[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Fri Jan 11 20:10:27 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
94069009 by security tracker role at 2019-01-11T20:10:20Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,4 +1,216 @@
-CVE-2019-6133 [polkit: temporary auth hijacking via PID reuse and non-atomic fork]
+CVE-2019-6239
+ RESERVED
+CVE-2019-6238
+ RESERVED
+CVE-2019-6237
+ RESERVED
+CVE-2019-6236
+ RESERVED
+CVE-2019-6235
+ RESERVED
+CVE-2019-6234
+ RESERVED
+CVE-2019-6233
+ RESERVED
+CVE-2019-6232
+ RESERVED
+CVE-2019-6231
+ RESERVED
+CVE-2019-6230
+ RESERVED
+CVE-2019-6229
+ RESERVED
+CVE-2019-6228
+ RESERVED
+CVE-2019-6227
+ RESERVED
+CVE-2019-6226
+ RESERVED
+CVE-2019-6225
+ RESERVED
+CVE-2019-6224
+ RESERVED
+CVE-2019-6223
+ RESERVED
+CVE-2019-6222
+ RESERVED
+CVE-2019-6221
+ RESERVED
+CVE-2019-6220
+ RESERVED
+CVE-2019-6219
+ RESERVED
+CVE-2019-6218
+ RESERVED
+CVE-2019-6217
+ RESERVED
+CVE-2019-6216
+ RESERVED
+CVE-2019-6215
+ RESERVED
+CVE-2019-6214
+ RESERVED
+CVE-2019-6213
+ RESERVED
+CVE-2019-6212
+ RESERVED
+CVE-2019-6211
+ RESERVED
+CVE-2019-6210
+ RESERVED
+CVE-2019-6209
+ RESERVED
+CVE-2019-6208
+ RESERVED
+CVE-2019-6207
+ RESERVED
+CVE-2019-6206
+ RESERVED
+CVE-2019-6205
+ RESERVED
+CVE-2019-6204
+ RESERVED
+CVE-2019-6203
+ RESERVED
+CVE-2019-6202
+ RESERVED
+CVE-2019-6201
+ RESERVED
+CVE-2019-6200
+ RESERVED
+CVE-2019-6199
+ RESERVED
+CVE-2019-6198
+ RESERVED
+CVE-2019-6197
+ RESERVED
+CVE-2019-6196
+ RESERVED
+CVE-2019-6195
+ RESERVED
+CVE-2019-6194
+ RESERVED
+CVE-2019-6193
+ RESERVED
+CVE-2019-6192
+ RESERVED
+CVE-2019-6191
+ RESERVED
+CVE-2019-6190
+ RESERVED
+CVE-2019-6189
+ RESERVED
+CVE-2019-6188
+ RESERVED
+CVE-2019-6187
+ RESERVED
+CVE-2019-6186
+ RESERVED
+CVE-2019-6185
+ RESERVED
+CVE-2019-6184
+ RESERVED
+CVE-2019-6183
+ RESERVED
+CVE-2019-6182
+ RESERVED
+CVE-2019-6181
+ RESERVED
+CVE-2019-6180
+ RESERVED
+CVE-2019-6179
+ RESERVED
+CVE-2019-6178
+ RESERVED
+CVE-2019-6177
+ RESERVED
+CVE-2019-6176
+ RESERVED
+CVE-2019-6175
+ RESERVED
+CVE-2019-6174
+ RESERVED
+CVE-2019-6173
+ RESERVED
+CVE-2019-6172
+ RESERVED
+CVE-2019-6171
+ RESERVED
+CVE-2019-6170
+ RESERVED
+CVE-2019-6169
+ RESERVED
+CVE-2019-6168
+ RESERVED
+CVE-2019-6167
+ RESERVED
+CVE-2019-6166
+ RESERVED
+CVE-2019-6165
+ RESERVED
+CVE-2019-6164
+ RESERVED
+CVE-2019-6163
+ RESERVED
+CVE-2019-6162
+ RESERVED
+CVE-2019-6161
+ RESERVED
+CVE-2019-6160
+ RESERVED
+CVE-2019-6159
+ RESERVED
+CVE-2019-6158
+ RESERVED
+CVE-2019-6157
+ RESERVED
+CVE-2019-6156
+ RESERVED
+CVE-2019-6155
+ RESERVED
+CVE-2019-6154
+ RESERVED
+CVE-2019-6153
+ RESERVED
+CVE-2019-6152
+ RESERVED
+CVE-2019-6151
+ RESERVED
+CVE-2019-6150
+ RESERVED
+CVE-2019-6149
+ RESERVED
+CVE-2019-6148
+ RESERVED
+CVE-2019-6147
+ RESERVED
+CVE-2019-6146
+ RESERVED
+CVE-2019-6145
+ RESERVED
+CVE-2019-6144
+ RESERVED
+CVE-2019-6143
+ RESERVED
+CVE-2019-6142
+ RESERVED
+CVE-2019-6141
+ RESERVED
+CVE-2019-6140
+ RESERVED
+CVE-2019-6139
+ RESERVED
+CVE-2019-6138 (An issue has been found in libIEC61850 v1.3.1. Memory_malloc and ...)
