[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c374caac by security tracker role at 2019-07-17T08:10:17Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2019-13625 (NSA Ghidra before 9.0.1 allows XXE when a project is opened or restore ...)
+	TODO: check
+CVE-2019-13624 (In ONOS 1.15.0, apps/yang/web/src/main/java/org/onosproject/yang/web/Y ...)
+	TODO: check
+CVE-2019-13623 (In NSA Ghidra through 9.0.4, path traversal can occur in RestoreTask.j ...)
+	TODO: check
+CVE-2019-13622
+	RESERVED
+CVE-2019-13621
+	RESERVED
+CVE-2019-13620
+	RESERVED
+CVE-2019-13619
+	RESERVED
 CVE-2019-13618 (In GPAC before 0.8.0, isomedia/isom_read.c in libgpac.a has a heap-bas ...)
 	- gpac <unfixed> (bug #932242)
 	NOTE: https://github.com/gpac/gpac/issues/1250
@@ -11259,7 +11273,8 @@ CVE-2019-1010013
 	RESERVED
 CVE-2019-1010012
 	RESERVED
-CVE-2019-1010011 (moinejf abcm2ps 8.13.16 and after is affected by: CWE-121: Stack-based ...)
+CVE-2019-1010011
+	REJECTED
 	- abcm2ps 8.14.2-0.1 (unimportant)
 	NOTE: https://github.com/leesavide/abcm2ps/issues/55
 	NOTE: Issue covered by fixes for CVE-2018-10753 and CVE-2018-10771 already.
@@ -11378,11 +11393,13 @@ CVE-2019-9850
 	RESERVED
 CVE-2019-9849 [remote bullet graphics retrieved in 'stealth mode']
 	RESERVED
+	{DSA-4483-1}
 	[experimental] - libreoffice 1:6.3.0~beta2-1
 	- libreoffice 1:6.3.0~rc1-1
 	NOTE: https://www.libreoffice.org/about-us/security/advisories/cve-2019-9849/
 CVE-2019-9848 [LibreLogo arbitrary script execution]
 	RESERVED
+	{DSA-4483-1}
 	[experimental] - libreoffice 1:6.3.0~beta2-1
 	- libreoffice 1:6.3.0~rc1-1
 	NOTE: https://www.libreoffice.org/about-us/security/advisories/cve-2019-9848/
@@ -26762,8 +26779,8 @@ CVE-2019-3573 (In libsixel v1.8.2, there is an infinite loop in the function six
 CVE-2019-3572 (An issue was discovered in libming 0.4.8. There is a heap-based buffer ...)
 	- ming <removed>
 	NOTE: https://github.com/libming/libming/issues/169
-CVE-2019-3571
-	RESERVED
+CVE-2019-3571 (An input validation issue affected WhatsApp Desktop versions prior to  ...)
+	TODO: check
 CVE-2019-3570
 	RESERVED
 	- hhvm <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c374caac3a74fa0b6a080090447fc20992580b9b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c374caac3a74fa0b6a080090447fc20992580b9b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190717/b2543e69/attachment.html>