[Git][security-tracker-team/security-tracker][master] Add CVE-2019-9628/xmltooling
Salvatore Bonaccorso
carnil at debian.org
Mon Mar 11 20:56:43 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ab0db4d6 by Salvatore Bonaccorso at 2019-03-11T20:56:11Z
Add CVE-2019-9628/xmltooling
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -216,8 +216,12 @@ CVE-2019-9630
RESERVED
CVE-2019-9629
RESERVED
-CVE-2019-9628
+CVE-2019-9628 [XML parser class fails to trap exceptions on malformed XML declaration]
RESERVED
+ - xmltooling <unfixed>
+ NOTE: https://shibboleth.net/community/advisories/secadv_20190311.txt
+ NOTE: https://issues.shibboleth.net/jira/browse/CPPXT-143
+ NOTE: https://git.shibboleth.net/view/?p=cpp-xmltooling.git;a=commit;h=af27c422f551e16989ff6f1722d83614c8550eb5
CVE-2019-9627 (A buffer overflow in the kernel driver CybKernelTracker.sys in CyberArk ...)
NOT-FOR-US: CyberArk Endpoint Privilege Manager
CVE-2019-9626 (PHPSHE 1.7 allows module/index/cart.php pintuan_id SQL Injection to ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ab0db4d690d36b5f5e131d01fe2945e54645348c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ab0db4d690d36b5f5e131d01fe2945e54645348c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190311/c394781a/attachment.html>
More information about the debian-security-tracker-commits
mailing list