[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Tue Jan 29 08:10:22 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
48c4763f by security tracker role at 2019-01-29T08:10:14Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,337 @@
+CVE-2019-7155
+ RESERVED
+CVE-2019-7154 (The main function in tools/wasm2js.cpp in Binaryen 1.38.22 has a ...)
+ TODO: check
+CVE-2019-7153 (A NULL pointer dereference was discovered in ...)
+ TODO: check
+CVE-2019-7152 (A heap-based buffer over-read was discovered in ...)
+ TODO: check
+CVE-2019-7151 (A NULL pointer dereference was discovered in ...)
+ TODO: check
+CVE-2019-7150 (An issue was discovered in elfutils 0.175. A segmentation fault can ...)
+ TODO: check
+CVE-2019-7149 (A heap-based buffer over-read was discovered in the function ...)
+ TODO: check
+CVE-2019-7148 (An attempted excessive memory allocation was discovered in the function ...)
+ TODO: check
+CVE-2019-7147 (A buffer over-read exists in the function crc64ib in crc64.c in nasmlib ...)
+ TODO: check
+CVE-2019-7146 (In elfutils 0.175, there is a buffer over-read in the ebl_object_note ...)
+ TODO: check
+CVE-2019-7145
+ RESERVED
+CVE-2019-7144
+ RESERVED
+CVE-2019-7143
+ RESERVED
+CVE-2019-7142
+ RESERVED
+CVE-2019-7141
+ RESERVED
+CVE-2019-7140
+ RESERVED
+CVE-2019-7139
+ RESERVED
+CVE-2019-7138
+ RESERVED
+CVE-2019-7137
+ RESERVED
+CVE-2019-7136
+ RESERVED
+CVE-2019-7135
+ RESERVED
+CVE-2019-7134
+ RESERVED
+CVE-2019-7133
+ RESERVED
+CVE-2019-7132
+ RESERVED
+CVE-2019-7131
+ RESERVED
+CVE-2019-7130
+ RESERVED
+CVE-2019-7129
+ RESERVED
+CVE-2019-7128
+ RESERVED
+CVE-2019-7127
+ RESERVED
+CVE-2019-7126
+ RESERVED
+CVE-2019-7125
+ RESERVED
+CVE-2019-7124
+ RESERVED
+CVE-2019-7123
+ RESERVED
+CVE-2019-7122
+ RESERVED
+CVE-2019-7121
+ RESERVED
+CVE-2019-7120
+ RESERVED
+CVE-2019-7119
+ RESERVED
+CVE-2019-7118
+ RESERVED
+CVE-2019-7117
+ RESERVED
+CVE-2019-7116
+ RESERVED
+CVE-2019-7115
+ RESERVED
+CVE-2019-7114
+ RESERVED
+CVE-2019-7113
+ RESERVED
+CVE-2019-7112
+ RESERVED
+CVE-2019-7111
+ RESERVED
+CVE-2019-7110
+ RESERVED
+CVE-2019-7109
+ RESERVED
+CVE-2019-7108
+ RESERVED
+CVE-2019-7107
+ RESERVED
+CVE-2019-7106
+ RESERVED
+CVE-2019-7105
+ RESERVED
+CVE-2019-7104
+ RESERVED
+CVE-2019-7103
+ RESERVED
+CVE-2019-7102
+ RESERVED
+CVE-2019-7101
+ RESERVED
+CVE-2019-7100
+ RESERVED
+CVE-2019-7099
+ RESERVED
+CVE-2019-7098
+ RESERVED
+CVE-2019-7097
+ RESERVED
+CVE-2019-7096
+ RESERVED
+CVE-2019-7095
+ RESERVED
+CVE-2019-7094
+ RESERVED
+CVE-2019-7093
+ RESERVED
+CVE-2019-7092
+ RESERVED
+CVE-2019-7091
+ RESERVED
+CVE-2019-7090
+ RESERVED
+CVE-2019-7089
+ RESERVED
+CVE-2019-7088
+ RESERVED
+CVE-2019-7087
+ RESERVED
+CVE-2019-7086
+ RESERVED
+CVE-2019-7085
+ RESERVED
+CVE-2019-7084
+ RESERVED
+CVE-2019-7083
