[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Fri May 3 21:10:43 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0fbdc530 by security tracker role at 2019-05-03T20:10:34Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,155 @@
+CVE-2019-11765
+ RESERVED
+CVE-2019-11764
+ RESERVED
+CVE-2019-11763
+ RESERVED
+CVE-2019-11762
+ RESERVED
+CVE-2019-11761
+ RESERVED
+CVE-2019-11760
+ RESERVED
+CVE-2019-11759
+ RESERVED
+CVE-2019-11758
+ RESERVED
+CVE-2019-11757
+ RESERVED
+CVE-2019-11756
+ RESERVED
+CVE-2019-11755
+ RESERVED
+CVE-2019-11754
+ RESERVED
+CVE-2019-11753
+ RESERVED
+CVE-2019-11752
+ RESERVED
+CVE-2019-11751
+ RESERVED
+CVE-2019-11750
+ RESERVED
+CVE-2019-11749
+ RESERVED
+CVE-2019-11748
+ RESERVED
+CVE-2019-11747
+ RESERVED
+CVE-2019-11746
+ RESERVED
+CVE-2019-11745
+ RESERVED
+CVE-2019-11744
+ RESERVED
+CVE-2019-11743
+ RESERVED
+CVE-2019-11742
+ RESERVED
+CVE-2019-11741
+ RESERVED
+CVE-2019-11740
+ RESERVED
+CVE-2019-11739
+ RESERVED
+CVE-2019-11738
+ RESERVED
+CVE-2019-11737
+ RESERVED
+CVE-2019-11736
+ RESERVED
+CVE-2019-11735
+ RESERVED
+CVE-2019-11734
+ RESERVED
+CVE-2019-11733
+ RESERVED
+CVE-2019-11732
+ RESERVED
+CVE-2019-11731
+ RESERVED
+CVE-2019-11730
+ RESERVED
+CVE-2019-11729
+ RESERVED
+CVE-2019-11728
+ RESERVED
+CVE-2019-11727
+ RESERVED
+CVE-2019-11726
+ RESERVED
+CVE-2019-11725
+ RESERVED
+CVE-2019-11724
+ RESERVED
+CVE-2019-11723
+ RESERVED
+CVE-2019-11722
+ RESERVED
+CVE-2019-11721
+ RESERVED
+CVE-2019-11720
+ RESERVED
+CVE-2019-11719
+ RESERVED
+CVE-2019-11718
+ RESERVED
+CVE-2019-11717
+ RESERVED
+CVE-2019-11716
+ RESERVED
+CVE-2019-11715
+ RESERVED
+CVE-2019-11714
+ RESERVED
+CVE-2019-11713
+ RESERVED
+CVE-2019-11712
+ RESERVED
+CVE-2019-11711
+ RESERVED
+CVE-2019-11710
+ RESERVED
+CVE-2019-11709
+ RESERVED
+CVE-2019-11708
+ RESERVED
+CVE-2019-11707
+ RESERVED
+CVE-2019-11706
+ RESERVED
+CVE-2019-11705
+ RESERVED
+CVE-2019-11704
+ RESERVED
+CVE-2019-11703
+ RESERVED
+CVE-2019-11702
+ RESERVED
+CVE-2019-11701
+ RESERVED
+CVE-2019-11700
+ RESERVED
+CVE-2019-11699
+ RESERVED
+CVE-2019-11698
+ RESERVED
+CVE-2019-11697
+ RESERVED
+CVE-2019-11696
+ RESERVED
+CVE-2019-11695
+ RESERVED
+CVE-2019-11694
+ RESERVED
+CVE-2019-11693
+ RESERVED
+CVE-2019-11692
+ RESERVED
+CVE-2019-11691
+ RESERVED
+CVE-2019-11690 (gen_rand_uuid in lib/uuid.c in Das U-Boot v2014.04 through v2019.04 la ...)
