[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Sat Mar 16 20:10:34 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f8f3605d by security tracker role at 2019-03-16T20:10:25Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,5 @@
+CVE-2019-9846 (RockOA 1.8.7 allows remote attackers to obtain sensitive information ...)
+ TODO: check
CVE-2019-9845
RESERVED
CVE-2019-9844 (simple-markdown.js in Khan Academy simple-markdown before 0.4.4 allows ...)
@@ -6271,8 +6273,8 @@ CVE-2019-7225
RESERVED
CVE-2019-7224
RESERVED
-CVE-2019-7223
- RESERVED
+CVE-2019-7223 (InvoicePlane 1.5 has stored XSS via the index.php/invoices/ajax/save ...)
+ TODO: check
CVE-2019-7222 [KVM: x86: work around leak of uninitialized stack contents]
RESERVED
- linux 4.19.20-1
@@ -13851,7 +13853,7 @@ CVE-2019-3863
NOTE: https://github.com/libssh2/libssh2/pull/315
CVE-2019-3862
RESERVED
- - libssh2 <unfixed>
+ - libssh2 <unfixed>
NOTE: https://libssh2.org/CVE-2019-3862.html
NOTE: https://github.com/libssh2/libssh2/pull/316
CVE-2019-3861
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f8f3605dc97bd64ab66022b3a3df84c63bbbcfe1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f8f3605dc97bd64ab66022b3a3df84c63bbbcfe1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190316/cd8be144/attachment.html>
More information about the debian-security-tracker-commits
mailing list