[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c89be94a by security tracker role at 2020-03-03T08:10:20+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,527 @@
+CVE-2020-9999
+	RESERVED
+CVE-2020-9998
+	RESERVED
+CVE-2020-9997
+	RESERVED
+CVE-2020-9996
+	RESERVED
+CVE-2020-9995
+	RESERVED
+CVE-2020-9994
+	RESERVED
+CVE-2020-9993
+	RESERVED
+CVE-2020-9992
+	RESERVED
+CVE-2020-9991
+	RESERVED
+CVE-2020-9990
+	RESERVED
+CVE-2020-9989
+	RESERVED
+CVE-2020-9988
+	RESERVED
+CVE-2020-9987
+	RESERVED
+CVE-2020-9986
+	RESERVED
+CVE-2020-9985
+	RESERVED
+CVE-2020-9984
+	RESERVED
+CVE-2020-9983
+	RESERVED
+CVE-2020-9982
+	RESERVED
+CVE-2020-9981
+	RESERVED
+CVE-2020-9980
+	RESERVED
+CVE-2020-9979
+	RESERVED
+CVE-2020-9978
+	RESERVED
+CVE-2020-9977
+	RESERVED
+CVE-2020-9976
+	RESERVED
+CVE-2020-9975
+	RESERVED
+CVE-2020-9974
+	RESERVED
+CVE-2020-9973
+	RESERVED
+CVE-2020-9972
+	RESERVED
+CVE-2020-9971
+	RESERVED
+CVE-2020-9970
+	RESERVED
+CVE-2020-9969
+	RESERVED
+CVE-2020-9968
+	RESERVED
+CVE-2020-9967
+	RESERVED
+CVE-2020-9966
+	RESERVED
+CVE-2020-9965
+	RESERVED
+CVE-2020-9964
+	RESERVED
+CVE-2020-9963
+	RESERVED
+CVE-2020-9962
+	RESERVED
+CVE-2020-9961
+	RESERVED
+CVE-2020-9960
+	RESERVED
+CVE-2020-9959
+	RESERVED
+CVE-2020-9958
+	RESERVED
+CVE-2020-9957
+	RESERVED
+CVE-2020-9956
+	RESERVED
+CVE-2020-9955
+	RESERVED
+CVE-2020-9954
+	RESERVED
+CVE-2020-9953
+	RESERVED
+CVE-2020-9952
+	RESERVED
+CVE-2020-9951
+	RESERVED
+CVE-2020-9950
+	RESERVED
+CVE-2020-9949
+	RESERVED
+CVE-2020-9948
+	RESERVED
+CVE-2020-9947
+	RESERVED
+CVE-2020-9946
+	RESERVED
+CVE-2020-9945
+	RESERVED
+CVE-2020-9944
+	RESERVED
+CVE-2020-9943
+	RESERVED
+CVE-2020-9942
+	RESERVED
+CVE-2020-9941
+	RESERVED
+CVE-2020-9940
+	RESERVED
+CVE-2020-9939
+	RESERVED
+CVE-2020-9938
+	RESERVED
+CVE-2020-9937
+	RESERVED
+CVE-2020-9936
+	RESERVED
+CVE-2020-9935
+	RESERVED
+CVE-2020-9934
+	RESERVED
+CVE-2020-9933
+	RESERVED
+CVE-2020-9932
+	RESERVED
+CVE-2020-9931
+	RESERVED
+CVE-2020-9930
+	RESERVED
+CVE-2020-9929
+	RESERVED
+CVE-2020-9928
+	RESERVED
+CVE-2020-9927
+	RESERVED
+CVE-2020-9926
+	RESERVED
+CVE-2020-9925
+	RESERVED
+CVE-2020-9924
+	RESERVED
+CVE-2020-9923
+	RESERVED
+CVE-2020-9922
+	RESERVED