+ TODO: check
CVE-2019-11689
RESERVED
CVE-2019-11688
@@ -4319,6 +4471,7 @@ CVE-2019-9894 (A remotely triggerable memory overwrite in RSA key exchange in Pu
NOTE: https://git.tartarus.org/?p=simon/putty.git;a=commitdiff;h=d82854999516046122501b2e145099740ed0284f
CVE-2019-9892 [OSA-2019-04]
RESERVED
+ {DLA-1774-1}
- otrs2 6.0.18-1
NOTE: OTRS 6: https://github.com/OTRS/otrs/commit/3617488c6c28e06203e4127c7b031140f775a685
NOTE: OTRS 5: https://github.com/OTRS/otrs/commit/c3b9342a85c6f2c9382e074ad9cc440ce80a6f34
@@ -13094,16 +13247,16 @@ CVE-2019-6617
RESERVED
CVE-2019-6616
RESERVED
-CVE-2019-6615
- RESERVED
+CVE-2019-6615 (On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6 ...)
+ TODO: check
CVE-2019-6614
RESERVED
-CVE-2019-6613
- RESERVED
-CVE-2019-6612
- RESERVED
-CVE-2019-6611
- RESERVED
+CVE-2019-6613 (On BIG-IP 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.2- ...)
+ TODO: check
+CVE-2019-6612 (On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6 ...)
+ TODO: check
+CVE-2019-6611 (When BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11 ...)
+ TODO: check
CVE-2019-6610 (On BIG-IP versions 14.0.0-14.0.0.4, 13.0.0-13.1.1.1, 12.1.0-12.1.4, 11 ...)
NOT-FOR-US: F5 BIG-IP
CVE-2019-6609 (Platform dependent weakness. This issue only impacts iSeries platforms ...)
@@ -24041,7 +24194,7 @@ CVE-2019-2504 (Vulnerability in the Oracle VM VirtualBox component of Oracle Vir
- virtualbox 5.2.24-dfsg-1
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
CVE-2019-2503 (Vulnerability in the MySQL Server component of Oracle MySQL (subcompon ...)
- {DLA-1570-1}
+ {DSA-4341-1 DLA-1570-1}
- mysql-5.7 5.7.25-1 (bug #919817)
- mariadb-10.0 <removed>
NOTE: Fixed in MariaDB: 10.0.37
@@ -26002,22 +26155,22 @@ CVE-2019-1861
RESERVED
CVE-2019-1860
RESERVED
-CVE-2019-1859
- RESERVED
+CVE-2019-1859 (A vulnerability in the Secure Shell (SSH) authentication process of Ci ...)
+ TODO: check
CVE-2019-1858
RESERVED
-CVE-2019-1857
- RESERVED
-CVE-2019-1856
- RESERVED
+CVE-2019-1857 (A vulnerability in the web-based management interface of Cisco HyperFl ...)
+ TODO: check
+CVE-2019-1856 (A vulnerability in the web-based management interface of Cisco Prime C ...)
+ TODO: check
CVE-2019-1855
RESERVED
-CVE-2019-1854
- RESERVED
+CVE-2019-1854 (A vulnerability in the management web interface of Cisco Expressway Se ...)
+ TODO: check
CVE-2019-1853
RESERVED
-CVE-2019-1852
- RESERVED
+CVE-2019-1852 (A vulnerability in the web-based management interface of Cisco Prime N ...)
+ TODO: check
CVE-2019-1851
RESERVED
CVE-2019-1850
@@ -26032,8 +26185,8 @@ CVE-2019-1846
RESERVED
CVE-2019-1845
RESERVED
-CVE-2019-1844
- RESERVED
+CVE-2019-1844 (A vulnerability in certain attachment detection mechanisms of the Cisc ...)
+ TODO: check
CVE-2019-1843
RESERVED
CVE-2019-1842
@@ -26044,12 +26197,12 @@ CVE-2019-1840 (A vulnerability in the DHCPv6 input packet processor of Cisco Pri
NOT-FOR-US: Cisco
CVE-2019-1839
RESERVED
-CVE-2019-1838
- RESERVED
+CVE-2019-1838 (A vulnerability in the web-based management interface of Cisco Applica ...)
+ TODO: check
CVE-2019-1837 (A vulnerability in the User Data Services (UDS) API of Cisco Unified C ...)
NOT-FOR-US: Cisco
-CVE-2019-1836
- RESERVED
+CVE-2019-1836 (A vulnerability in the system shell for Cisco Nexus 9000 Series Fabric ...)
+ TODO: check
CVE-2019-1835 (A vulnerability in the CLI of Cisco Aironet Access Points (APs) could ...)