+ RESERVED
+CVE-2019-7082
+ RESERVED
+CVE-2019-7081
+ RESERVED
+CVE-2019-7080
+ RESERVED
+CVE-2019-7079
+ RESERVED
+CVE-2019-7078
+ RESERVED
+CVE-2019-7077
+ RESERVED
+CVE-2019-7076
+ RESERVED
+CVE-2019-7075
+ RESERVED
+CVE-2019-7074
+ RESERVED
+CVE-2019-7073
+ RESERVED
+CVE-2019-7072
+ RESERVED
+CVE-2019-7071
+ RESERVED
+CVE-2019-7070
+ RESERVED
+CVE-2019-7069
+ RESERVED
+CVE-2019-7068
+ RESERVED
+CVE-2019-7067
+ RESERVED
+CVE-2019-7066
+ RESERVED
+CVE-2019-7065
+ RESERVED
+CVE-2019-7064
+ RESERVED
+CVE-2019-7063
+ RESERVED
+CVE-2019-7062
+ RESERVED
+CVE-2019-7061
+ RESERVED
+CVE-2019-7060
+ RESERVED
+CVE-2019-7059
+ RESERVED
+CVE-2019-7058
+ RESERVED
+CVE-2019-7057
+ RESERVED
+CVE-2019-7056
+ RESERVED
+CVE-2019-7055
+ RESERVED
+CVE-2019-7054
+ RESERVED
+CVE-2019-7053
+ RESERVED
+CVE-2019-7052
+ RESERVED
+CVE-2019-7051
+ RESERVED
+CVE-2019-7050
+ RESERVED
+CVE-2019-7049
+ RESERVED
+CVE-2019-7048
+ RESERVED
+CVE-2019-7047
+ RESERVED
+CVE-2019-7046
+ RESERVED
+CVE-2019-7045
+ RESERVED
+CVE-2019-7044
+ RESERVED
+CVE-2019-7043
+ RESERVED
+CVE-2019-7042
+ RESERVED
+CVE-2019-7041
+ RESERVED
+CVE-2019-7040
+ RESERVED
+CVE-2019-7039
+ RESERVED
+CVE-2019-7038
+ RESERVED
+CVE-2019-7037
+ RESERVED
+CVE-2019-7036
+ RESERVED
+CVE-2019-7035
+ RESERVED
+CVE-2019-7034
+ RESERVED
+CVE-2019-7033
+ RESERVED
+CVE-2019-7032
+ RESERVED
+CVE-2019-7031
+ RESERVED
+CVE-2019-7030
+ RESERVED
+CVE-2019-7029
+ RESERVED
+CVE-2019-7028
+ RESERVED
+CVE-2019-7027
+ RESERVED
+CVE-2019-7026
+ RESERVED
+CVE-2019-7025
+ RESERVED
+CVE-2019-7024
+ RESERVED
+CVE-2019-7023
+ RESERVED
+CVE-2019-7022
+ RESERVED
+CVE-2019-7021
+ RESERVED
+CVE-2019-7020
+ RESERVED
+CVE-2019-7019
+ RESERVED
+CVE-2019-7018
+ RESERVED
+CVE-2019-7017
+ RESERVED
+CVE-2019-7016
+ RESERVED
+CVE-2019-7015
+ RESERVED
+CVE-2019-7014
+ RESERVED
+CVE-2019-7013
+ RESERVED
+CVE-2019-7012
+ RESERVED
+CVE-2019-7011
+ RESERVED
+CVE-2019-7010
+ RESERVED
+CVE-2019-7009
+ RESERVED
+CVE-2019-7008
+ RESERVED
+CVE-2019-7007
+ RESERVED
+CVE-2019-7006
+ RESERVED
+CVE-2019-7005
+ RESERVED
+CVE-2019-7004
+ RESERVED
+CVE-2019-7003
+ RESERVED
+CVE-2019-7002
+ RESERVED
+CVE-2019-7001
+ RESERVED
+CVE-2019-7000
+ RESERVED
+CVE-2019-6999
+ RESERVED
+CVE-2019-6998
+ RESERVED
+CVE-2019-6997
+ RESERVED
+CVE-2019-6996
+ RESERVED
+CVE-2019-6995
+ RESERVED
+CVE-2019-6994
+ RESERVED
+CVE-2019-6993
+ RESERVED
+CVE-2019-6992 (A stored-self XSS exists in web/skins/classic/views/controlcaps.php of ...)
+ TODO: check
+CVE-2019-6991 (A classic Stack-based buffer overflow exists in the zmLoadUser() ...)
+ TODO: check
+CVE-2019-6990 (A stored-self XSS exists in web/skins/classic/views/zones.php of ...)
+ TODO: check
+CVE-2016-10740 (Various resources in Atlassian Crowd before version 2.10.1 allow remote ...)