+ TODO: check
+CVE-2019-6137 (An issue was discovered in lib60870 2.1.1. LinkLayer_setAddress in ...)
+ TODO: check
+CVE-2019-6136 (An issue has been found in libIEC61850 v1.3.1. ...)
+ TODO: check
+CVE-2019-6135 (An issue has been found in libIEC61850 v1.3.1. Memory_malloc in ...)
+ TODO: check
+CVE-2019-6134
+ RESERVED
+CVE-2019-6133 (In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism ...)
- policykit-1 <unfixed> (bug #918985)
NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1692
NOTE: https://gitlab.freedesktop.org/polkit/polkit/merge_requests/19
@@ -9349,7 +9561,7 @@ CVE-2018-20134
CVE-2018-20133 (ymlref allows code injection. ...)
NOT-FOR-US: ymlref
CVE-2018-20132
- RESERVED
+ REJECTED
CVE-2018-20131 (The Code42 app before 6.8.4, as used in Code42 for Enterprise, on Linux ...)
NOT-FOR-US: Code42
CVE-2018-20130
@@ -22344,8 +22556,7 @@ CVE-2018-16867 (A flaw was found in qemu Media Transfer Protocol (MTP) before ve
- qemu-kvm <removed>
NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg00390.html
NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=c52d46e041b42bb1ee6f692e00a0abe37a9659f6 (master)
-CVE-2018-16866 [information leak, out-of-bounds read]
- RESERVED
+CVE-2018-16866 (An out of bounds read was discovered in systemd-journald in the way it ...)
- systemd 240-1
NOTE: Introduced in: https://github.com/systemd/systemd/commit/ec5ff4445cca6a1d786b8da36cf6fe0acc0b94c8 (v221)
NOTE: Fixed by: https://github.com/systemd/systemd/commit/a6aadf4ae0bae185dc4c414d492a4a781c80ffe5 (v240) [1/2]
@@ -26042,14 +26253,14 @@ CVE-2018-15472 [Diff formatter DoS in Sidekiq jobs]
[experimental] - gitlab 11.1.8+dfsg-1
- gitlab 11.1.8+dfsg-2
NOTE: https://about.gitlab.com/2018/10/01/security-release-gitlab-11-dot-3-dot-1-released/
-CVE-2018-15467
- RESERVED
-CVE-2018-15466
- RESERVED
+CVE-2018-15467 (A vulnerability in the web-based management interface of Cisco ...)
+ TODO: check
+CVE-2018-15466 (A vulnerability in the Graphite web interface of the Policy and ...)
+ TODO: check
CVE-2018-15465 (A vulnerability in the authorization subsystem of Cisco Adaptive ...)
NOT-FOR-US: Cisco
-CVE-2018-15464
- RESERVED
+CVE-2018-15464 (A vulnerability in Cisco 900 Series Aggregation Services Router (ASR) ...)
+ TODO: check
CVE-2018-15463
RESERVED
CVE-2018-15462
@@ -43789,6 +44000,7 @@ CVE-2018-8741 (A directory traversal flaw in SquirrelMail 1.4.22 allows an ...)
NOTE: https://sourceforge.net/p/squirrelmail/bugs/2846/
NOTE: https://sourceforge.net/p/squirrelmail/code/14751/
CVE-2018-8740 (In SQLite through 3.22.0, databases whose schema is corrupted using a ...)