+CVE-2020-9921
+	RESERVED
+CVE-2020-9920
+	RESERVED
+CVE-2020-9919
+	RESERVED
+CVE-2020-9918
+	RESERVED
+CVE-2020-9917
+	RESERVED
+CVE-2020-9916
+	RESERVED
+CVE-2020-9915
+	RESERVED
+CVE-2020-9914
+	RESERVED
+CVE-2020-9913
+	RESERVED
+CVE-2020-9912
+	RESERVED
+CVE-2020-9911
+	RESERVED
+CVE-2020-9910
+	RESERVED
+CVE-2020-9909
+	RESERVED
+CVE-2020-9908
+	RESERVED
+CVE-2020-9907
+	RESERVED
+CVE-2020-9906
+	RESERVED
+CVE-2020-9905
+	RESERVED
+CVE-2020-9904
+	RESERVED
+CVE-2020-9903
+	RESERVED
+CVE-2020-9902
+	RESERVED
+CVE-2020-9901
+	RESERVED
+CVE-2020-9900
+	RESERVED
+CVE-2020-9899
+	RESERVED
+CVE-2020-9898
+	RESERVED
+CVE-2020-9897
+	RESERVED
+CVE-2020-9896
+	RESERVED
+CVE-2020-9895
+	RESERVED
+CVE-2020-9894
+	RESERVED
+CVE-2020-9893
+	RESERVED
+CVE-2020-9892
+	RESERVED
+CVE-2020-9891
+	RESERVED
+CVE-2020-9890
+	RESERVED
+CVE-2020-9889
+	RESERVED
+CVE-2020-9888
+	RESERVED
+CVE-2020-9887
+	RESERVED
+CVE-2020-9886
+	RESERVED
+CVE-2020-9885
+	RESERVED
+CVE-2020-9884
+	RESERVED
+CVE-2020-9883
+	RESERVED
+CVE-2020-9882
+	RESERVED
+CVE-2020-9881
+	RESERVED
+CVE-2020-9880
+	RESERVED
+CVE-2020-9879
+	RESERVED
+CVE-2020-9878
+	RESERVED
+CVE-2020-9877
+	RESERVED
+CVE-2020-9876
+	RESERVED
+CVE-2020-9875
+	RESERVED
+CVE-2020-9874
+	RESERVED
+CVE-2020-9873
+	RESERVED
+CVE-2020-9872
+	RESERVED
+CVE-2020-9871
+	RESERVED
+CVE-2020-9870
+	RESERVED
+CVE-2020-9869
+	RESERVED
+CVE-2020-9868
+	RESERVED
+CVE-2020-9867
+	RESERVED
+CVE-2020-9866
+	RESERVED
+CVE-2020-9865
+	RESERVED
+CVE-2020-9864
+	RESERVED
+CVE-2020-9863
+	RESERVED
+CVE-2020-9862
+	RESERVED
+CVE-2020-9861
+	RESERVED
+CVE-2020-9860
+	RESERVED
+CVE-2020-9859
+	RESERVED
+CVE-2020-9858
+	RESERVED
+CVE-2020-9857
+	RESERVED
+CVE-2020-9856
+	RESERVED
+CVE-2020-9855
+	RESERVED
+CVE-2020-9854
+	RESERVED
+CVE-2020-9853
+	RESERVED
+CVE-2020-9852
+	RESERVED
+CVE-2020-9851
+	RESERVED
+CVE-2020-9850
+	RESERVED
+CVE-2020-9849
+	RESERVED
+CVE-2020-9848
+	RESERVED
+CVE-2020-9847
+	RESERVED
+CVE-2020-9846
+	RESERVED
+CVE-2020-9845
+	RESERVED
+CVE-2020-9844
+	RESERVED
+CVE-2020-9843
+	RESERVED
+CVE-2020-9842
+	RESERVED
+CVE-2020-9841
+	RESERVED
+CVE-2020-9840
+	RESERVED
+CVE-2020-9839
+	RESERVED
+CVE-2020-9838
+	RESERVED
+CVE-2020-9837
