[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
61f1bcba by security tracker role at 2019-09-21T08:10:21Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,15 @@
+CVE-2019-16651
+	RESERVED
+CVE-2019-16650 (On Supermicro X10 and X11 products, a client's access privileges may b ...)
+	TODO: check
+CVE-2019-16649 (On Supermicro H11, H12, M11, X9, X10, and X11 products, a combination  ...)
+	TODO: check
+CVE-2019-16648
+	RESERVED
+CVE-2019-16647
+	RESERVED
+CVE-2019-16646
+	RESERVED
 CVE-2019-16645 (An issue was discovered in Embedthis GoAhead 2.5.0. Certain pages (suc ...)
 	NOT-FOR-US: Embedthis GoAhead
 CVE-2019-16644 (App\Home\Controller\ZhuantiController.class.php in TuziCMS 2.0.6 has S ...)
@@ -254,8 +266,8 @@ CVE-2015-9408 (The xpinner-lite plugin through 2.2 for WordPress has wp-admin/op
 	NOT-FOR-US: xpinner-lite plugin for WordPress
 CVE-2015-9407 (The xpinner-lite plugin through 2.2 for WordPress has xpinner-lite.php ...)
 	NOT-FOR-US: xpinner-lite plugin for WordPress
-CVE-2015-9406
-	RESERVED
+CVE-2015-9406 (Directory traversal vulnerability in the mTheme-Unus theme before 2.3  ...)
+	TODO: check
 CVE-2015-9405 (The wp-piwik plugin before 1.0.5 for WordPress has XSS. ...)
 	NOT-FOR-US: wp-piwik plugin for WordPress
 CVE-2015-9404 (The neuvoo-jobroll plugin 2.0 for WordPress has neuvoo_keywords XSS. ...)
@@ -300,10 +312,10 @@ CVE-2015-9385 (The quotes-and-tips plugin before 1.20 for WordPress has XSS. ...
 	NOT-FOR-US: quotes-and-tips plugin for WordPress
 CVE-2015-9384 (The relevant plugin before 1.0.8 for WordPress has XSS. ...)
 	NOT-FOR-US: relevant plugin for WordPress
-CVE-2014-10397
-	RESERVED
-CVE-2014-10396
-	RESERVED
+CVE-2014-10397 (The Antioch theme through 2014-09-07 for WordPress allows arbitrary fi ...)
+	TODO: check
+CVE-2014-10396 (The epic theme through 2014-09-07 for WordPress allows arbitrary file  ...)
+	TODO: check
 CVE-2019-16537
 	RESERVED
 CVE-2019-16536
@@ -4169,8 +4181,8 @@ CVE-2019-15140 (coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers
 	TODO: check
 CVE-2019-15139 (The XWD image (X Window System window dumping file) parsing component  ...)
 	TODO: check
-CVE-2019-15138
-	RESERVED
+CVE-2019-15138 (The html-pdf package 2.2.0 for Node.js has an arbitrary file read vuln ...)
+	TODO: check
 CVE-2019-15137 (The Access Control plugin in eProsima Fast RTPS through 1.9.0 allows f ...)
 	NOT-FOR-US: eProsima Fast RTPS
 CVE-2019-15136 (The Access Control plugin in eProsima Fast RTPS through 1.9.0 does not ...)
@@ -29211,10 +29223,10 @@ CVE-2019-6652
 	RESERVED
 CVE-2019-6651
 	RESERVED
-CVE-2019-6650
-	RESERVED
-CVE-2019-6649
-	RESERVED
+CVE-2019-6650 (F5 BIG-IP ASM 15.0.0, 14.1.0-14.1.0.6, 14.0.0-14.0.0.5, 13.0.0-13.1.1. ...)
+	TODO: check
+CVE-2019-6649 (F5 BIG-IP 15.0.0, 14.1.0-14.1.0.6, 14.0.0-14.0.0.5, 13.0.0-13.1.1.5, 1 ...)
+	TODO: check
 CVE-2019-6648 (On version 1.9.0, If DEBUG logging is enable, F5 Container Ingress Ser ...)
 	NOT-FOR-US: F5
 CVE-2019-6647 (On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, 12.1.0-12.1 ...)
@@ -30540,8 +30552,8 @@ CVE-2019-6147
 	RESERVED
 CVE-2019-6146
 	RESERVED
-CVE-2019-6145
-	RESERVED
+CVE-2019-6145 (Forcepoint VPN Client for Windows versions lower than 6.6.1 have an un ...)
+	TODO: check
 CVE-2019-6144
 	RESERVED
 CVE-2019-6143 (Forcepoint Next Generation Firewall (Forcepoint NGFW) 6.4.x before 6.4 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/61f1bcbaf522d3ab1ea45e646d8da63e60bc4c13

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/61f1bcbaf522d3ab1ea45e646d8da63e60bc4c13
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190921/4be0e0fd/attachment-0001.html>