+ {DLA-1633-1}
- sqlite3 3.22.0-2 (bug #893195)
[stretch] - sqlite3 <no-dsa> (Minor issue)
[wheezy] - sqlite3 <no-dsa> (Minor issue)
@@ -56393,8 +56605,8 @@ CVE-2018-4406
RESERVED
CVE-2018-4405
RESERVED
-CVE-2018-4404
- RESERVED
+CVE-2018-4404 (In iOS before 11.4 and macOS High Sierra before 10.13.5, a memory ...)
+ TODO: check
CVE-2018-4403
RESERVED
CVE-2018-4402
@@ -56577,8 +56789,8 @@ CVE-2018-4332
RESERVED
CVE-2018-4331
RESERVED
-CVE-2018-4330
- RESERVED
+CVE-2018-4330 (In iOS before 11.4, a memory corruption issue exists and was addressed ...)
+ TODO: check
CVE-2018-4329
RESERVED
CVE-2018-4328
@@ -56682,8 +56894,8 @@ CVE-2018-4299
- webkit2gtk 2.22.0-2 (unimportant)
NOTE: https://webkitgtk.org/security/WSA-2018-0007.html
NOTE: Not covered by security support
-CVE-2018-4298
- RESERVED
+CVE-2018-4298 (In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, ...)
+ TODO: check
CVE-2018-4297
RESERVED
CVE-2018-4296
@@ -56719,19 +56931,18 @@ CVE-2018-4283
RESERVED
CVE-2018-4282
RESERVED
-CVE-2018-4281
- RESERVED
+CVE-2018-4281 (In SwiftNIO before 1.8.0, a buffer overflow was addressed with ...)
+ TODO: check
CVE-2018-4280
RESERVED
CVE-2018-4279
RESERVED
-CVE-2018-4278
- RESERVED
+CVE-2018-4278 (In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before ...)
- webkit2gtk 2.20.4-1 (unimportant)
NOTE: Not covered by security support
NOTE: https://webkitgtk.org/security/WSA-2018-0006.html
-CVE-2018-4277
- RESERVED
+CVE-2018-4277 (In iOS before 11.4.1, watchOS before 4.3.2, tvOS before 11.4.1, Safari ...)
+ TODO: check
CVE-2018-4276
RESERVED
CVE-2018-4275
@@ -56787,8 +56998,7 @@ CVE-2018-4263
- webkit2gtk 2.20.4-1 (unimportant)
NOTE: Not covered by security support
NOTE: https://webkitgtk.org/security/WSA-2018-0006.html
-CVE-2018-4262
- RESERVED
+CVE-2018-4262 (In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before ...)
- webkit2gtk 2.20.4-1 (unimportant)
NOTE: Not covered by security support
NOTE: https://webkitgtk.org/security/WSA-2018-0006.html
@@ -56801,16 +57011,16 @@ CVE-2018-4260
RESERVED
CVE-2018-4259
RESERVED
-CVE-2018-4258
- RESERVED
-CVE-2018-4257
- RESERVED
-CVE-2018-4256
- RESERVED
-CVE-2018-4255
- RESERVED
-CVE-2018-4254
- RESERVED
+CVE-2018-4258 (In macOS High Sierra before 10.13.5, a buffer overflow was addressed ...)
+ TODO: check
+CVE-2018-4257 (In macOS High Sierra before 10.13.5, a buffer overflow was addressed ...)
+ TODO: check
+CVE-2018-4256 (In macOS High Sierra before 10.13.5, an out-of-bounds read was ...)
+ TODO: check
+CVE-2018-4255 (In macOS High Sierra before 10.13.5, an out-of-bounds read was ...)
+ TODO: check
+CVE-2018-4254 (In macOS High Sierra before 10.13.5, an input validation issue existed ...)
+ TODO: check
CVE-2018-4253 (An issue was discovered in certain Apple products. macOS before ...)
NOT-FOR-US: Apple
CVE-2018-4252 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
@@ -56893,8 +57103,8 @@ CVE-2018-4218 (An issue was discovered in certain Apple products. iOS before 11.
