Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
57d7d96a by Moritz Muehlenhoff at 2018-07-03T17:41:33+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -32,57 +32,57 @@ CVE-2018-13093 (An issue was discovered in
fs/xfs/xfs_icache.c in the Linux kern
NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=199367
NOTE:
https://git.kernel.org/pub/scm/fs/xfs/xfs-linux.git/commit/?h=for-next&id=afca6c5b2595fc44383919fba740c194b0b76aff
CVE-2018-13092 (The mintToken function of a smart contract implementation for
Reimburse ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13091 (The mintToken function of a smart contract implementation for
sumocoin ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13090 (The mintToken function of a smart contract implementation for
...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13089 (The mintToken function of a smart contract implementation for
Universal ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13088 (The mintToken function of a smart contract implementation for
Futures ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13087 (The mintToken function of a smart contract implementation for
Coinstar ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13086 (The mintToken function of a smart contract implementation for
IADOWR ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13085 (The mintToken function of a smart contract implementation for
FreeCoin ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13084 (The mintToken function of a smart contract implementation for
Good Time ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13083 (The mintToken function of a smart contract implementation for
Plaza ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13082 (The mintToken function of a smart contract implementation for
MODI ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13081 (The mintToken function of a smart contract implementation for
GZS Token ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13080 (The mintToken function of a smart contract implementation for
Goutex ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13079 (The mintToken function of a smart contract implementation for
GoodTo ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13078 (The mintToken function of a smart contract implementation for
Jitech ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13077 (The mintToken function of a smart contract implementation for
CTB, an ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13076 (The mintToken function of a smart contract implementation for
Betcash ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13075 (The mintToken function of a smart contract implementation for
Carbon ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13074 (The mintToken function of a smart contract implementation for
FIBToken ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13073 (The mintToken function of a smart contract implementation for
...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13072 (The mintToken function of a smart contract implementation for
...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13071 (The mintToken function of a smart contract implementation for
CCindex10 ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13070 (The mintToken function of a smart contract implementation for
...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13069 (The mintToken function of a smart contract implementation for
DYchain ...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13068 (The mintToken function of a smart contract implementation for
...)
- TODO: check
+ NOT-FOR-US: smart contract implementation
CVE-2018-13067 (/upload/catalog/controller/account/password.php in OpenCart
through ...)
- TODO: check
+ NOT-FOR-US: OpenCart
CVE-2018-13066 (There is a memory leak in util/parser.c in libming 0.4.8,
which will ...)
- ming <removed>
NOTE: https://github.com/libming/libming/issues/146
@@ -105,7 +105,7 @@ CVE-2018-13058
CVE-2018-13057
RESERVED
CVE-2018-13056 (An issue was discovered on zzcms 8.3. There is a vulnerability
at ...)
- TODO: check
+ NOT-FOR-US: zzcms
CVE-2018-13055
RESERVED
CVE-2018-13053 (The alarm_timer_nsleep function in kernel/time/alarmtimer.c in
the ...)
@@ -117,7 +117,7 @@ CVE-2018-13052
CVE-2018-13051
RESERVED
CVE-2018-13050 (A SQL Injection vulnerability exists in Zoho ManageEngine
Applications ...)
- TODO: check
+ NOT-FOR-US: Zoho
CVE-2018-13048
RESERVED
CVE-2018-13047
@@ -267,9 +267,11 @@ CVE-2018-12984 (Hycus CMS 1.0.4 allows Authentication
Bypass via "'=' 'OR'&
NOT-FOR-US: Hycus CMS
CVE-2018-12983 (A stack-based buffer over-read in the ...)
- libpodofo <unfixed> (low)
+ [stretch] - libpodofo <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1595693
CVE-2018-12982 (Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad()
function ...)
- libpodofo <unfixed> (low)
+ [stretch] - libpodofo <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1595689
CVE-2018-12981
RESERVED
@@ -1378,13 +1380,13 @@ CVE-2018-12578 (There is a heap-based buffer overflow
in bmp_compress1_row in ..
- sam2p <removed>
NOTE: https://github.com/pts/sam2p/issues/39
CVE-2018-12577 (The Ping and Traceroute features on TP-Link TL-WR841N v13
00000001 ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2018-12576 (TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119
...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2018-12575 (On TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build
171019 ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2018-12574 (CSRF exists for all actions in the web interface on TP-Link
TL-WR841N ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2018-12573
RESERVED
CVE-2018-12572
@@ -1516,9 +1518,9 @@ CVE-2018-12531 (An issue was discovered in MetInfo 6.0.0.
install\index.php allo
CVE-2018-12530 (An issue was discovered in MetInfo 6.0.0.
admin/app/batch/csvup.php ...)
NOT-FOR-US: MetInfo
CVE-2018-12529 (An issue was discovered on Intex N150 devices. The router
firmware ...)
- TODO: check
+ NOT-FOR-US: Intex
CVE-2018-12528 (An issue was discovered on Intex N150 devices. The
backup/restore ...)
- TODO: check
+ NOT-FOR-US: Intex
CVE-2018-12527
RESERVED
CVE-2018-12526 (Telesquare SDT-CS3B1 and SDT-CW3B1 devices through 1.2.0 have
a default ...)
@@ -1576,7 +1578,7 @@ CVE-2018-12501 (Nagios Fusion before 4.1.4 has XSS, aka
TPS#13332-13335. ...)
CVE-2018-12500
RESERVED
CVE-2018-12499 (The Motorola MBP853 firmware does not correctly validate
server ...)
- TODO: check
+ NOT-FOR-US: Motoral
CVE-2018-12498 (spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id
...)
NOT-FOR-US: iCMS
CVE-2018-12497
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/57d7d96a1a2ad47bd6d7ffb0f98273da649ca539
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/57d7d96a1a2ad47bd6d7ffb0f98273da649ca539
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
