[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Mon Jun 24 09:10:38 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
28fd5cc8 by security tracker role at 2019-06-24T08:10:25Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,4 +1,10 @@
-CVE-2019-12935
+CVE-2019-12937 (apps/gsudo.c in gsudo in ToaruOS through 1.10.9 has a buffer overflow  ...)
+	TODO: check
+CVE-2019-12936 (BlueStacks App Player 2, 3, and 4 before 4.90 allows DNS Rebinding for ...)
+	TODO: check
+CVE-2019-12934
+	RESERVED
+CVE-2019-12935 (Shopware before 5.5.8 has XSS via the Query String to the backend/Logi ...)
 	NOT-FOR-US: Shopware
 CVE-2019-12933 (An XSS issue on the PIX-Link Repeater/Router LV-WR09 with firmware v28 ...)
 	NOT-FOR-US: PIX-Link Repeater/Router LV-WR09
@@ -6897,11 +6903,13 @@ CVE-2019-10164 [postgres: Stack-based buffer overflow via setting a password]
 	NOTE: https://www.postgresql.org/about/news/1949/
 CVE-2019-10163 [Denial of service via NOTIFY packets]
 	RESERVED
+	{DSA-4470-1}
 	- pdns 4.1.6-3
 	NOTE: https://www.openwall.com/lists/oss-security/2019/06/21/5
 	NOTE: https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-05.html
 CVE-2019-10162 [Denial of service via crafted zone records]
 	RESERVED
+	{DSA-4470-1}
 	- pdns 4.1.6-3
 	NOTE: https://www.openwall.com/lists/oss-security/2019/06/21/5
 	NOTE: https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-04.html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/28fd5cc8c17b8d16416cd7c4853d280d4cb6bb94

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/28fd5cc8c17b8d16416cd7c4853d280d4cb6bb94
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190624/f3a1673a/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list