[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Wed Jul 24 21:10:41 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fb45a793 by security tracker role at 2019-07-24T20:10:30Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6428,7 +6428,7 @@ CVE-2019-11992
 	RESERVED
 CVE-2019-11991 (HPE has identified a vulnerability in HPE 3PAR Service Processor (SP)  ...)
 	NOT-FOR-US: HPE 3PAR Service Processor
-CVE-2019-11990 (A security vulnerability in HPE IceWall SSO Agent Option and IceWall M ...)
+CVE-2019-11990 (Security vulnerabilities in HPE UIoT versions 1.6, 1.5, 1.4.2, 1.4.1,  ...)
 	NOT-FOR-US: HPE IceWall
 CVE-2019-11989 (A security vulnerability in HPE IceWall SSO Agent Option and IceWall M ...)
 	NOT-FOR-US: HPE IceWall
@@ -9084,8 +9084,8 @@ CVE-2019-10994
 	RESERVED
 CVE-2019-10993 (In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointe ...)
 	NOT-FOR-US: WebAccess/SCADA
-CVE-2019-10992
-	RESERVED
+CVE-2019-10992 (Delta Electronics CNCSoft ScreenEditor, Versions 1.00.89 and prior. Mu ...)
+	TODO: check
 CVE-2019-10991 (In WebAccess/SCADA, Versions 8.3.5 and prior, multiple stack-based buf ...)
 	NOT-FOR-US: WebAccess/SCADA
 CVE-2019-10990
@@ -9104,8 +9104,8 @@ CVE-2019-10984
 	RESERVED
 CVE-2019-10983 (In WebAccess/SCADA Versions 8.3.5 and prior, an out-of-bounds read vul ...)
 	NOT-FOR-US: WebAccess/SCADA
-CVE-2019-10982
-	RESERVED
+CVE-2019-10982 (Delta Electronics CNCSoft ScreenEditor, Versions 1.00.89 and prior. Mu ...)
+	TODO: check
 CVE-2019-10981 (In Vijeo Citect 7.30 and 7.40, and CitectSCADA 7.30 and 7.40, a vulner ...)
 	NOT-FOR-US: AVEVA
 CVE-2019-10980
@@ -9132,8 +9132,8 @@ CVE-2019-10970 (In Rockwell Automation PanelView 5510 (all versions manufactured
 	NOT-FOR-US: Rockwell Automation PanelView
 CVE-2019-10969
 	RESERVED
-CVE-2019-10968
-	RESERVED
+CVE-2019-10968 (Philips Holter 2010 Plus, all versions. A vulnerability has been ident ...)
+	TODO: check
 CVE-2019-10967 (In Emerson Ovation OCR400 Controller 3.3.1 and earlier, a stack-based  ...)
 	NOT-FOR-US: Emerson
 CVE-2019-10966 (In GE Aestiva and Aespire versions 7100 and 7900, a vulnerability exis ...)
@@ -12242,16 +12242,16 @@ CVE-2019-1010195
 	RESERVED
 CVE-2019-1010194
 	RESERVED
-CVE-2019-1010193
-	RESERVED
+CVE-2019-1010193 (hisiphp 1.0.8 is affected by: Cross Site Scripting (XSS). ...)
+	TODO: check
 CVE-2019-1010192
 	RESERVED
-CVE-2019-1010191
-	RESERVED
-CVE-2019-1010190
-	RESERVED
-CVE-2019-1010189
-	RESERVED
+CVE-2019-1010191 (marginalia < 1.6 is affected by: SQL Injection. The impact is: The  ...)
+	TODO: check
+CVE-2019-1010190 (mgetty prior to 1.2.1 is affected by: out-of-bounds read. The impact i ...)
+	TODO: check
+CVE-2019-1010189 (mgetty prior to version 1.2.1 is affected by: Infinite Loop. The impac ...)
+	TODO: check
 CVE-2019-1010188
 	RESERVED
 CVE-2019-1010187
@@ -12268,14 +12268,14 @@ CVE-2019-1010182
 	RESERVED
 CVE-2019-1010181
 	RESERVED
-CVE-2019-1010180
-	RESERVED
-CVE-2019-1010179
-	RESERVED
-CVE-2019-1010178
-	RESERVED
-CVE-2019-1010177
-	RESERVED
+CVE-2019-1010180 (GNU gdb All versions is affected by: Buffer Overflow - Out of bound me ...)
+	TODO: check
+CVE-2019-1010179 (PHKP including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b is affe ...)
+	TODO: check
+CVE-2019-1010178 (Fred MODX Revolution < 1.0.0-beta5 is affected by: Incorrect Access ...)
+	TODO: check
+CVE-2019-1010177 (Jsish 2.4.70 2.047 is affected by: Use After Free. The impact is: deni ...)
+	TODO: check
 CVE-2019-1010176
 	RESERVED
 CVE-2019-1010175
@@ -12302,8 +12302,8 @@ CVE-2019-1010165
 	RESERVED
 CVE-2019-1010164
 	RESERVED
-CVE-2019-1010163
-	RESERVED
+CVE-2019-1010163 (Socusoft Co Photo 2 Video Converter 8.0.0 is affected by: Buffer Overf ...)
+	TODO: check
 CVE-2019-1010162 (jsish 2.4.74 2.0474 is affected by: CWE-476: NULL Pointer Dereference. ...)
 	NOT-FOR-US: Jsish
 CVE-2019-1010161
@@ -28014,8 +28014,8 @@ CVE-2019-3624
 	RESERVED
 CVE-2019-3623
 	RESERVED
-CVE-2019-3622
-	RESERVED
+CVE-2019-3622 (Files or Directories Accessible to External Parties in McAfee Data Los ...)
+	TODO: check
 CVE-2019-3621
 	RESERVED
 CVE-2019-3620
@@ -28068,16 +28068,16 @@ CVE-2019-3597 (Authentication Bypass vulnerability in McAfee Network Security Ma
 	NOT-FOR-US: McAfee
 CVE-2019-3596
 	RESERVED
-CVE-2019-3595
-	RESERVED
+CVE-2019-3595 (Improper Neutralization of Special Elements used in a Command ('Comman ...)
+	TODO: check
 CVE-2019-3594
 	RESERVED
 CVE-2019-3593 (Exploitation of Privilege/Trust vulnerability in Microsoft Windows cli ...)
 	NOT-FOR-US: McAfee
 CVE-2019-3592 (Privilege escalation vulnerability in McAfee Agent (MA) before 5.6.1 H ...)
 	NOT-FOR-US: McAfee
-CVE-2019-3591
-	RESERVED
+CVE-2019-3591 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+	TODO: check
 CVE-2019-3590
 	RESERVED
 CVE-2019-3589
@@ -28404,8 +28404,8 @@ CVE-2019-3487
 	RESERVED
 CVE-2019-3486
 	RESERVED
-CVE-2019-3485
-	RESERVED
+CVE-2019-3485 (Mitigates a stored cross site scripting issue in ArcSight Logger versi ...)
+	TODO: check
 CVE-2019-3484 (Mitigates a remote code execution issue in ArcSight Logger versions pr ...)
 	NOT-FOR-US: ArcSight Logger
 CVE-2019-3483 (Mitigates a potential information leakage issue in ArcSight Logger ver ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fb45a793cc67b37f08f9a5734382f0c2a501c4d9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fb45a793cc67b37f08f9a5734382f0c2a501c4d9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190724/f5c9e942/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list