[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Fri, 20 Apr 2018 01:11:04 -0700

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
77597b1e by security tracker role at 2018-04-20T08:10:28+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,13 @@
+CVE-2018-10241
+       RESERVED
+CVE-2018-10240
+       RESERVED
+CVE-2018-10239
+       RESERVED
+CVE-2018-10238 (bvlc.c in skarg BACnet Protocol Stack 0.8.5 has a buffer 
overflow in ...)
+       TODO: check
+CVE-2018-10237
+       RESERVED
 CVE-2018-10236 (POSCMS 3.2.18 allows remote attackers to execute arbitrary PHP 
code via ...)
        NOT-FOR-US: POSCMS
 CVE-2018-10235 (POSCMS 3.2.10 allows remote attackers to execute arbitrary PHP 
code via ...)
@@ -273,6 +283,7 @@ CVE-2018-10122 (QingDao Nature Easy Soft Chanzhi Enterprise 
Portal System (aka .
 CVE-2018-10121 (plugins/box/pages/pages.admin.php in Monstra CMS 3.0.4 has a 
stored XSS ...)
        NOT-FOR-US: Monstra CMS
 CVE-2018-10120 (The SwCTBWrapper::Read function in 
sw/source/filter/ww8/ww8toolbar.cxx ...)
+       {DLA-1356-1}
        - libreoffice 1:6.0.2-1
        NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=6173
        NOTE: https://gerrit.libreoffice.org/#/c/49486/
@@ -281,6 +292,7 @@ CVE-2018-10120 (The SwCTBWrapper::Read function in 
sw/source/filter/ww8/ww8toolb
        NOTE: 
https://gerrit.libreoffice.org/gitweb?p=core.git;a=commit;h=017fcc2fcd00af17a97bd5463d89662404f57667
        NOTE: 
https://www.libreoffice.org/about-us/security/advisories/cve-2018-10120/
 CVE-2018-10119 (sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 
and 6.x ...)
+       {DLA-1356-1}
        - libreoffice 1:6.0.1-1
        NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5747
        NOTE: https://gerrit.libreoffice.org/#/c/48751/
@@ -27532,28 +27544,28 @@ CVE-2018-0278
        RESERVED
 CVE-2018-0277
        RESERVED
-CVE-2018-0276
-       RESERVED
-CVE-2018-0275
-       RESERVED
+CVE-2018-0276 (A vulnerability in Cisco WebEx Connect IM could allow an ...)
+       TODO: check
+CVE-2018-0275 (A vulnerability in the support tunnel feature of Cisco Identity 
...)
+       TODO: check
 CVE-2018-0274
        RESERVED
-CVE-2018-0273
-       RESERVED
-CVE-2018-0272
-       RESERVED
+CVE-2018-0273 (A vulnerability in the IPsec Manager of Cisco StarOS for Cisco 
...)
+       TODO: check
+CVE-2018-0272 (A vulnerability in the Secure Sockets Layer (SSL) Engine of 
Cisco ...)
+       TODO: check
 CVE-2018-0271
        RESERVED
 CVE-2018-0270
        RESERVED
-CVE-2018-0269
-       RESERVED
+CVE-2018-0269 (A vulnerability in the web framework of the Cisco Digital 
Network ...)
+       TODO: check
 CVE-2018-0268
        RESERVED
-CVE-2018-0267
-       RESERVED
-CVE-2018-0266
-       RESERVED
+CVE-2018-0267 (A vulnerability in the web framework of Cisco Unified 
Communications ...)
+       TODO: check
+CVE-2018-0266 (A vulnerability in the web framework of Cisco Unified 
Communications ...)
+       TODO: check
 CVE-2018-0265
        RESERVED
 CVE-2018-0264
@@ -27564,26 +27576,26 @@ CVE-2018-0262
        RESERVED
 CVE-2018-0261
        RESERVED
-CVE-2018-0260
-       RESERVED
-CVE-2018-0259
-       RESERVED
+CVE-2018-0260 (A vulnerability in the web interface of Cisco MATE Live could 
allow an ...)
+       TODO: check
+CVE-2018-0259 (A vulnerability in the web-based management interface of Cisco 
MATE ...)
+       TODO: check
 CVE-2018-0258
        RESERVED
-CVE-2018-0257
-       RESERVED
-CVE-2018-0256
-       RESERVED
-CVE-2018-0255
-       RESERVED
-CVE-2018-0254
-       RESERVED
+CVE-2018-0257 (A vulnerability in Cisco IOS XE Software running on Cisco cBR 
Series ...)
