[Git][security-tracker-team/security-tracker][master] automatic update

Sat, 02 Jun 2018 13:10:33 -0700 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
49649f8d by security tracker role at 2018-06-02T20:10:16+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,23 @@
+CVE-2018-11682 (Default and unremovable support credentials allow attackers to 
gain ...)
+       TODO: check
+CVE-2018-11681 (Default and unremovable support credentials (user:nwk 
password:nwk2) ...)
+       TODO: check
+CVE-2018-11680 (An issue was discovered in CmsEasy 6.1_20180508. There is a 
CSRF ...)
+       TODO: check
+CVE-2018-11679 (An issue was discovered in CmsEasy 6.1_20180508. There is a 
CSRF ...)
+       TODO: check
+CVE-2018-11678
+       RESERVED
+CVE-2018-11677
+       RESERVED
+CVE-2018-11676
+       RESERVED
+CVE-2018-11675
+       RESERVED
+CVE-2018-11674
+       RESERVED
+CVE-2018-11673
+       RESERVED
 CVE-2018-11672
        RESERVED
 CVE-2018-11671 (An issue was discovered in GreenCMS v2.3.0603. There is a CSRF 
...)
@@ -100,8 +120,8 @@ CVE-2018-11631 (Rondaful M1 Wristband Smart Band 1 devices 
allow remote attacker
        NOT-FOR-US: Rondaful M1 Wristband Smart Band 1 devices
 CVE-2018-11630
        RESERVED
-CVE-2018-11629
-       RESERVED
+CVE-2018-11629 (Default and unremovable support credentials (user:lutron ...)
+       TODO: check
 CVE-2018-11628 (Data input into EMS Master Calendar before 8.0.0.201805210 via 
URL ...)
        NOT-FOR-US: EMS Master Calendar
 CVE-2018-11627 (Sinatra before 2.0.2 has XSS via the 400 Bad Request page that 
occurs ...)
@@ -2027,6 +2047,7 @@ CVE-2018-10848
        NOT-FOR-US: RichFaces
 CVE-2018-10847 [insufficient stream header validation]
        RESERVED
+       {DSA-4216-1}
        - prosody 0.10.2-1 (bug #900524)
        NOTE: https://issues.prosody.im/1147
        NOTE: https://blog.prosody.im/prosody-0-10-2-security-release/



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/49649f8d8ce3592e559265b6e6178d0a31cb02a7

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/49649f8d8ce3592e559265b6e6178d0a31cb02a7
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to