- webkit2gtk 2.20.3-1 (unimportant)
NOTE: Not covered by security support
NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
-CVE-2018-4217
- RESERVED
+CVE-2018-4217 (In macOS High Sierra before 10.13.5, a privacy issue in the handling ...)
+ TODO: check
CVE-2018-4216
RESERVED
CVE-2018-4215 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
@@ -56903,35 +57113,29 @@ CVE-2018-4214 (An issue was discovered in certain Apple products. iOS before 11.
- webkit2gtk 2.20.0-2 (unimportant)
NOTE: Not covered by security support
NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
-CVE-2018-4213
- RESERVED
+CVE-2018-4213 (In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ...)
- webkit2gtk 2.22.0-2 (unimportant)
NOTE: https://webkitgtk.org/security/WSA-2018-0007.html
NOTE: Not covered by security support
-CVE-2018-4212
- RESERVED
+CVE-2018-4212 (In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ...)
- webkit2gtk 2.22.0-2 (unimportant)
NOTE: https://webkitgtk.org/security/WSA-2018-0007.html
NOTE: Not covered by security support
CVE-2018-4211 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
NOT-FOR-US: Apple
-CVE-2018-4210
- RESERVED
+CVE-2018-4210 (In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS ...)
- webkit2gtk 2.22.0-2 (unimportant)
NOTE: https://webkitgtk.org/security/WSA-2018-0007.html
NOTE: Not covered by security support
-CVE-2018-4209
- RESERVED
+CVE-2018-4209 (In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ...)
- webkit2gtk 2.22.0-2 (unimportant)
NOTE: https://webkitgtk.org/security/WSA-2018-0007.html
NOTE: Not covered by security support
-CVE-2018-4208
- RESERVED
+CVE-2018-4208 (In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ...)
- webkit2gtk 2.22.0-2 (unimportant)
NOTE: https://webkitgtk.org/security/WSA-2018-0007.html
NOTE: Not covered by security support
-CVE-2018-4207
- RESERVED
+CVE-2018-4207 (In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ...)
- webkit2gtk 2.22.0-2 (unimportant)
NOTE: https://webkitgtk.org/security/WSA-2018-0007.html
NOTE: Not covered by security support
@@ -56970,8 +57174,8 @@ CVE-2018-4196 (An issue was discovered in certain Apple products. macOS before .
NOT-FOR-US: Apple (Accessibility Framework component)
CVE-2018-4195
RESERVED
-CVE-2018-4194
- RESERVED
+CVE-2018-4194 (In iOS before 11.4, iCloud for Windows before 7.5, watchOS before ...)
+ TODO: check
CVE-2018-4193 (An issue was discovered in certain Apple products. macOS before ...)
NOT-FOR-US: Apple (Windows Server component)
CVE-2018-4192 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
@@ -56987,38 +57191,34 @@ CVE-2018-4190 (An issue was discovered in certain Apple products. iOS before 11.
- webkit2gtk 2.20.3-1 (unimportant)
NOTE: Not covered by security support
NOTE: https://webkitgtk.org/security/WSA-2018-0005.html
-CVE-2018-4189
- RESERVED
+CVE-2018-4189 (In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security ...)
+ TODO: check
CVE-2018-4188 (An issue was discovered in certain Apple products. iOS before 11.4 is ...)
NOT-FOR-US: Safari
CVE-2018-4187 (An issue was discovered in certain Apple products. iOS before 11.3.1 ...)
NOT-FOR-US: Apple (LinkPresentation component)
-CVE-2018-4186
- RESERVED
-CVE-2018-4185
- RESERVED
+CVE-2018-4186 (In Safari before 11.1, an information leakage issue existed in the ...)
+ TODO: check
+CVE-2018-4185 (In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS ...)
+ TODO: check
CVE-2018-4184 (An issue was discovered in certain Apple products. macOS before ...)
NOT-FOR-US: Apple (Speech component)
-CVE-2018-4183 [cups-exec Sandbox Bypass Due to Profile Misconfiguration]
- RESERVED
+CVE-2018-4183 (In macOS High Sierra before 10.13.5, an access issue was addressed ...)