+       TODO: check
+CVE-2018-0256 (A vulnerability in the peer-to-peer message processing 
functionality of ...)
+       TODO: check
+CVE-2018-0255 (A vulnerability in the device manager web interface of Cisco 
Industrial ...)
+       TODO: check
+CVE-2018-0254 (A vulnerability in the detection engine of Cisco Firepower 
System ...)
+       TODO: check
 CVE-2018-0253
        RESERVED
 CVE-2018-0252
        RESERVED
-CVE-2018-0251
-       RESERVED
+CVE-2018-0251 (A vulnerability in the Web Server Authentication Required 
screen of the ...)
+       TODO: check
 CVE-2018-0250
        RESERVED
 CVE-2018-0249
@@ -27596,42 +27608,42 @@ CVE-2018-0246
        RESERVED
 CVE-2018-0245
        RESERVED
-CVE-2018-0244
-       RESERVED
-CVE-2018-0243
-       RESERVED
-CVE-2018-0242
-       RESERVED
-CVE-2018-0241
-       RESERVED
-CVE-2018-0240
-       RESERVED
-CVE-2018-0239
-       RESERVED
-CVE-2018-0238
-       RESERVED
-CVE-2018-0237
-       RESERVED
+CVE-2018-0244 (A vulnerability in the detection engine of Cisco Firepower 
System ...)
+       TODO: check
+CVE-2018-0243 (A vulnerability in the detection engine of Cisco Firepower 
System ...)
+       TODO: check
+CVE-2018-0242 (A vulnerability in the WebVPN web-based management interface of 
Cisco ...)
+       TODO: check
+CVE-2018-0241 (A vulnerability in the UDP broadcast forwarding function of 
Cisco IOS ...)
+       TODO: check
+CVE-2018-0240 (Multiple vulnerabilities in the Application Layer Protocol 
Inspection ...)
+       TODO: check
+CVE-2018-0239 (A vulnerability in the egress packet processing functionality 
of the ...)
+       TODO: check
+CVE-2018-0238 (A vulnerability in the role-based resource checking 
functionality of ...)
+       TODO: check
+CVE-2018-0237 (A vulnerability in the file type detection mechanism of the 
Cisco ...)
+       TODO: check
 CVE-2018-0236
        RESERVED
 CVE-2018-0235
        RESERVED
 CVE-2018-0234
        RESERVED
-CVE-2018-0233
-       RESERVED
+CVE-2018-0233 (A vulnerability in the Secure Sockets Layer (SSL) packet 
reassembly ...)
+       TODO: check
 CVE-2018-0232
        RESERVED
-CVE-2018-0231
-       RESERVED
-CVE-2018-0230
-       RESERVED
-CVE-2018-0229
-       RESERVED
-CVE-2018-0228
-       RESERVED
-CVE-2018-0227
-       RESERVED
+CVE-2018-0231 (A vulnerability in the Transport Layer Security (TLS) library 
of Cisco ...)
+       TODO: check
+CVE-2018-0230 (A vulnerability in the internal packet-processing functionality 
of ...)
+       TODO: check
+CVE-2018-0229 (A vulnerability in the implementation of Security Assertion 
Markup ...)
+       TODO: check
+CVE-2018-0228 (A vulnerability in the ingress flow creation functionality of 
Cisco ...)
+       TODO: check
+CVE-2018-0227 (A vulnerability in the Secure Sockets Layer (SSL) Virtual 
Private ...)
+       TODO: check
 CVE-2018-0226
        RESERVED
 CVE-2018-0225
@@ -27870,8 +27882,8 @@ CVE-2018-0114 (A vulnerability in the Cisco node-jose 
open source library before
        NOT-FOR-US: Cisco node-jose
 CVE-2018-0113 (A vulnerability in an operations script of Cisco UCS Central 
could ...)
        NOT-FOR-US: Cisco
-CVE-2018-0112
-       RESERVED
+CVE-2018-0112 (A vulnerability in Cisco WebEx Business Suite clients, Cisco 
WebEx ...)
+       TODO: check
 CVE-2018-0111 (A vulnerability in Cisco WebEx Meetings Server could allow an 
...)
        NOT-FOR-US: Cisco
 CVE-2018-0110 (A vulnerability in Cisco WebEx Meetings Server could allow an 
...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/77597b1e794faf166b450eb0cbc9890bb061315f

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/77597b1e794faf166b450eb0cbc9890bb061315f
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to