[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Tue Oct 15 09:10:30 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
769465f4 by security tracker role at 2019-10-15T08:10:17Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2019-17596
+	RESERVED
+CVE-2019-17595 (There is a heap-based buffer over-read in the fmt_entry function in ti ...)
+	TODO: check
+CVE-2019-17594 (There is a heap-based buffer over-read in the _nc_find_entry function  ...)
+	TODO: check
+CVE-2019-17593 (JIZHICMS 1.5.1 allows admin.php/Admin/adminadd.html CSRF to add an adm ...)
+	TODO: check
+CVE-2019-17592 (The csv-parse module before 4.4.6 for Node.js is vulnerable to Regular ...)
+	TODO: check
+CVE-2019-17591
+	RESERVED
+CVE-2019-17590
+	RESERVED
 CVE-2019-17589
 	RESERVED
 CVE-2019-17588
@@ -6949,6 +6963,7 @@ CVE-2017-18517 (The bws-pinterest plugin before 1.0.5 for WordPress has multiple
 CVE-2017-18516 (The bws-linkedin plugin before 1.0.5 for WordPress has multiple XSS is ...)
 	NOT-FOR-US: bws-linkedin plugin for WordPress
 CVE-2016-10894 (xtrlock through 2.10 does not block multitouch events. Consequently, a ...)
+	{DLA-1959-1}
 	- xtrlock 2.12 (bug #830726)
 CVE-2016-10893 (The crayon-syntax-highlighter plugin before 2.8.4 for WordPress has mu ...)
 	NOT-FOR-US: Wordpress plugin
@@ -7727,8 +7742,8 @@ CVE-2019-14825
 	NOT-FOR-US: Katello
 CVE-2019-14824
 	RESERVED
-CVE-2019-14823
-	RESERVED
+CVE-2019-14823 (A flaw was found in the "Leaf and Chain" OCSP policy implementation in ...)
+	TODO: check
 CVE-2019-14822 [missing authorization flaw]
 	RESERVED
 	{DSA-4525-1}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/769465f4f2b579f4e308920ec3d23d3a662ea6a8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/769465f4f2b579f4e308920ec3d23d3a662ea6a8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191015/4e644063/attachment.html>


More information about the debian-security-tracker-commits mailing list