- cups <not-affected> (MacOS X specific issue)
NOTE: Fixed by: https://github.com/apple/cups/commit/d47f6aec436e0e9df6554436e391471097686ecc
-CVE-2018-4182 [cups-exec Sandbox Bypass Due to Insecure Error Handling]
- RESERVED
+CVE-2018-4182 (In macOS High Sierra before 10.13.5, an access issue was addressed ...)
- cups <not-affected> (MacOS X specific issue)
NOTE: Fixed by: https://github.com/apple/cups/commit/d47f6aec436e0e9df6554436e391471097686ecc
-CVE-2018-4181 [Limited Local File Reads as Root via cupsd.conf Include Directive]
- RESERVED
+CVE-2018-4181 (In macOS High Sierra before 10.13.5, an issue existed in CUPS. This ...)
{DSA-4243-1 DLA-1426-1}
- cups 2.2.8-2
NOTE: Fixed by: https://github.com/apple/cups/commit/d47f6aec436e0e9df6554436e391471097686ecc
-CVE-2018-4180 [Local Privilege Escalation to Root in dnssd Backend (CUPS_SERVERBIN)]
- RESERVED
+CVE-2018-4180 (In macOS High Sierra before 10.13.5, an issue existed in CUPS. This ...)
{DSA-4243-1 DLA-1426-1}
- cups 2.2.8-2
NOTE: Fixed by: https://github.com/apple/cups/commit/d47f6aec436e0e9df6554436e391471097686ecc
-CVE-2018-4179
- RESERVED
+CVE-2018-4179 (In macOS High Sierra before 10.13.4, there was an issue with the ...)
+ TODO: check
CVE-2018-4178
RESERVED
CVE-2018-4177
@@ -57037,8 +57237,8 @@ CVE-2018-4171 (An issue was discovered in certain Apple products. macOS before .
NOT-FOR-US: Apple
CVE-2018-4170 (An issue was discovered in certain Apple products. macOS before ...)
NOT-FOR-US: Apple
-CVE-2018-4169
- RESERVED
+CVE-2018-4169 (In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, ...)
+ TODO: check
CVE-2018-4168 (An issue was discovered in certain Apple products. iOS before 11.3 is ...)
NOT-FOR-US: Apple
CVE-2018-4167 (An issue was discovered in certain Apple products. iOS before 11.3 is ...)
@@ -57089,8 +57289,8 @@ CVE-2018-4149 (An issue was discovered in certain Apple products. iOS before 11.
NOT-FOR-US: Apple
CVE-2018-4148 (An issue was discovered in certain Apple products. iOS before 11.3 is ...)
NOT-FOR-US: Apple
-CVE-2018-4147
- RESERVED
+CVE-2018-4147 (In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before ...)
+ TODO: check
CVE-2018-4146 (An issue was discovered in certain Apple products. iOS before 11.3 is ...)
- webkit2gtk 2.20.0-2 (unimportant)
NOTE: https://webkitgtk.org/security/WSA-2018-0003.html
@@ -79378,18 +79578,18 @@ CVE-2017-13893
RESERVED
CVE-2017-13892
RESERVED
-CVE-2017-13891
- RESERVED
+CVE-2017-13891 (In iOS before 11.2, an inconsistent user interface issue was addressed ...)
+ TODO: check
CVE-2017-13890 (An issue was discovered in certain Apple products. macOS before ...)
NOT-FOR-US: Apple
-CVE-2017-13889
- RESERVED
-CVE-2017-13888
- RESERVED
-CVE-2017-13887
- RESERVED
-CVE-2017-13886
- RESERVED
+CVE-2017-13889 (In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, ...)
+ TODO: check
+CVE-2017-13888 (In iOS before 11.2, a type confusion issue was addressed with improved ...)
+ TODO: check
+CVE-2017-13887 (In macOS High Sierra before 10.13.2, a logic issue existed in APFS ...)
+ TODO: check
+CVE-2017-13886 (In macOS High Sierra before 10.13.2, an access issue existed with ...)
+ TODO: check
CVE-2017-13885 (An issue was discovered in certain Apple products. iOS before 11.2 is ...)
