[Git][security-tracker-team/security-tracker][master] automatic update

Thu Oct 3 09:10:30 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5f44c252 by security tracker role at 2019-10-03T08:10:20Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -344,9 +344,11 @@ CVE-2019-16945
 CVE-2019-16944
 	RESERVED
 CVE-2019-16943 (A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...)
+	{DLA-1943-1}
 	- jackson-databind <unfixed> (bug #941530)
 	NOTE: https://github.com/FasterXML/jackson-databind/issues/2478
 CVE-2019-16942 (A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...)
+	{DLA-1943-1}
 	- jackson-databind <unfixed> (bug #941530)
 	NOTE: https://github.com/FasterXML/jackson-databind/issues/2478
 CVE-2019-16941 (NSA Ghidra through 9.0.4, when experimental mode is enabled, allows ar ...)
@@ -1920,6 +1922,7 @@ CVE-2019-16337
 CVE-2019-16336
 	RESERVED
 CVE-2019-16335 (A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...)
+	{DLA-1943-1}
 	- jackson-databind 2.10.0-1 (bug #940498)
 	NOTE: https://github.com/FasterXML/jackson-databind/issues/2449
 	NOTE: https://github.com/FasterXML/jackson-databind/commit/73c1c2cc76e6cdd7f3a5615cbe3207fe96e4d3db
@@ -7169,6 +7172,7 @@ CVE-2019-14541 (GnuCOBOL 2.2 has a stack-based buffer overflow in cb_encode_prog
 	[jessie] - open-cobol <no-dsa> (Minor issue)
 	NOTE: https://sourceforge.net/p/open-cobol/bugs/584/
 CVE-2019-14540 (A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...)
+	{DLA-1943-1}
 	- jackson-databind 2.10.0-1 (bug #940498)
 	NOTE: https://github.com/FasterXML/jackson-databind/issues/2410
 	NOTE: https://github.com/FasterXML/jackson-databind/issues/2449
@@ -16450,8 +16454,8 @@ CVE-2019-11653 (Remote Access Control Bypass in Micro Focus Content Manager. ver
 	NOT-FOR-US: Micro Focus
 CVE-2019-11652 (A potential authorization bypass issue was found in Micro Focus Self S ...)
 	NOT-FOR-US: Micro Focus
-CVE-2019-11651
-	RESERVED
+CVE-2019-11651 (Reflected XSS on Micro Focus Enterprise Developer and Enterprise Serve ...)
+	TODO: check
 CVE-2019-11650 (A potential Man in the Middle attack (MITM) was found in NetIQ Advance ...)
 	NOT-FOR-US: NetIQ Advanced Authentication Framework
 CVE-2019-11649 (Cross-Site Scripting vulnerability in Micro Focus Fortify Software Sec ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5f44c252f165af3d0e23d9600eb5fb3f985a9966

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5f44c252f165af3d0e23d9600eb5fb3f985a9966
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191003/30447d63/attachment.html>
