tracker-commits mailing list