[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
be6d3992 by security tracker role at 2019-11-16T08:10:14Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,13 @@
+CVE-2019-19010 (Eval injection in the Math plugin of Limnoria (before 2019.11.09) and  ...)
+	TODO: check
+CVE-2019-19009
+	RESERVED
+CVE-2019-19008
+	RESERVED
+CVE-2019-19007
+	RESERVED
+CVE-2019-19006
+	RESERVED
 CVE-2019-19005
 	RESERVED
 CVE-2019-19004
@@ -6437,7 +6447,7 @@ CVE-2016-11015 (NETGEAR JNR1010 devices before 1.0.0.32 allow cgi-bin/webproc CS
 	NOT-FOR-US: NETGEAR
 CVE-2016-11014 (NETGEAR JNR1010 devices before 1.0.0.32 have Incorrect Access Control  ...)
 	NOT-FOR-US: NETGEAR
-CVE-2019-17600 (Intelbras IWR 1000N 1.6.4 devices allows disclosure of the administrat ...)
+CVE-2019-17600 (Intelbras IWR 1000N 1.6.4 devices allow disclosure of the administrato ...)
 	NOT-FOR-US: Intelbras IWR 1000N devices
 CVE-2019-17599
 	RESERVED
@@ -8668,10 +8678,10 @@ CVE-2019-16764
 	RESERVED
 CVE-2019-16763
 	RESERVED
-CVE-2019-16762
-	RESERVED
-CVE-2019-16761
-	RESERVED
+CVE-2019-16762 (A specially crafted Bitcoin script can cause a discrepancy between the ...)
+	TODO: check
+CVE-2019-16761 (A specially crafted Bitcoin script can cause a discrepancy between the ...)
+	TODO: check
 CVE-2019-16760 (Cargo prior to Rust 1.26.0 may download the wrong dependency if your p ...)
 	- cargo 0.27.0-1
 	[stretch] - cargo <postponed> (Upcoming upgrade of Cargo for ESR68 will fix this)
@@ -19321,10 +19331,10 @@ CVE-2019-13584 (The remote admin webserver on FANUC Robotics Virtual Robot Contr
 	NOT-FOR-US: FANUC Robotics Virtual Robot Controller
 CVE-2019-13583
 	RESERVED
-CVE-2019-13582
-	RESERVED
-CVE-2019-13581
-	RESERVED
+CVE-2019-13582 (An issue was discovered in Marvell 88W8688 Wi-Fi firmware before versi ...)
+	TODO: check
+CVE-2019-13581 (An issue was discovered in Marvell 88W8688 Wi-Fi firmware before versi ...)
+	TODO: check
 CVE-2019-13580
 	RESERVED
 CVE-2019-13579
@@ -20556,7 +20566,7 @@ CVE-2019-13121 [SSRF Vulnerability in Project GitHub Integration]
 	[experimental] - gitlab 11.10.8+dfsg-1
 	- gitlab <unfixed>
 	NOTE: https://about.gitlab.com/2019/07/03/security-release-gitlab-12-dot-0-dot-3-released/
-CVE-2019-13120 (Amazon FreeRTOS up to and including v1.4.8 for AWS lacks length checki ...)
+CVE-2019-13120 (Amazon FreeRTOS up to and including v1.4.8 lacks length checking in pr ...)
 	NOT-FOR-US: Amazon FreeRTOS
 CVE-2019-13119
 	RESERVED
@@ -39045,18 +39055,18 @@ CVE-2019-6666
 	RESERVED
 CVE-2019-6665
 	RESERVED
-CVE-2019-6664
-	RESERVED
-CVE-2019-6663
-	RESERVED
-CVE-2019-6662
-	RESERVED
-CVE-2019-6661
-	RESERVED
-CVE-2019-6660
-	RESERVED
-CVE-2019-6659
-	RESERVED
+CVE-2019-6664 (On BIG-IP 15.0.0 and 14.1.0-14.1.0.6, under certain conditions, networ ...)
+	TODO: check
+CVE-2019-6663 (The BIG-IP 15.0.0-15.0.1, 14.0.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12. ...)
+	TODO: check
+CVE-2019-6662 (On BIG-IP 13.1.0-13.1.1.4, sensitive information is logged into the lo ...)
+	TODO: check
+CVE-2019-6661 (When the BIG-IP APM 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12. ...)
+	TODO: check
+CVE-2019-6660 (On BIG-IP 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.1, undisclosed ...)
+	TODO: check
+CVE-2019-6659 (On version 14.0.0-14.1.0.1, BIG-IP virtual servers with TLSv1.3 enable ...)
+	TODO: check
 CVE-2019-6658 (On BIG-IP AFM 15.0.0-15.0.1, 14.0.0-14.1.2, 13.1.0-13.1.3.1, and 12.1. ...)
 	NOT-FOR-US: F5
 CVE-2019-6657 (On BIG-IP 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, a refle ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/be6d3992370fd99ba1caebcffd8c4f02932b61df

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/be6d3992370fd99ba1caebcffd8c4f02932b61df
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191116/0f72888f/attachment.html>