[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat Mar 9 20:10:39 GMT 2019 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7947aff1 by security tracker role at 2019-03-09T20:10:30Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2019-9644
+	RESERVED
+CVE-2019-9643
+	RESERVED
+CVE-2019-9642
+	RESERVED
 CVE-2019-9636 (Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: ...)
 	- python3.7 <unfixed> (bug #924072)
 	- python3.6 <unfixed>
@@ -35,31 +41,36 @@ CVE-2019-1003029 (A sandbox bypass vulnerability exists in Jenkins Script Securi
 	NOT-FOR-US: Jenkins plugin
 CVE-2019-9634 (Go through 1.12 on Windows misuses certain LoadLibrary functionality, ...)
 	TODO: check
-CVE-2019-9637 [rename() across the device may allow unwanted access during processing]
+CVE-2019-9637 (An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and ...)
+	{DSA-4403-1}
 	- php7.3 7.3.3-1
 	- php7.0 <removed>
 	- php5 <removed>
 	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77630
-CVE-2019-9641 [Uninitialized read in exif_process_IFD_in_TIFF]
+CVE-2019-9641 (An issue was discovered in the EXIF component in PHP before 7.1.27, ...)
+	{DSA-4403-1}
 	- php7.3 7.3.3-1
 	- php7.0 <removed>
 	- php5 <removed>
 	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77509
-CVE-2019-9640 [Invalid Read on exif_process_SOFn]
+CVE-2019-9640 (An issue was discovered in the EXIF component in PHP before 7.1.27, ...)
+	{DSA-4403-1}
 	- php7.3 7.3.3-1
 	- php7.0 <removed>
 	- php5 <removed>
 	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77540
-CVE-2019-9639
+CVE-2019-9639 (An issue was discovered in the EXIF component in PHP before 7.1.27, ...)
+	{DSA-4403-1}
 	- php7.3 7.3.3-1
 	- php7.0 <removed>
 	- php5 <removed>
 	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77659
-CVE-2019-9638 [Uninitialized read in exif_process_IFD_in_MAKERNOTE / 77563]
+CVE-2019-9638 (An issue was discovered in the EXIF component in PHP before 7.1.27, ...)
+	{DSA-4403-1}
 	- php7.3 7.3.3-1
 	- php7.0 <removed>
 	- php5 <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7947aff1369722b84502bfb86b96704e88f6082b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7947aff1369722b84502bfb86b96704e88f6082b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190309/154d3f25/attachment.html>

More information about the debian-security-tracker-commits mailing list