[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Thu Feb 28 08:10:33 GMT 2019 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a0a597a9 by security tracker role at 2019-02-28T08:10:23Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,29 @@
+CVE-2019-9225
+	RESERVED
+CVE-2019-9224
+	RESERVED
+CVE-2019-9223
+	RESERVED
+CVE-2019-9222
+	RESERVED
+CVE-2019-9221
+	RESERVED
+CVE-2019-9220
+	RESERVED
+CVE-2019-9219
+	RESERVED
+CVE-2019-9218
+	RESERVED
+CVE-2019-9217
+	RESERVED
+CVE-2019-9216
+	RESERVED
+CVE-2019-9215 (In Live555 before 2019.02.27, malformed headers lead to invalid memory ...)
+	TODO: check
+CVE-2019-9214 (In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the RPCAP dissector ...)
+	TODO: check
+CVE-2019-9213
+	RESERVED
 CVE-2019-9212 (SOFA-Hessian through 4.0.2 allows remote attackers to execute arbitrary ...)
 	NOT-FOR-US: SOFA-Hessian
 CVE-2019-9211 (There is a reachable assertion abort in the function ...)
@@ -11,10 +37,10 @@ CVE-2018-20797 (An issue was discovered in PoDoFo 0.9.6. There is an attempted .
 	- libpodofo <unfixed> (bug #923415)
 	[jessie] - libpodofo <no-dsa> (Minor issue)
 	NOTE: https://sourceforge.net/p/podofo/tickets/34/
-CVE-2019-9209
-	RESERVED
-CVE-2019-9208
-	RESERVED
+CVE-2019-9209 (In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and ...)
+	TODO: check
+CVE-2019-9208 (In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector ...)
+	TODO: check
 CVE-2019-9207
 	RESERVED
 CVE-2019-9206
@@ -8492,26 +8518,19 @@ CVE-2019-5673
 	RESERVED
 CVE-2019-5672
 	RESERVED
-CVE-2019-5671
-	RESERVED
+CVE-2019-5671 (NVIDIA Windows GPU Display Driver contains a vulnerability in the ...)
 	NOT-FOR-US: Nvidia drivers on Windows
-CVE-2019-5670
-	RESERVED
+CVE-2019-5670 (NVIDIA Windows GPU Display Driver contains a vulnerability in the ...)
 	NOT-FOR-US: Nvidia drivers on Windows
-CVE-2019-5669
-	RESERVED
+CVE-2019-5669 (NVIDIA Windows GPU Display Driver contains a vulnerability in the ...)
 	NOT-FOR-US: Nvidia drivers on Windows
-CVE-2019-5668
-	RESERVED
+CVE-2019-5668 (NVIDIA Windows GPU Display Driver contains a vulnerability in the ...)
 	NOT-FOR-US: Nvidia drivers on Windows
-CVE-2019-5667
-	RESERVED
+CVE-2019-5667 (NVIDIA Windows GPU Display Driver contains a vulnerability in the ...)
 	NOT-FOR-US: Nvidia drivers on Windows
-CVE-2019-5666
-	RESERVED
+CVE-2019-5666 (NVIDIA Windows GPU Display Driver contains a vulnerability in the ...)
 	NOT-FOR-US: Nvidia drivers on Windows
-CVE-2019-5665
-	RESERVED
+CVE-2019-5665 (NVIDIA Windows GPU Display driver contains a vulnerability in the 3D ...)
 	NOT-FOR-US: Nvidia drivers on Windows
 CVE-2019-5664
 	RESERVED
@@ -11752,8 +11771,8 @@ CVE-2019-4063
 	RESERVED
 CVE-2019-4062
 	RESERVED
-CVE-2019-4061
-	RESERVED
+CVE-2019-4061 (IBM BigFix Platform 9.2 and 9.5 could allow an attacker to query the ...)
+	TODO: check
 CVE-2019-4060
 	RESERVED
 CVE-2019-4059 (IBM Rational ClearCase 1.0.0.0 GIT connector does not sufficiently ...)
@@ -19988,8 +20007,7 @@ CVE-2019-1561
 	RESERVED
 CVE-2019-1560
 	RESERVED
-CVE-2019-1559 [0-byte record padding oracle]
-	RESERVED
+CVE-2019-1559 (If an application encounters a fatal protocol error and then calls ...)
 	- openssl1.0 <unfixed>
 	- openssl 1.1.0b-2
 	NOTE: OpenSSL_1_0_2-stable: https://git.openssl.org/?p=openssl.git;a=commit;h=e9bbefbf0f24c57645e7ad6a5a71ae649d18ac8e
@@ -71776,8 +71794,8 @@ CVE-2018-1777 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulner
 	NOT-FOR-US: IBM
 CVE-2018-1776
 	RESERVED
-CVE-2018-1775
-	RESERVED
+CVE-2018-1775 (IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and ...)
+	TODO: check
 CVE-2018-1774 (IBM API Connect 5.0.0.0, 5.0.8.4, 2018.1 and 2018.3.6 is vulnerable to ...)
 	NOT-FOR-US: IBM
 CVE-2018-1773 (IBM Datacap Fastdoc Capture 9.1.1, 9.1.3, and 9.1.4 could allow an ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a0a597a98a1272f386d72ea2aede5430a45caeb2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a0a597a98a1272f386d72ea2aede5430a45caeb2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190228/45c830ab/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list