NOT-FOR-US: Cisco
CVE-2019-1834 (A vulnerability in the internal packet processing of Cisco Aironet Ser ...)
@@ -26086,10 +26239,10 @@ CVE-2019-1819
RESERVED
CVE-2019-1818
RESERVED
-CVE-2019-1817
- RESERVED
-CVE-2019-1816
- RESERVED
+CVE-2019-1817 (A vulnerability in the web proxy functionality of Cisco AsyncOS Softwa ...)
+ TODO: check
+CVE-2019-1816 (A vulnerability in the log subscription subsystem of the Cisco Web Sec ...)
+ TODO: check
CVE-2019-1815
RESERVED
CVE-2019-1814
@@ -26106,16 +26259,16 @@ CVE-2019-1809
RESERVED
CVE-2019-1808
RESERVED
-CVE-2019-1807
- RESERVED
+CVE-2019-1807 (A vulnerability in the session management functionality of the web UI ...)
+ TODO: check
CVE-2019-1806
RESERVED
CVE-2019-1805 (A vulnerability in certain access control mechanisms for the Secure Sh ...)
NOT-FOR-US: Cisco
-CVE-2019-1804
- RESERVED
-CVE-2019-1803
- RESERVED
+CVE-2019-1804 (A vulnerability in the SSH key management for the Cisco Nexus 9000 Ser ...)
+ TODO: check
+CVE-2019-1803 (A vulnerability in the filesystem management for the Cisco Nexus 9000 ...)
+ TODO: check
CVE-2019-1802 (A vulnerability in the web-based management interface of Cisco Firepow ...)
NOT-FOR-US: Cisco
CVE-2019-1801
@@ -26297,8 +26450,8 @@ CVE-2019-1726
RESERVED
CVE-2019-1725 (A vulnerability in the local management CLI implementation for specifi ...)
NOT-FOR-US: Cisco
-CVE-2019-1724
- RESERVED
+CVE-2019-1724 (A vulnerability in the session management functionality of the web-bas ...)
+ TODO: check
CVE-2019-1723 (A vulnerability in the Cisco Common Services Platform Collector (CSPC) ...)
NOT-FOR-US: Cisco
CVE-2019-1722 (A vulnerability in the FindMe feature of Cisco Expressway Series and C ...)
@@ -26315,54 +26468,54 @@ CVE-2019-1717
RESERVED
CVE-2019-1716 (A vulnerability in the web-based management interface of Session Initi ...)
NOT-FOR-US: Cisco
-CVE-2019-1715
- RESERVED
-CVE-2019-1714
- RESERVED
-CVE-2019-1713
- RESERVED
+CVE-2019-1715 (A vulnerability in the Deterministic Random Bit Generator (DRBG), also ...)
+ TODO: check
+CVE-2019-1714 (A vulnerability in the implementation of Security Assertion Markup Lan ...)
+ TODO: check
+CVE-2019-1713 (A vulnerability in the web-based management interface of Cisco Adaptiv ...)
+ TODO: check
CVE-2019-1712 (A vulnerability in the Protocol Independent Multicast (PIM) feature of ...)
NOT-FOR-US: Cisco
CVE-2019-1711 (A vulnerability in the Event Management Service daemon (emsd) of Cisco ...)
NOT-FOR-US: Cisco
CVE-2019-1710 (A vulnerability in the sysadmin virtual machine (VM) on Cisco ASR 9000 ...)
NOT-FOR-US: Cisco
-CVE-2019-1709
- RESERVED
-CVE-2019-1708
- RESERVED
+CVE-2019-1709 (A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Sof ...)
+ TODO: check
+CVE-2019-1708 (A vulnerability in the Internet Key Exchange Version 2 Mobility and Mu ...)
+ TODO: check
CVE-2019-1707 (A vulnerability in the web-based management interface of Cisco DNA Cen ...)
NOT-FOR-US: Cisco
-CVE-2019-1706
- RESERVED
-CVE-2019-1705
- RESERVED
-CVE-2019-1704
- RESERVED
-CVE-2019-1703
- RESERVED
+CVE-2019-1706 (A vulnerability in the software cryptography module of the Cisco Adapt ...)
