[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sun Oct 13 09:10:45 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7b66bce3 by security tracker role at 2019-10-13T08:10:29Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2019-17534 (vips_foreign_load_gif_scan_image in foreign/gifload.c in libvips befor ...)
+	TODO: check
+CVE-2019-17533 (Mat_VarReadNextInfo4 in mat4.c in MATIO 1.5.17 omits a certain '\0' ch ...)
+	TODO: check
+CVE-2019-17532 (An issue was discovered on Belkin Wemo Switch 28B WW_2.00.11057.PVT-OW ...)
+	TODO: check
+CVE-2019-17531 (A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...)
+	TODO: check
+CVE-2019-17530 (An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffe ...)
+	TODO: check
+CVE-2019-17529 (An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffe ...)
+	TODO: check
+CVE-2019-17528 (An issue was discovered in Bento4 1.5.1.0. There is a SEGV in the func ...)
+	TODO: check
 CVE-2019-17527
 	RESERVED
 CVE-2019-17526
@@ -52,8 +66,8 @@ CVE-2019-17504 (An issue was discovered in Kirona Dynamic Resource Scheduling (D
 	NOT-FOR-US: Kirona Dynamic Resource Scheduling (DRS)
 CVE-2019-17503 (An issue was discovered in Kirona Dynamic Resource Scheduling (DRS) 5. ...)
 	NOT-FOR-US: Kirona Dynamic Resource Scheduling (DRS)
-CVE-2019-17502
-	RESERVED
+CVE-2019-17502 (Hydra through 0.1.8 has a NULL pointer dereference and daemon crash wh ...)
+	TODO: check
 CVE-2019-17501
 	RESERVED
 CVE-2019-17500
@@ -3337,7 +3351,7 @@ CVE-2019-16228 (An issue was discovered in py-lmdb 0.97. There is a divide-by-ze
 	NOTE: https://github.com/jnwatson/py-lmdb/issues/210
 	NOTE: No real security issue in py-lmdb and disputed (MITRE contacted). If at all
 	NOTE: then issues in underlying library but cf. https://github.com/jnwatson/py-lmdb/issues/210#issuecomment-531015023
-CVE-2019-16227 (An issue was discovered in py_lmdb 0.97. For certain values of mn_flag ...)
+CVE-2019-16227 (An issue was discovered in py-lmdb 0.97. For certain values of mn_flag ...)
 	- py-lmdb <unfixed> (unimportant)
 	NOTE: https://github.com/jnwatson/py-lmdb/issues/210
 	NOTE: No real security issue in py-lmdb and disputed (MITRE contacted). If at all



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7b66bce32136a85479b45263fa31b857fb680520

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7b66bce32136a85479b45263fa31b857fb680520
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191013/ce349ccd/attachment.html>

More information about the debian-security-tracker-commits mailing list