+	RESERVED
+CVE-2020-9836
+	RESERVED
+CVE-2020-9835
+	RESERVED
+CVE-2020-9834
+	RESERVED
+CVE-2020-9833
+	RESERVED
+CVE-2020-9832
+	RESERVED
+CVE-2020-9831
+	RESERVED
+CVE-2020-9830
+	RESERVED
+CVE-2020-9829
+	RESERVED
+CVE-2020-9828
+	RESERVED
+CVE-2020-9827
+	RESERVED
+CVE-2020-9826
+	RESERVED
+CVE-2020-9825
+	RESERVED
+CVE-2020-9824
+	RESERVED
+CVE-2020-9823
+	RESERVED
+CVE-2020-9822
+	RESERVED
+CVE-2020-9821
+	RESERVED
+CVE-2020-9820
+	RESERVED
+CVE-2020-9819
+	RESERVED
+CVE-2020-9818
+	RESERVED
+CVE-2020-9817
+	RESERVED
+CVE-2020-9816
+	RESERVED
+CVE-2020-9815
+	RESERVED
+CVE-2020-9814
+	RESERVED
+CVE-2020-9813
+	RESERVED
+CVE-2020-9812
+	RESERVED
+CVE-2020-9811
+	RESERVED
+CVE-2020-9810
+	RESERVED
+CVE-2020-9809
+	RESERVED
+CVE-2020-9808
+	RESERVED
+CVE-2020-9807
+	RESERVED
+CVE-2020-9806
+	RESERVED
+CVE-2020-9805
+	RESERVED
+CVE-2020-9804
+	RESERVED
+CVE-2020-9803
+	RESERVED
+CVE-2020-9802
+	RESERVED
+CVE-2020-9801
+	RESERVED
+CVE-2020-9800
+	RESERVED
+CVE-2020-9799
+	RESERVED
+CVE-2020-9798
+	RESERVED
+CVE-2020-9797
+	RESERVED
+CVE-2020-9796
+	RESERVED
+CVE-2020-9795
+	RESERVED
+CVE-2020-9794
+	RESERVED
+CVE-2020-9793
+	RESERVED
+CVE-2020-9792
+	RESERVED
+CVE-2020-9791
+	RESERVED
+CVE-2020-9790
+	RESERVED
+CVE-2020-9789
+	RESERVED
+CVE-2020-9788
+	RESERVED
+CVE-2020-9787
+	RESERVED
+CVE-2020-9786
+	RESERVED
+CVE-2020-9785
+	RESERVED
+CVE-2020-9784
+	RESERVED
+CVE-2020-9783
+	RESERVED
+CVE-2020-9782
+	RESERVED
+CVE-2020-9781
+	RESERVED
+CVE-2020-9780
+	RESERVED
+CVE-2020-9779
+	RESERVED
+CVE-2020-9778
+	RESERVED
+CVE-2020-9777
+	RESERVED
+CVE-2020-9776
+	RESERVED
+CVE-2020-9775
+	RESERVED
+CVE-2020-9774
+	RESERVED
+CVE-2020-9773
+	RESERVED
+CVE-2020-9772
+	RESERVED
+CVE-2020-9771
+	RESERVED
+CVE-2020-9770
+	RESERVED
+CVE-2020-9769
+	RESERVED
+CVE-2020-9768
+	RESERVED
+CVE-2020-9767
+	RESERVED
+CVE-2020-10028
+	RESERVED
+CVE-2020-10027
+	RESERVED
+CVE-2020-10026
+	RESERVED
+CVE-2020-10025
+	RESERVED
+CVE-2020-10024
+	RESERVED
+CVE-2020-10023
+	RESERVED
+CVE-2020-10022
+	RESERVED
+CVE-2020-10021
+	RESERVED
+CVE-2020-10020
+	RESERVED
+CVE-2020-10019
+	RESERVED
+CVE-2020-10018 (accessibility/AXObjectCache.cpp in WebKit, as used in WebKitGTK throug ...)