+ TODO: check
+CVE-2019-1705 (A vulnerability in the remote access VPN session manager of Cisco Adap ...)
+ TODO: check
+CVE-2019-1704 (Multiple vulnerabilities in the Server Message Block (SMB) Protocol pr ...)
+ TODO: check
+CVE-2019-1703 (A vulnerability in the internal packet-processing functionality of Cis ...)
+ TODO: check
CVE-2019-1702 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
NOT-FOR-US: Cisco
-CVE-2019-1701
- RESERVED
+CVE-2019-1701 (Multiple vulnerabilities in the WebVPN service of Cisco Adaptive Secur ...)
+ TODO: check
CVE-2019-1700 (A vulnerability in field-programmable gate array (FPGA) ingress buffer ...)
NOT-FOR-US: Cisco
-CVE-2019-1699
- RESERVED
+CVE-2019-1699 (A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Sof ...)
+ TODO: check
CVE-2019-1698 (A vulnerability in the web-based user interface of Cisco Internet of T ...)
NOT-FOR-US: Cisco
-CVE-2019-1697
- RESERVED
-CVE-2019-1696
- RESERVED
-CVE-2019-1695
- RESERVED
-CVE-2019-1694
- RESERVED
-CVE-2019-1693
- RESERVED
-CVE-2019-1692
- RESERVED
+CVE-2019-1697 (A vulnerability in the implementation of the Lightweight Directory Acc ...)
+ TODO: check
+CVE-2019-1696 (Multiple vulnerabilities in the Server Message Block (SMB) Protocol pr ...)
+ TODO: check
+CVE-2019-1695 (A vulnerability in the detection engine of Cisco Adaptive Security App ...)
+ TODO: check
+CVE-2019-1694 (A vulnerability in the TCP processing engine of Cisco Adaptive Securit ...)
+ TODO: check
+CVE-2019-1693 (A vulnerability in the WebVPN service of Cisco Adaptive Security Appli ...)
+ TODO: check
+CVE-2019-1692 (A vulnerability in the web-based management interface of Cisco Applica ...)
+ TODO: check
CVE-2019-1691 (A vulnerability in the detection engine of Cisco Firepower Threat Defe ...)
NOT-FOR-US: Cisco
CVE-2019-1690 (A vulnerability in the management interface of Cisco Application Polic ...)
@@ -26371,8 +26524,8 @@ CVE-2019-1689 (A vulnerability in the client application for iOS of Cisco Webex
NOT-FOR-US: Cisco
CVE-2019-1688 (A vulnerability in the management web interface of Cisco Network Assur ...)
NOT-FOR-US: Cisco
-CVE-2019-1687
- RESERVED
+CVE-2019-1687 (A vulnerability in the TCP proxy functionality for Cisco Adaptive Secu ...)
+ TODO: check
CVE-2019-1686 (A vulnerability in the TCP flags inspection feature for access control ...)
NOT-FOR-US: Cisco
CVE-2019-1685 (A vulnerability in the Security Assertion Markup Language (SAML) singl ...)
@@ -26381,8 +26534,8 @@ CVE-2019-1684 (A vulnerability in the Cisco Discovery Protocol or Link Layer Dis
NOT-FOR-US: Cisco
CVE-2019-1683 (A vulnerability in the certificate handling component of the Cisco SPA ...)
NOT-FOR-US: Cisco
-CVE-2019-1682
- RESERVED
+CVE-2019-1682 (A vulnerability in the FUSE filesystem functionality for Cisco Applica ...)
+ TODO: check
CVE-2019-1681 (A vulnerability in the TFTP service of Cisco Network Convergence Syste ...)
NOT-FOR-US: Cisco
CVE-2019-1680 (A vulnerability in Cisco Webex Business Suite could allow an unauthent ...)
@@ -26475,8 +26628,8 @@ CVE-2019-1637 (A vulnerability in the Cisco Webex Network Recording Player for M
NOT-FOR-US: Cisco
CVE-2019-1636 (A vulnerability in the Cisco Webex Teams client, formerly Cisco Spark, ...)
NOT-FOR-US: Cisco
-CVE-2019-1635
- RESERVED
+CVE-2019-1635 (A vulnerability in the call-handling functionality of Session Initiati ...)