+ TODO: check
CVE-2019-1000018 [Remote code execution in scp support]
- rssh 2.3.4-9 (bug #919623)
NOTE: https://sourceforge.net/p/rssh/mailman/message/36519118/
@@ -3008,6 +3342,7 @@ CVE-2016-10735 (In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2,
CVE-2019-5720 (includes/db/class.reflines_db.inc in FrontAccounting 2.4.6 contains a ...)
- frontaccounting <removed>
CVE-2019-5719 (In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector ...)
+ {DLA-1645-1}
- wireshark 2.6.6-1 (low)
[stretch] - wireshark <postponed> (Minor issue, wait for next 2.6.x release)
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15374
@@ -3021,12 +3356,14 @@ CVE-2019-5718 (In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissect
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cd09cb5cfb673beca3cce20b1d6a9bc67a134ae1
NOTE: https://www.wireshark.org/security/wnpa-sec-2019-03.html
CVE-2019-5717 (In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the P_MUL dissector ...)
+ {DLA-1645-1}
- wireshark 2.6.6-1 (low)
[stretch] - wireshark <postponed> (Minor issue, wait for next 2.6.x release)
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15337
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=bf9272a92f3df1e4ccfaad434e123222ae5313f7
NOTE: https://www.wireshark.org/security/wnpa-sec-2019-02.html
CVE-2019-5716 (In Wireshark 2.6.0 to 2.6.5, the 6LoWPAN dissector could crash. This ...)
+ {DLA-1645-1}
- wireshark 2.6.6-1 (low)
[stretch] - wireshark <postponed> (Minor issue, wait for next 2.6.x release)
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15217
@@ -7729,8 +8066,7 @@ CVE-2019-3464
RESERVED
CVE-2019-3463
RESERVED
-CVE-2019-3462 [Content injection in APT http method when using redirects]
- RESERVED
+CVE-2019-3462 (Incorrect sanitation of the 302 redirect field in HTTP transport ...)
{DSA-4371-1 DLA-1637-1}
- apt 1.8.0~alpha3.1
NOTE: https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1812353
@@ -14261,12 +14597,12 @@ CVE-2018-19725
RESERVED
CVE-2018-19724 (Adobe Experience Manager Forms versions 6.2, 6.3 and 6.4 have a stored ...)
NOT-FOR-US: Adobe
-CVE-2018-19723
- RESERVED
+CVE-2018-19723 (Adobe Acrobat and Reader versions 2018.011.20058 and earlier, ...)
+ TODO: check
CVE-2018-19722 (Adobe Acrobat and Reader versions 2018.011.20063 and earlier, ...)
NOT-FOR-US: Adobe
-CVE-2018-19721
- RESERVED
+CVE-2018-19721 (Adobe Acrobat and Reader versions 2018.011.20058 and earlier, ...)
+ TODO: check
CVE-2018-19720 (Adobe Acrobat and Reader versions 2019.008.20081 and earlier, ...)
NOT-FOR-US: Adobe
CVE-2018-19719 (Adobe Acrobat and Reader versions 2019.008.20081 and earlier, ...)
@@ -19073,18 +19409,15 @@ CVE-2018-19016
RESERVED
CVE-2018-19015 (An attacker could inject commands to launch programs and create, ...)
TODO: check
-CVE-2018-19014
- RESERVED
+CVE-2018-19014 (Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all ...)
NOT-FOR-US: Drager patient monitoring medical devices
CVE-2018-19013 (An attacker could inject commands to delete files and/or delete the ...)
NOT-FOR-US: CX-Supervisor
-CVE-2018-19012
- RESERVED
+CVE-2018-19012 (Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all ...)
NOT-FOR-US: Drager patient monitoring medical devices
CVE-2018-19011 (CX-Supervisor (Versions 3.42 and prior) can execute code that has been ...)
NOT-FOR-US: CX-Supervisor
-CVE-2018-19010
- RESERVED
+CVE-2018-19010 (Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all ...)
NOT-FOR-US: Drager patient monitoring medical devices
CVE-2018-19009 (Pilz PNOZmulti Configurator prior to version 10.9 allows an ...)
NOT-FOR-US: Pilz PNOZmulti Configurator
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/48c4763f7d95248957e4a97965ddf72ee3a3ffc2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/48c4763f7d95248957e4a97965ddf72ee3a3ffc2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190129/06786bd0/attachment.html>
More information about the debian-security-tracker-commits
mailing list