[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Fri Mar 15 20:10:26 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2b432832 by security tracker role at 2019-03-15T20:10:17Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,33 @@
+CVE-2019-9839
+	RESERVED
+CVE-2019-9838
+	RESERVED
+CVE-2019-9837
+	RESERVED
+CVE-2019-9836
+	RESERVED
+CVE-2019-9835 (The receiver (aka bridge) component of Fujitsu Wireless Keyboard Set ...)
+	TODO: check
+CVE-2019-9834 (The Netdata web application through 1.13.0 allows remote attackers to ...)
+	TODO: check
+CVE-2019-9833 (The Screen Stream application through 3.0.15 for Android allows remote ...)
+	TODO: check
+CVE-2019-9832 (The AirDrop application through 2.0 for Android allows remote attackers ...)
+	TODO: check
+CVE-2019-9831 (The AirMore application through 1.6.1 for Android allows remote ...)
+	TODO: check
+CVE-2018-20805
+	RESERVED
+CVE-2018-20804
+	RESERVED
+CVE-2018-20803
+	RESERVED
+CVE-2018-20802
+	RESERVED
+CVE-2017-18363
+	RESERVED
+CVE-2015-9283
+	RESERVED
 CVE-2019-9830
 	RESERVED
 CVE-2019-9829 (Maccms 10 allows remote attackers to execute arbitrary PHP code by ...)
@@ -16396,48 +16426,39 @@ CVE-2018-20184 (In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-base
 	NOTE: https://sourceforge.net/p/graphicsmagick/bugs/583/
 CVE-2018-20183
 	RESERVED
-CVE-2018-20182 [Remote code execution in seamless_process_line()]
-	RESERVED
+CVE-2018-20182 (rdesktop versions up to and including v1.8.3 contain a Buffer Overflow ...)
 	{DSA-4394-1 DLA-1683-1}
 	- rdesktop 1.8.4-1
 	NOTE: https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2 (v1.8.4)
-CVE-2018-20181 [Remote code execution in seamless_process()]
-	RESERVED
+CVE-2018-20181 (rdesktop versions up to and including v1.8.3 contain an Integer ...)
 	{DSA-4394-1 DLA-1683-1}
 	- rdesktop 1.8.4-1
 	NOTE: https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2 (v1.8.4)
-CVE-2018-20180 [Remote code execution in rdpsnddbg_process()]
-	RESERVED
+CVE-2018-20180 (rdesktop versions up to and including v1.8.3 contain an Integer ...)
 	{DSA-4394-1 DLA-1683-1}
 	- rdesktop 1.8.4-1
 	NOTE: https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2 (v1.8.4)
-CVE-2018-20179 [Remote code execution in lspci_process()]
-	RESERVED
+CVE-2018-20179 (rdesktop versions up to and including v1.8.3 contain an Integer ...)
 	{DSA-4394-1 DLA-1683-1}
 	- rdesktop 1.8.4-1
 	NOTE: https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2 (v1.8.4)
-CVE-2018-20178 [DoS in process_demand_active()]
-	RESERVED
+CVE-2018-20178 (rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds ...)
 	{DSA-4394-1 DLA-1683-1}
 	- rdesktop 1.8.4-1
 	NOTE: https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2 (v1.8.4)
-CVE-2018-20177 [Memory corruption in rdp_in_unistr()]
-	RESERVED
+CVE-2018-20177 (rdesktop versions up to and including v1.8.3 contain an Integer ...)
 	{DSA-4394-1 DLA-1683-1}
 	- rdesktop 1.8.4-1
 	NOTE: https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2 (v1.8.4)
-CVE-2018-20176 [DoS in sec_parse_crypt_info() and in sec_recv()]
-	RESERVED
+CVE-2018-20176 (rdesktop versions up to and including v1.8.3 contain several Out-Of- ...)
 	{DSA-4394-1 DLA-1683-1}
 	- rdesktop 1.8.4-1
 	NOTE: https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2 (v1.8.4)
-CVE-2018-20175 [DoS in mcs_recv_connect_response() and in mcs_parse_domain_params()]
-	RESERVED
+CVE-2018-20175 (rdesktop versions up to and including v1.8.3 contains several Integer ...)
 	{DSA-4394-1 DLA-1683-1}
 	- rdesktop 1.8.4-1
 	NOTE: https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2 (v1.8.4)
-CVE-2018-20174 [Major information leak in ui_clip_handle_data()]
-	RESERVED
+CVE-2018-20174 (rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds ...)
 	{DSA-4394-1 DLA-1683-1}
 	- rdesktop 1.8.4-1
 	NOTE: https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2 (v1.8.4)
@@ -25047,14 +25068,14 @@ CVE-2018-19395 (ext/standard/var.c in PHP 5.x through 7.1.24 on Windows allows .
 	- php7.0 <not-affected> (Windows-specific)
 	- php5 <not-affected> (Windows-specific)
 	NOTE: https://bugs.php.net/bug.php?id=77177
-CVE-2018-19394
-	RESERVED
-CVE-2018-19393
-	RESERVED
-CVE-2018-19392
-	RESERVED
-CVE-2018-19391
-	RESERVED
+CVE-2018-19394 (Cobham Satcom Sailor 800 and 900 devices contained persistent XSS, ...)
+	TODO: check
+CVE-2018-19393 (Cobham Satcom Sailor 800 and 900 devices contained a vulnerability that ...)
+	TODO: check
+CVE-2018-19392 (Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an ...)
+	TODO: check
+CVE-2018-19391 (Cobham Satcom Sailor 250 and 500 devices before 1.25 contained ...)
+	TODO: check
 CVE-2018-19390 (FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to ...)
 	NOT-FOR-US: Foxit
 CVE-2018-19389 (FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to ...)
@@ -28269,16 +28290,16 @@ CVE-2018-18258 (An issue was discovered in BageCMS 3.1.3. The attacker can execu
 	NOT-FOR-US: BageCMS
 CVE-2018-18257 (An issue was discovered in BageCMS 3.1.3. An attacker can delete any ...)
 	NOT-FOR-US: BageCMS
-CVE-2018-18256
-	RESERVED
-CVE-2018-18255
-	RESERVED
-CVE-2018-18254
-	RESERVED
-CVE-2018-18253
-	RESERVED
-CVE-2018-18252
-	RESERVED
+CVE-2018-18256 (An issue was discovered in CapMon Access Manager 5.4.1.1005. A regular ...)
+	TODO: check
+CVE-2018-18255 (An issue was discovered in CapMon Access Manager 5.4.1.1005. The ...)
+	TODO: check
+CVE-2018-18254 (An issue was discovered in CapMon Access Manager 5.4.1.1005. An ...)
+	TODO: check
+CVE-2018-18253 (An issue was discovered in CapMon Access Manager 5.4.1.1005. ...)
+	TODO: check
+CVE-2018-18252 (An issue was discovered in CapMon Access Manager 5.4.1.1005. ...)
+	TODO: check
 CVE-2018-18251
 	RESERVED
 CVE-2019-0085



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2b4328326d32020248d710738e5b9221f81b1255

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2b4328326d32020248d710738e5b9221f81b1255
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190315/9518d52a/attachment.html>


More information about the debian-security-tracker-commits mailing list