- webkit2gtk 2.18.6-1 (unimportant)
[stretch] - webkit2gtk 2.18.6-1~deb9u1
@@ -88292,7 +88492,7 @@ CVE-2017-10991 (The WP Statistics plugin through 12.0.9 for WordPress has XSS in
CVE-2017-10990
RESERVED
CVE-2017-10989 (The getNodeSize function in ext/rtree/rtree.c in SQLite through ...)
- {DLA-1018-1}
+ {DLA-1633-1 DLA-1018-1}
- sqlite3 3.19.3-3 (bug #867618)
[stretch] - sqlite3 3.16.2-5+deb9u1
NOTE: https://sqlite.org/src/vpatch?from=0db20efe201736b3&to=66de6f4a9504ec26
@@ -114517,18 +114717,21 @@ CVE-2017-2521 (An issue was discovered in certain Apple products. iOS before 10.
- webkit2gtk 2.16.3-2 (unimportant)
NOTE: Not covered by security support
CVE-2017-2520 (An issue was discovered in certain Apple products. iOS before 10.3.2 ...)
+ {DLA-1633-1}
- sqlite3 3.16.2-1
[wheezy] - sqlite3 <not-affected> (Vulnerable code not present)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=384
NOTE: https://clusterfuzz-external.appspot.com/testcase?key=5694101458518016
NOTE: Fixed by: https://www.sqlite.org/src/info/2dc7eeb5b4d2eaf1
CVE-2017-2519 (An issue was discovered in certain Apple products. iOS before 10.3.2 ...)
+ {DLA-1633-1}
- sqlite3 3.16.0-1
[wheezy] - sqlite3 <not-affected> (Vulnerable code not present)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=288
NOTE: https://clusterfuzz-external.appspot.com/testcase?key=6739028850245632
NOTE: Fixed by: https://www.sqlite.org/src/info/d08b72c38ff6fae6
CVE-2017-2518 (An issue was discovered in certain Apple products. iOS before 10.3.2 ...)
+ {DLA-1633-1}
- sqlite3 3.15.2-1
[wheezy] - sqlite3 <no-dsa> (Minor issue)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=199
@@ -114783,8 +114986,8 @@ CVE-2017-2413 (An issue was discovered in certain Apple products. macOS before .
NOT-FOR-US: Apple
CVE-2017-2412 (An issue was discovered in certain Apple products. iOS before 10.3 is ...)
NOT-FOR-US: Apple
-CVE-2017-2411
- RESERVED
+CVE-2017-2411 (In iOS before 11.2, exchange rates were retrieved from HTTP rather ...)
+ TODO: check
CVE-2017-2410 (An issue was discovered in certain Apple products. macOS before ...)
NOT-FOR-US: Apple
CVE-2017-2409 (An issue was discovered in certain Apple products. macOS before ...)
@@ -126530,8 +126733,8 @@ CVE-2016-7578 (An issue was discovered in certain Apple products. iOS before 10.
NOT-FOR-US: Apple
CVE-2016-7577 (An issue was discovered in certain Apple products. iOS before 10.1 is ...)
NOT-FOR-US: Apple
-CVE-2016-7576
- RESERVED
+CVE-2016-7576 (In iOS before 9.3.3, a memory corruption issue existed in the kernel. ...)
+ TODO: check
CVE-2016-7574
RESERVED
CVE-2016-7573
@@ -136618,12 +136821,12 @@ CVE-2016-4646 (Audio in Apple OS X before 10.11.6 mishandles a size value, which
NOT-FOR-US: Apple
CVE-2016-4645 (CFNetwork in Apple OS X before 10.11.6 uses weak permissions for ...)
NOT-FOR-US: Apple
-CVE-2016-4644
- RESERVED
-CVE-2016-4643
- RESERVED
-CVE-2016-4642
- RESERVED
+CVE-2016-4644 (In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before ...)
+ TODO: check
+CVE-2016-4643 (In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before ...)
+ TODO: check
+CVE-2016-4642 (In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before ...)
+ TODO: check
CVE-2016-4641 (Login Window in Apple OS X before 10.11.6 allows attackers to execute ...)
NOT-FOR-US: Apple
CVE-2016-4640 (Login Window in Apple OS X before 10.11.6 allows attackers to execute ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9406900932d15df3bf0bcef53c55a716c683e2d9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9406900932d15df3bf0bcef53c55a716c683e2d9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190111/46129796/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list