[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Thu Mar 14 08:10:28 GMT 2019 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
32307d8e by security tracker role at 2019-03-14T08:10:18Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,63 @@
+CVE-2019-9779 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a ...)
+	TODO: check
+CVE-2019-9778 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a ...)
+	TODO: check
+CVE-2019-9777 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a ...)
+	TODO: check
+CVE-2019-9776 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a ...)
+	TODO: check
+CVE-2019-9775 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an ...)
+	TODO: check
+CVE-2019-9774 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an ...)
+	TODO: check
+CVE-2019-9773 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a ...)
+	TODO: check
+CVE-2019-9772 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a ...)
+	TODO: check
+CVE-2019-9771 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a ...)
+	TODO: check
+CVE-2019-9770 (An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a ...)
+	TODO: check
+CVE-2019-9769 (PilusCart 1.4.1 is vulnerable to index.php?module=users&action=newUser ...)
+	TODO: check
+CVE-2019-9768 (Thinkst Canarytokens through 2019-03-01 relies on limited variation in ...)
+	TODO: check
+CVE-2019-9767 (Stack-based buffer overflow in Free MP3 CD Ripper 2.6, when converting ...)
+	TODO: check
+CVE-2019-9766 (Stack-based buffer overflow in Free MP3 CD Ripper 2.6, when converting ...)
+	TODO: check
+CVE-2019-9765 (In Blog_mini 1.0, XSS exists via the author name of a comment reply in ...)
+	TODO: check
+CVE-2019-9764
+	RESERVED
+CVE-2019-9763
+	RESERVED
+CVE-2019-9762 (A SQL Injection was discovered in PHPSHE 1.7 in ...)
+	TODO: check
+CVE-2019-9761 (An XXE issue was discovered in PHPSHE 1.7, which can be used to read any ...)
+	TODO: check
+CVE-2019-9760 (FTPGetter Standard v.5.97.0.177 allows remote code execution when a ...)
+	TODO: check
+CVE-2019-9759
+	RESERVED
+CVE-2019-9758
+	RESERVED
+CVE-2019-9757
+	RESERVED
+CVE-2019-9756
+	RESERVED
+CVE-2019-9755
+	RESERVED
+CVE-2019-9754 (An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. ...)
+	TODO: check
+CVE-2019-9753
+	RESERVED
+CVE-2019-9752 (An issue was discovered in Open Ticket Request System (OTRS) 5.x before ...)
+	TODO: check
+CVE-2019-9751 (An issue was discovered in Open Ticket Request System (OTRS) 6.x before ...)
+	TODO: check
+CVE-2018-20800 (An issue was discovered in Open Ticket Request System (OTRS) 5.0.31 and ...)
+	TODO: check
 CVE-2019-9750 (In IoTivity through 1.3.1, the CoAP server interface can be used for ...)
 	- iotivity <itp> (bug #824155)
 CVE-2019-9749 (An issue was discovered in the MQTT input plugin in Fluent Bit through ...)
@@ -7439,18 +7499,18 @@ CVE-2019-6603
 	RESERVED
 CVE-2019-6602
 	RESERVED
-CVE-2019-6601
-	RESERVED
-CVE-2019-6600
-	RESERVED
-CVE-2019-6599
-	RESERVED
-CVE-2019-6598
-	RESERVED
-CVE-2019-6597
-	RESERVED
-CVE-2019-6596
-	RESERVED
+CVE-2019-6601 (In BIG-IP 13.0.0, 12.1.0-12.1.3.7, 11.6.1-11.6.3.2, or 11.5.1-11.5.8, ...)
+	TODO: check
+CVE-2019-6600 (In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.3, 12.1.0-12.1.3.7, ...)
+	TODO: check
+CVE-2019-6599 (In BIG-IP 11.6.1-11.6.3.2 or 11.5.1-11.5.8, or Enterprise Manager ...)
+	TODO: check
+CVE-2019-6598 (In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, ...)
+	TODO: check
+CVE-2019-6597 (In BIG-IP 13.0.0-13.1.1.1, 12.1.0-12.1.3.7, 11.6.1-11.6.3.2, or ...)
+	TODO: check
+CVE-2019-6596 (In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.1, 12.1.0-12.1.3.6, ...)
+	TODO: check
 CVE-2019-6595 (Cross-site scripting (XSS) vulnerability in F5 BIG-IP Access Policy ...)
 	NOT-FOR-US: F5 BIG-IP
 CVE-2019-6594 (On BIG-IP 11.5.1-11.6.3.2, 12.1.3.4-12.1.3.7, 13.0.0 HF1-13.1.1.1, and ...)
@@ -13821,8 +13881,8 @@ CVE-2019-3787
 	RESERVED
 CVE-2019-3786
 	RESERVED
-CVE-2019-3785
-	RESERVED
+CVE-2019-3785 (Cloud Foundry Cloud Controller, versions prior to 1.78.0, contain an ...)
+	TODO: check
 CVE-2019-3784 (Cloud Foundry Stratos, versions prior to 2.3.0, contains an insecure ...)
 	NOT-FOR-US: Cloud Foundry Stratos
 CVE-2019-3783 (Cloud Foundry Stratos, versions prior to 2.3.0, deploys with a public ...)
@@ -13959,18 +14019,18 @@ CVE-2019-3718
 	RESERVED
 CVE-2019-3717
 	RESERVED
-CVE-2019-3716
-	RESERVED
-CVE-2019-3715
-	RESERVED
+CVE-2019-3716 (RSA Archer versions, prior to 6.5 SP2, contain an information exposure ...)
+	TODO: check
+CVE-2019-3715 (RSA Archer versions, prior to 6.5 SP1, contain an information exposure ...)
+	TODO: check
 CVE-2019-3714
 	RESERVED
 CVE-2019-3713
 	RESERVED
 CVE-2019-3712 (Dell WES Wyse Device Agent versions prior to 14.1.2.9 and Dell Wyse ...)
 	NOT-FOR-US: Dell
-CVE-2019-3711
-	RESERVED
+CVE-2019-3711 (RSA Authentication Manager versions prior to 8.4 P1 contain an ...)
+	TODO: check
 CVE-2019-3710
 	RESERVED
 CVE-2019-3709
@@ -20335,8 +20395,8 @@ CVE-2019-1725
 	RESERVED
 CVE-2019-1724
 	RESERVED
-CVE-2019-1723
-	RESERVED
+CVE-2019-1723 (A vulnerability in the Cisco Common Services Platform Collector (CSPC) ...)
+	TODO: check
 CVE-2019-1722
 	RESERVED
 CVE-2019-1721
@@ -78456,8 +78516,8 @@ CVE-2018-0391 (A vulnerability in the password change function of Cisco Prime ..
 	NOT-FOR-US: Cisco
 CVE-2018-0390 (A vulnerability in the web framework of Cisco Webex could allow an ...)
 	NOT-FOR-US: Cisco
-CVE-2018-0389
-	RESERVED
+CVE-2018-0389 (A vulnerability in the implementation of Session Initiation Protocol ...)
+	TODO: check
 CVE-2018-0388 (A vulnerability in the web-based interface of Cisco Wireless LAN ...)
 	NOT-FOR-US: Cisco
 CVE-2018-0387 (A vulnerability in Cisco Webex Teams (for Windows and macOS) could ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/32307d8e2cdcd431bf45505d3e59db8a8dfd0bc0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/32307d8e2cdcd431bf45505d3e59db8a8dfd0bc0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190314/8361e6f5/attachment.html>

More information about the debian-security-tracker-commits mailing list