Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
dd107217 by Salvatore Bonaccorso at 2018-04-16T10:18:46+02:00
Add preliminary information on two new libreoffice issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -5,9 +5,20 @@ CVE-2018-10122 (QingDao Nature Easy Soft Chanzhi Enterprise 
Portal System (aka .
 CVE-2018-10121 (plugins/box/pages/pages.admin.php in Monstra CMS 3.0.4 has a 
stored XSS ...)
        NOT-FOR-US: Monstra CMS
 CVE-2018-10120 (The SwCTBWrapper::Read function in 
sw/source/filter/ww8/ww8toolbar.cxx ...)
-       TODO: check
+       - libreoffice <unfixed>
+       NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=6173
+       NOTE: https://gerrit.libreoffice.org/#/c/49486/
+       NOTE: https://gerrit.libreoffice.org/#/c/49499/
+       NOTE: https://gerrit.libreoffice.org/#/c/49500/
+       NOTE: 
https://gerrit.libreoffice.org/gitweb?p=core.git;a=commit;h=017fcc2fcd00af17a97bd5463d89662404f57667
 CVE-2018-10119 (sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 
and 6.x ...)
-       TODO: check
+       - libreoffice <unfixed>
+       NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5747
+       NOTE: https://gerrit.libreoffice.org/#/c/48751/
+       NOTE: https://gerrit.libreoffice.org/#/c/48756/
+       NOTE: https://gerrit.libreoffice.org/#/c/48757/
+       NOTE: https://gerrit.libreoffice.org/#/c/48758/
+       NOTE: 
https://gerrit.libreoffice.org/gitweb?p=core.git;a=commit;h=fdd41c995d1f719e92c6f083e780226114762f05
 CVE-2018-10118 (Monstra CMS 3.0.4 has Stored XSS via the Name field on the 
Create New ...)
        NOT-FOR-US: Monstra CMS
 CVE-2018-10117 (An issue was discovered in idreamsoft iCMS V7.0.7. There is a 
CSRF ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/dd1072174ede675a3023e5f5bae0d20507131ea0

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/dd1072174ede675a3023e5f5bae0d20507131ea0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to