+	TODO: check
+CVE-2020-10017
+	RESERVED
+CVE-2020-10016
+	RESERVED
+CVE-2020-10015
+	RESERVED
+CVE-2020-10014
+	RESERVED
+CVE-2020-10013
+	RESERVED
+CVE-2020-10012
+	RESERVED
+CVE-2020-10011
+	RESERVED
+CVE-2020-10010
+	RESERVED
+CVE-2020-10009
+	RESERVED
+CVE-2020-10008
+	RESERVED
+CVE-2020-10007
+	RESERVED
+CVE-2020-10006
+	RESERVED
+CVE-2020-10005
+	RESERVED
+CVE-2020-10004
+	RESERVED
+CVE-2020-10003
+	RESERVED
+CVE-2020-10002
+	RESERVED
+CVE-2020-10001
+	RESERVED
+CVE-2020-10000
+	RESERVED
 CVE-2020-9766
 	RESERVED
 CVE-2020-9765
@@ -35916,8 +36440,7 @@ CVE-2019-14895 (A heap-based buffer overflow was discovered in the Linux kernel,
 CVE-2019-14894
 	RESERVED
 	NOT-FOR-US: Red Hat CloudForm
-CVE-2019-14893
-	RESERVED
+CVE-2019-14893 (A flaw was discovered in FasterXML jackson-databind in all versions be ...)
 	- jackson-databind 2.10.0-1
 	[buster] - jackson-databind 2.9.8-3+deb10u1
 	[stretch] - jackson-databind 2.8.6-1+deb9u6
@@ -69974,13 +70497,13 @@ CVE-2018-20348 (libpff_item_tree_create_node in libpff_item_tree.c in libpff bef
 	[jessie] - libpff <no-dsa> (Minor issue)
 	NOTE: https://github.com/libyal/libpff/issues/48
 CVE-2018-20347
-	RESERVED
+	REJECTED
 CVE-2018-20345 (Incorrect access control in StackStorm API (st2api) in StackStorm befo ...)
 	NOT-FOR-US: SlackStorm
 CVE-2018-20344
 	RESERVED
-CVE-2018-20343
-	RESERVED
+CVE-2018-20343 (Multiple buffer overflow vulnerabilities have been found in Ken Silver ...)
+	TODO: check
 CVE-2018-20342 (The Floureon IP Camera SP012 provides a root terminal on a UART serial ...)
 	NOT-FOR-US: Floureon IP Camera SP012
 CVE-2018-20341 (WINMAGIC SecureDoc Disk Encryption software before 8.3 has an Unquoted ...)
@@ -75798,8 +76321,8 @@ CVE-2018-19800 (aubio v0.4.0 to v0.4.8 has a Buffer Overflow in new_aubio_tempo.
 	[jessie] - aubio <no-dsa> (Minor issue)
 CVE-2018-19799 (Dolibarr ERP/CRM through 8.0.3 has /exports/export.php?datatoexport= X ...)
 	- dolibarr <removed>
-CVE-2018-19798
-	RESERVED
+CVE-2018-19798 (Fleetco Fleet Maintenance Management (FMM) 1.2 and earlier allows uplo ...)
+	TODO: check
 CVE-2018-19797 (In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Sel ...)
 	- libsass <unfixed>
 	[buster] - libsass <no-dsa> (Minor issue)
@@ -76169,7 +76692,7 @@ CVE-2018-19660 (An exploitable authenticated command-injection vulnerability exi
 CVE-2018-19659 (An exploitable authenticated command-injection vulnerability exists in ...)
 	NOT-FOR-US: Moxa
 CVE-2018-19658
-	RESERVED
+	REJECTED
 CVE-2018-19657
 	RESERVED
 CVE-2018-19656
@@ -78469,8 +78992,8 @@ CVE-2018-19601 (Rhymix CMS 1.9.8.1 allows SSRF via an index.php?module=admin&amp
 	NOT-FOR-US: Rhymix CMS
 CVE-2018-19600 (Rhymix CMS 1.9.8.1 allows XSS via an index.php?module=admin&act=di ...)
