[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Mon May 27 21:10:30 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1f4069b0 by security tracker role at 2019-05-27T20:10:21Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,19 @@
+CVE-2019-12329
+	RESERVED
+CVE-2019-12328
+	RESERVED
+CVE-2019-12327
+	RESERVED
+CVE-2019-12326
+	RESERVED
+CVE-2019-12325
+	RESERVED
+CVE-2019-12324
+	RESERVED
+CVE-2019-12323
+	RESERVED
+CVE-2019-12322
+	RESERVED
 CVE-2019-12321
 	RESERVED
 CVE-2019-12320
@@ -1400,7 +1416,7 @@ CVE-2019-11699
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-13/#CVE-2019-11699
 CVE-2019-11698
 	RESERVED
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
 	- firefox-esr 60.7.0esr-1
@@ -1433,7 +1449,7 @@ CVE-2019-11694
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-15/#CVE-2019-11694
 CVE-2019-11693
 	RESERVED
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
 	- firefox-esr 60.7.0esr-1
@@ -1443,7 +1459,7 @@ CVE-2019-11693
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-15/#CVE-2019-11693
 CVE-2019-11692
 	RESERVED
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
 	- firefox-esr 60.7.0esr-1
@@ -1453,7 +1469,7 @@ CVE-2019-11692
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-15/#CVE-2019-11692
 CVE-2019-11691
 	RESERVED
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
 	- firefox-esr 60.7.0esr-1
@@ -6788,7 +6804,7 @@ CVE-2019-9821
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-13/#CVE-2019-9821
 CVE-2019-9820
 	RESERVED
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
 	- firefox-esr 60.7.0esr-1
@@ -6798,7 +6814,7 @@ CVE-2019-9820
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-15/#CVE-2019-9820
 CVE-2019-9819
 	RESERVED
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
 	- firefox-esr 60.7.0esr-1
@@ -6816,7 +6832,7 @@ CVE-2019-9818
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-15/#CVE-2019-9818
 CVE-2019-9817
 	RESERVED
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
 	- firefox-esr 60.7.0esr-1
@@ -6826,7 +6842,7 @@ CVE-2019-9817
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-15/#CVE-2019-9817
 CVE-2019-9816
 	RESERVED
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
 	- firefox-esr 60.7.0esr-1
@@ -6896,7 +6912,7 @@ CVE-2019-9801 (Firefox will accept any registered Program ID as an external prot
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-11/#CVE-2019-9801
 CVE-2019-9800
 	RESERVED
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
 	- firefox-esr 60.7.0esr-1
@@ -6911,7 +6927,7 @@ CVE-2019-9798 (On Android systems, Firefox can load a library from APITRACE_LIB,
 	- firefox <not-affected> (Android-specific)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-07/#CVE-2019-9798
 CVE-2019-9797 (Cross-origin images can be read in violation of the same-origin policy ...)
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	- firefox 66.0-1
 	- firefox-esr 60.7.0esr-1
 	- thunderbird 1:60.7.0-1
@@ -13211,7 +13227,7 @@ CVE-2019-7319
 CVE-2019-7318
 	RESERVED
 CVE-2019-7317 (png_image_free in png.c in libpng 1.6.36 has a use-after-free because  ...)
-	{DSA-4451-1 DSA-4448-1 DSA-4435-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DSA-4435-1 DLA-1806-1 DLA-1800-1}
 	- libpng1.6 1.6.36-4 (bug #921355)
 	[experimental] - firefox 67.0-1
 	- firefox <unfixed>
@@ -16925,7 +16941,7 @@ CVE-2019-5799 (Incorrect inheritance of a new document's policy in Content Secur
 	{DSA-4421-1}
 	- chromium 73.0.3683.75-1
 CVE-2019-5798 (Lack of correct bounds checking in Skia in Google Chrome prior to 73.0 ...)
-	{DSA-4451-1 DSA-4448-1 DSA-4421-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DSA-4421-1 DLA-1806-1 DLA-1800-1}
 	- chromium 73.0.3683.75-1
 	- firefox-esr 60.7.0esr-1
 	- thunderbird 1:60.7.0-1
@@ -35234,7 +35250,7 @@ CVE-2018-18512 (A use-after-free vulnerability can occur while playing a sound n
 	- thunderbird 1:60.5.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-03/#CVE-2018-18512
 CVE-2018-18511 (Cross-origin images can be read from a canvas element in violation of  ...)
-	{DSA-4451-1 DSA-4448-1 DLA-1800-1}
+	{DSA-4451-1 DSA-4448-1 DLA-1806-1 DLA-1800-1}
 	- firefox 65.0.1-1
 	- firefox-esr 60.7.0esr-1
 	- thunderbird 1:60.7.0-1
@@ -54894,12 +54910,14 @@ CVE-2018-11132 (In order to perform actions that require higher privileges, the
 CVE-2018-11131
 	RESERVED
 CVE-2018-11130 (The header::add_FORMAT_descriptor function in header.cpp in VCFtools 0 ...)
+	{DLA-1807-1}
 	- vcftools 0.1.16-1 (low; bug #902190)
 	[stretch] - vcftools 0.1.14+dfsg-4+deb9u1
 	[wheezy] - vcftools <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/fulldisclosure/2018/May/43
 	NOTE: https://github.com/vcftools/vcftools/issues/109
 CVE-2018-11129 (The header::add_INFO_descriptor function in header.cpp in VCFtools 0.1 ...)
+	{DLA-1807-1}
 	- vcftools 0.1.16-1 (low; bug #902190)
 	[stretch] - vcftools 0.1.14+dfsg-4+deb9u1
 	[wheezy] - vcftools <no-dsa> (Minor issue)
@@ -54966,6 +54984,7 @@ CVE-2018-11100 (The decompileSETTARGET function in decompile.c in libming throug
 	- ming <removed>
 	NOTE: https://github.com/libming/libming/issues/142
 CVE-2018-11099 (The header::add_INFO_descriptor function in header.cpp in VCFtools 0.1 ...)
+	{DLA-1807-1}
 	- vcftools 0.1.16-1 (low; bug #902190)
 	[stretch] - vcftools 0.1.14+dfsg-4+deb9u1
 	[wheezy] - vcftools <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1f4069b07f53e861764c3dcaabcb3a9ddf49ae73

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1f4069b07f53e861764c3dcaabcb3a9ddf49ae73
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190527/a724a193/attachment.html>

More information about the debian-security-tracker-commits mailing list