[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Thu Sep 5 09:10:30 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a98757ce by security tracker role at 2019-09-05T08:10:13Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,35 @@
+CVE-2019-15936
+	RESERVED
+CVE-2019-15935
+	RESERVED
+CVE-2019-15934
+	RESERVED
+CVE-2019-15933
+	RESERVED
+CVE-2019-15932
+	RESERVED
+CVE-2019-15931
+	RESERVED
+CVE-2019-15930
+	RESERVED
+CVE-2019-15929
+	RESERVED
+CVE-2019-15928
+	RESERVED
+CVE-2019-15927 (An issue was discovered in the Linux kernel before 4.20.2. An out-of-b ...)
+	TODO: check
+CVE-2019-15926 (An issue was discovered in the Linux kernel before 5.2.3. Out of bound ...)
+	TODO: check
+CVE-2019-15925 (An issue was discovered in the Linux kernel before 5.2.3. An out of bo ...)
+	TODO: check
+CVE-2018-21010
+	RESERVED
+CVE-2018-21009 (Poppler before 0.76.0 has an integer overflow in Parser::makeStream in ...)
+	TODO: check
+CVE-2018-21008 (An issue was discovered in the Linux kernel before 4.16.7. A use-after ...)
+	TODO: check
+CVE-2017-18595 (An issue was discovered in the Linux kernel before 4.14.11. A double f ...)
+	TODO: check
 CVE-2019-15924 (An issue was discovered in the Linux kernel before 5.0.11. fm10k_init_ ...)
 	- linux 5.2.6-1
 	NOTE: https://git.kernel.org/linus/01ca667133d019edc9f0a1f70a272447c84ec41f
@@ -4069,8 +4101,8 @@ CVE-2019-14472 (Zurmo 3.2.7-2 has XSS via the app/index.php/zurmo/default PATH_I
 	NOT-FOR-US: Zumo
 CVE-2019-14471 (TestLink 1.9.19 has XSS via the error.php message parameter. ...)
 	NOT-FOR-US: TestLink
-CVE-2019-14470
-	RESERVED
+CVE-2019-14470 (cosenary Instagram-PHP-API (aka Instagram PHP API V2), as used in the  ...)
+	TODO: check
 CVE-2019-14469 (In Nexus Repository Manager before 3.18.0, users with elevated privile ...)
 	NOT-FOR-US: Nexus Repository Manager
 CVE-2019-14468 (GnuCOBOL 2.2 has a buffer overflow in cb_push_op in cobc/field.c via c ...)
@@ -5055,8 +5087,8 @@ CVE-2019-14321
 	RESERVED
 CVE-2019-14320
 	RESERVED
-CVE-2019-14319
-	RESERVED
+CVE-2019-14319 (The TikTok (formerly Musical.ly) application 12.2.0 for Android and iO ...)
+	TODO: check
 CVE-2019-14318 (Crypto++ 8.3.0 and earlier contains a timing side channel in ECDSA sig ...)
 	[experimental] - libcrypto++ 8.2.0-2
 	- libcrypto++ 5.6.4-9 (low; bug #934326)
@@ -10322,10 +10354,10 @@ CVE-2019-12647
 	RESERVED
 CVE-2019-12646
 	RESERVED
-CVE-2019-12645
-	RESERVED
-CVE-2019-12644
-	RESERVED
+CVE-2019-12645 (A vulnerability in Cisco Jabber Client Framework (JCF) for Mac Softwar ...)
+	TODO: check
+CVE-2019-12644 (A vulnerability in the web-based management interface of Cisco Identit ...)
+	TODO: check
 CVE-2019-12643 (A vulnerability in the Cisco REST API virtual service container for Ci ...)
 	TODO: check
 CVE-2019-12642
@@ -10342,14 +10374,14 @@ CVE-2019-12637
 	RESERVED
 CVE-2019-12636
 	RESERVED
-CVE-2019-12635
-	RESERVED
+CVE-2019-12635 (A vulnerability in the authorization module of Cisco Content Security  ...)
+	TODO: check
 CVE-2019-12634 (A vulnerability in the web-based management interface of Cisco Integra ...)
 	NOT-FOR-US: Cisco
-CVE-2019-12633
-	RESERVED
-CVE-2019-12632
-	RESERVED
+CVE-2019-12633 (A vulnerability in Cisco Unified Contact Center Express (Unified CCX)  ...)
+	TODO: check
+CVE-2019-12632 (A vulnerability in Cisco Finesse could allow an unauthenticated, remot ...)
+	TODO: check
 CVE-2019-12631
 	RESERVED
 CVE-2019-12630
@@ -10452,8 +10484,8 @@ CVE-2019-12588 (The client 802.11 mac implementation in Espressif ESP8266_NONOS_
 	TODO: check
 CVE-2019-12587 (The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 a ...)
 	TODO: check
-CVE-2019-12586
-	RESERVED
+CVE-2019-12586 (The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 a ...)
+	TODO: check
 CVE-2019-12585 (Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and othe ...)
 	- apcupsd <not-affected> (Vulnerable code in pfSense-specific status page)
 CVE-2019-12584 (Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and othe ...)
@@ -40030,8 +40062,8 @@ CVE-2019-1978
 	RESERVED
 CVE-2019-1977 (A vulnerability within the Endpoint Learning feature of Cisco Nexus 90 ...)
 	TODO: check
-CVE-2019-1976
-	RESERVED
+CVE-2019-1976 (A vulnerability in the &ldquo;plug-and-play&rdquo; services co ...)
+	TODO: check
 CVE-2019-1975
 	RESERVED
 CVE-2019-1974 (A vulnerability in the web-based management interface of Cisco Integra ...)
@@ -40104,8 +40136,8 @@ CVE-2019-1941 (A vulnerability in the web-based management interface of Cisco Id
 	NOT-FOR-US: Cisco
 CVE-2019-1940 (A vulnerability in the Web Services Management Agent (WSMA) feature of ...)
 	NOT-FOR-US: Cisco
-CVE-2019-1939
-	RESERVED
+CVE-2019-1939 (A vulnerability in the Cisco Webex Teams client for Windows could allo ...)
+	TODO: check
 CVE-2019-1938 (A vulnerability in the web-based management interface of Cisco UCS Dir ...)
 	NOT-FOR-US: Cisco
 CVE-2019-1937 (A vulnerability in the web-based management interface of Cisco Integra ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a98757ce6d862329ff32863449752dbb51a336f1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a98757ce6d862329ff32863449752dbb51a336f1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190905/0e7e9805/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list