[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
jmm at debian.org
Sat Sep 28 21:36:25 BST 2019
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
05c23c43 by Moritz Muehlenhoff at 2019-09-28T20:36:03Z
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -23009,9 +23009,9 @@ CVE-2019-9462 (In Bluetooth, there is a possible out of bounds read due to an in
CVE-2019-9461 (In the Android kernel in VPN routing there is a possible information d ...)
NOT-FOR-US: Android
CVE-2019-9460 (In mediaserver, there is a possible out of bounds write due to a missi ...)
- TODO: check
+ NOT-FOR-US: Android Media Server
CVE-2019-9459 (In libttspico, there is a possible OOB write due to a heap buffer over ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9458 (In the Android kernel in the video driver there is a use after free du ...)
- linux 4.18.20-1
[stretch] - linux 4.9.135-1
@@ -23065,195 +23065,197 @@ CVE-2019-9442 (In the Android kernel in the mnh driver there is possible memory
CVE-2019-9441 (In the Android kernel in the mnh driver there is a possible out of bou ...)
NOT-FOR-US: Android kernel
CVE-2019-9440 (In AOSP Email, there is a possible information disclosure due to a con ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9439
RESERVED
CVE-2019-9438 (In the Package Manager service, there is a possible information disclo ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9437
RESERVED
CVE-2019-9436 (In the Android kernel in the bootloader there is a possible secure boo ...)
NOT-FOR-US: LG components for Android
CVE-2019-9435 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9434 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9433 (In libvpx, there is a possible information disclosure due to improper ...)
TODO: check
CVE-2019-9432 (In Bluetooth, there is a possible out of bounds read due to improper i ...)
+ NOT-FOR-US: Android
TODO: check
CVE-2019-9431 (In Bluetooth, there is a possible out of bounds read due to a use afte ...)
+ NOT-FOR-US: Android
TODO: check
CVE-2019-9430 (In Bluetooth, there is a possible null pointer dereference due to a mi ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9429 (In profman, there is a possible out of bounds write due to memory corr ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9428 (In the Framework, it is possible to set up BROWSEABLE intents to take ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9427 (In Bluetooth, there is a possible information disclosure due to a use ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9426 (In the Android kernel in Bluetooth there is a possible out of bounds w ...)
NOT-FOR-US: Broadcom components for Android
CVE-2019-9425 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9424 (In the Screen Lock, there is a possible information disclosure due to ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9423 (In opencv calls that use libpng, there is a possible out of bounds wri ...)
TODO: check
CVE-2019-9422 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9421 (In libandroidfw, there is a possible OOB read due to an integer overfl ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9420 (In libhevc, there is a possible out of bounds read due to an integer o ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9419 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9418 (In libstagefright, there is a possible resource exhaustion due to a mi ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9417 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9416 (In libstagefright there is a possible information disclosure due to un ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9415 (In libstagefright there is a possible information disclosure due to un ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9414 (In wpa_supplicant, there is a possible man in the middle vulnerability ...)
TODO: check
CVE-2019-9413 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9412 (In libSBRdec there is a possible out of bounds read due to incorrect b ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9411 (In libavc there is a possible information disclosure due to uninitiali ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9410 (In libavc there is a possible information disclosure due to uninitiali ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9409 (In libhevc there is a possible information disclosure due to uninitial ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9408 (In libavc there is a possible information disclosure due to uninitiali ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9407 (In notification management of the service manager, there is a possible ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9406 (In libhevc there is a possible information disclosure due to uninitial ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9405 (In libAACdec, there is a possible out of bounds write due to an intege ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9404 (In Bluetooth, there is possible controlled termination due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9403 (In cn-cbor, there is a possible out of bounds read due to improper cas ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9402 (In Bluetooth, there is possible controlled termination due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9401 (In Bluetooth, there is possible controlled termination due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9400 (In Bluetooth, there is a possible null pointer dereference due to a mi ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9399 (The Print Service is susceptible to man in the middle attacks due to i ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9398 (In Bluetooth, there is possible controlled termination due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9397 (In Bluetooth, there is possible controlled termination due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9396 (In Bluetooth, there is possible controlled termination due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9395 (In Bluetooth, there is possible controlled termination due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9394 (In Bluetooth, there is possible controlled termination due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9393 (In Bluetooth, there is possible controlled termination due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9392
RESERVED
CVE-2019-9391 (In libxaac, there is a possible out of bounds read due to uninitialize ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9390 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9389 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9388 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9387 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9386 (In NFC server, there is a possible out of bounds write due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9385 (In libxaac, there is a possible out of bounds read due to a missing bo ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9384 (In LockPatternUtils, there is a possible escalation of privilege due t ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9383 (In NFC server, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9382 (In libeffects, there is a possible out of bounds write due to a missin ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9381 (In netd, there is a possible out of bounds read due to a use after fre ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9380 (In the settings UI, there is a possible spoofing vulnerability due to ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9379 (In libstagefright, there is a possible resource exhaustion due to a mi ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9378 (In the Activity Manager service, there is a possible permission bypass ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9377 (In FingerprintService, there is a possible bypass for operating system ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9376 (In the Accounts package, there is a possible crash due to improper inp ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9375 (In hostapd, there is a possible out of bounds write due to a race cond ...)
TODO: check
CVE-2019-9374 (In CompanionDeviceManager, there is a possible bypass of user interact ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9373 (In JobStore, there is a mismatched serialization/deserialization for t ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9372 (In libskia, there is a possible crash due to a missing null check. Thi ...)
TODO: check
CVE-2019-9371 (In libvpx, there is a possible resource exhaustion due to improper inp ...)
TODO: check
CVE-2019-9370 (In sonivox, there is a possible out of bounds read due to an incorrect ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9369 (In Bluetooth, there is a use of uninitialized variable. This could lea ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9368 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9367 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9366 (In libSBRdec there is a possible out of bounds read due to a missing b ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9365 (In Bluetooth, there is a possible deserialization error due to missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9364 (In AudioService, there is a possible trigger of background user audio ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9363 (In Bluetooth, there is a possible out of bounds write due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9362 (In libSACdec, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9361 (In libavc there is a possible information disclosure due to uninitiali ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9360 (In the TEE, there's a possible out of bounds read due to a missing bou ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9359 (In libavc there is a possible information disclosure due to uninitiali ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9358 (In NFC, there is a possible out of bounds write due to a missing bound ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9357 (In libAACdec, there is a possible out of bounds write due to an intege ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9356 (In NFC server, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9355 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9354 (In NFC server, there's a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9353 (In Bluetooth, there is a possible out of bounds read due to a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9352 (In libstagefright, there is a possible resource exhaustion due to a mi ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9351 (In SyncStatusObserver, there is a possible bypass for operating system ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9350 (In Keymaster, there is a possible EoP due to a use after free. This co ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9349 (In libstagefright, there is a possible resource exhaustion due to impr ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9348 (In libstagefright, there is a possible resource exhaustion due to impr ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9347 (In the m4v_h263 codec, there is a possible out of bounds read due to a ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9346 (In libstagefright, there is a possible out of bounds write due to a he ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2019-9345 (In the Android kernel in sdcardfs there is a possible violation of the ...)
NOT-FOR-US: Android kernel
CVE-2019-9344 (In NFC server, there is a possible out of bounds read due to a missing ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/05c23c430bef133dc770a760f53a8a1c8b263b6f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/05c23c430bef133dc770a760f53a8a1c8b263b6f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190928/589729a8/attachment.html>
More information about the debian-security-tracker-commits
mailing list