+ TODO: check
CVE-2019-1634
RESERVED
CVE-2019-1633
@@ -26561,20 +26714,20 @@ CVE-2019-1594 (A vulnerability in the 802.1X implementation for Cisco NX-OS Soft
NOT-FOR-US: Cisco
CVE-2019-1593 (A vulnerability in the Bash shell implementation for Cisco NX-OS Softw ...)
NOT-FOR-US: Cisco
-CVE-2019-1592
- RESERVED
+CVE-2019-1592 (A vulnerability in the background operations functionality of Cisco Ne ...)
+ TODO: check
CVE-2019-1591 (A vulnerability in a specific CLI command implementation of Cisco Nexu ...)
NOT-FOR-US: Cisco
-CVE-2019-1590
- RESERVED
-CVE-2019-1589
- RESERVED
+CVE-2019-1590 (A vulnerability in the Transport Layer Security (TLS) certificate vali ...)
+ TODO: check
+CVE-2019-1589 (A vulnerability in the Trusted Platform Module (TPM) functionality of ...)
+ TODO: check
CVE-2019-1588 (A vulnerability in the Cisco Nexus 9000 Series Fabric Switches running ...)
NOT-FOR-US: Cisco
-CVE-2019-1587
- RESERVED
-CVE-2019-1586
- RESERVED
+CVE-2019-1587 (A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Applicat ...)
+ TODO: check
+CVE-2019-1586 (A vulnerability in Cisco Application Policy Infrastructure Controller ...)
+ TODO: check
CVE-2019-1585 (A vulnerability in the controller authorization functionality of Cisco ...)
NOT-FOR-US: Cisco
CVE-2018-19960 (The debug_mode function in web/web.py in OnionShare through 1.3.1, whe ...)
@@ -41481,8 +41634,8 @@ CVE-2018-15464 (A vulnerability in Cisco 900 Series Aggregation Services Router
NOT-FOR-US: Cisco
CVE-2018-15463 (A vulnerability in the web-based management interface of Cisco Identit ...)
NOT-FOR-US: Cisco
-CVE-2018-15462
- RESERVED
+CVE-2018-15462 (A vulnerability in the TCP ingress handler for the data interfaces tha ...)
+ TODO: check
CVE-2018-15461 (A vulnerability in the MyWebex component of Cisco Webex Business Suite ...)
NOT-FOR-US: Cisco
CVE-2018-15460 (A vulnerability in the email message filtering feature of Cisco AsyncO ...)
@@ -41629,8 +41782,8 @@ CVE-2018-15390 (A vulnerability in the FTP inspection engine of Cisco Firepower
NOT-FOR-US: Cisco
CVE-2018-15389 (A vulnerability in the install function of Cisco Prime Collaboration P ...)
NOT-FOR-US: Cisco
-CVE-2018-15388
- RESERVED
+CVE-2018-15388 (A vulnerability in the WebVPN login process of Cisco Adaptive Security ...)
+ TODO: check
CVE-2018-15387 (A vulnerability in the Cisco SD-WAN Solution could allow an unauthenti ...)
NOT-FOR-US: Cisco
CVE-2018-15386 (A vulnerability in Cisco Digital Network Architecture (DNA) Center cou ...)
@@ -220872,7 +221025,7 @@ CVE-2013-6026 (The web interface on D-Link DIR-100, DIR-120, DI-624S, DI-524UP,
NOT-FOR-US: D-Link
CVE-2013-6025 (The XMLParse procedure in SAP Sybase Adaptive Server Enterprise (ASE) ...)
NOT-FOR-US: SAP Sybase Adaptive Server Enterprise
-CVE-2013-6024 (The Edge Client components in F5 BIG-IP APM 10.x through 10.2.4 and 11 ...)
+CVE-2013-6024 (The Edge Client components in F5 BIG-IP APM 10.x, 11.x, 12.x, 13.x, an ...)
NOT-FOR-US: F5 BIG-IP
CVE-2013-6023 (Directory traversal vulnerability in the TVT TD-2308SS-B DVR with firm ...)
NOT-FOR-US: TVT TD-2308SS-B DVR
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0fbdc530f4085ee812c75bfe4f0d874a3ca6d5c1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0fbdc530f4085ee812c75bfe4f0d874a3ca6d5c1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190503/2285adbd/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list