 	NOT-FOR-US: Rhymix CMS
-CVE-2018-19599
-	RESERVED
+CVE-2018-19599 (Monstra CMS 1.6 allows XSS via an uploaded SVG document to the admin/i ...)
+	TODO: check
 CVE-2018-19598 (Statamic 2.10.3 allows XSS via First Name or Last Name to the /users U ...)
 	NOT-FOR-US: Statamic
 CVE-2018-19597 (CMS Made Simple 2.2.8 allows XSS via an uploaded SVG document, a relat ...)
@@ -79945,7 +80468,7 @@ CVE-2018-19286 (The server in mubu note 2018-11-11 has XSS by configuring an acc
 CVE-2018-19285
 	RESERVED
 CVE-2018-19284
-	RESERVED
+	REJECTED
 CVE-2018-19283
 	RESERVED
 CVE-2018-19282 (Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow re ...)
@@ -82428,7 +82951,7 @@ CVE-2018-18481 (A heap-based buffer over-read exists in libopencad 0.2.0 in the
 CVE-2018-18480 (A heap-based buffer over-read exists in libopencad 0.2.0 in the ReadMC ...)
 	NOT-FOR-US: libopencad
 CVE-2018-18479
-	RESERVED
+	REJECTED
 CVE-2018-18478 (Persistent Cross-Site Scripting (XSS) issues in LibreNMS before 1.44 a ...)
 	NOT-FOR-US: LibreNMS
 CVE-2018-18477
@@ -84854,8 +85377,8 @@ CVE-2018-17574 (An issue was discovered in YMFE YApi 1.3.23. There is stored XSS
 	NOT-FOR-US: YMFE YApi
 CVE-2018-17573 (The Wp-Insert plugin through 2.4.2 for WordPress allows upload of arbi ...)
 	NOT-FOR-US: Wp-Insert plugin for WordPress
-CVE-2018-17572
-	RESERVED
+CVE-2018-17572 (InfluxDB 0.9.5 has Reflected XSS in the Write Data module. ...)
+	TODO: check
 CVE-2018-17571 (Vanilla before 2.6.1 allows XSS via the email field of a profile. ...)
 	NOT-FOR-US: Vanilla
 CVE-2018-17570 (utils/ut_ws_svr.c in ViaBTC Exchange Server before 2018-08-21 has an i ...)
@@ -88200,10 +88723,10 @@ CVE-2018-16359 (Google gVisor before 2018-08-23, within the seccomp sandbox, per
 	NOT-FOR-US: gVisor
 CVE-2018-16358 (A cross-site scripting (XSS) vulnerability in inc/core/class.dc.core.p ...)
 	- dotclear <removed>
-CVE-2018-16357
-	RESERVED
-CVE-2018-16356
-	RESERVED
+CVE-2018-16357 (An issue was discovered in PbootCMS. There is a SQL injection via the  ...)
+	TODO: check
+CVE-2018-16356 (An issue was discovered in PbootCMS. There is a SQL injection via the  ...)
+	TODO: check
 CVE-2018-16355
 	RESERVED
 CVE-2018-16354 (An issue was discovered in FHCRM through 2018-02-11. There is a SQL in ...)
@@ -117033,8 +117556,8 @@ CVE-2018-5953 (The swiotlb_print_info function in lib/swiotlb.c in the Linux ker
 	[stretch] - linux 4.9.161-1
 CVE-2018-5952
 	RESERVED
-CVE-2018-5951
-	RESERVED
+CVE-2018-5951 (An issue was discovered in Mikrotik RouterOS. Crafting a packet that h ...)
+	TODO: check
 CVE-2017-18045 (JBMC DirectAdmin before 1.52, when the email_ftp_password_change setti ...)
 	NOT-FOR-US: JBMC DirectAdmin
 CVE-2018-5950 (Cross-site scripting (XSS) vulnerability in the web UI in Mailman befo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c89be94a65ac24b10111fd2ac4bcc9cba45b3d4c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c89be94a65ac24b10111fd2ac4bcc9cba45b3d4c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200303/b5cf8c98/attachment.html>