Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
54dd3d5c by security tracker role at 2018-07-03T20:11:00+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,35 @@
+CVE-2018-13116 (/user/del.php in zzcms 8.3 allows SQL injection via the
tablename ...)
+ TODO: check
+CVE-2018-13115
+ RESERVED
+CVE-2018-13114
+ RESERVED
+CVE-2018-13113 (The transfer and transferFrom functions of a smart contract
...)
+ TODO: check
+CVE-2018-13112 (get_l2len in common/get.c in Tcpreplay 4.3.0 beta 1 allows
remote ...)
+ TODO: check
+CVE-2018-13111
+ RESERVED
+CVE-2018-13110
+ RESERVED
+CVE-2018-13109
+ RESERVED
+CVE-2018-13108
+ RESERVED
+CVE-2018-13107
+ RESERVED
+CVE-2018-13106 (ClipperCMS 1.3.3 has stored XSS via the "Tools ->
Configuration" screen ...)
+ TODO: check
+CVE-2018-13105
+ RESERVED
+CVE-2018-13104
+ RESERVED
+CVE-2018-13103
+ RESERVED
+CVE-2018-13102 (AnyDesk before "12.06.2018 - 4.1.3" on Windows 7 SP1
has a DLL ...)
+ TODO: check
+CVE-2018-13101 (KioskSimpleService.exe in RedSwimmer KioskSimple 1.4.7.0
suffers from a ...)
+ TODO: check
CVE-2018-13100 (An issue was discovered in fs/f2fs/super.c in the Linux kernel
through ...)
- linux <unfixed>
NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=200183
@@ -86,8 +118,8 @@ CVE-2018-13067
(/upload/catalog/controller/account/password.php in OpenCart thro
CVE-2018-13066 (There is a memory leak in util/parser.c in libming 0.4.8,
which will ...)
- ming <removed>
NOTE: https://github.com/libming/libming/issues/146
-CVE-2018-13065
- RESERVED
+CVE-2018-13065 (ModSecurity 3.0.0 has XSS via an onerror attribute of an IMG
element. ...)
+ TODO: check
CVE-2018-13064
RESERVED
CVE-2018-13063
@@ -2274,8 +2306,8 @@ CVE-2018-12257 (An issue was discovered on Momentum Axel
720P 5.1.8 devices. The
NOT-FOR-US: Momentum Axel 720P 5.1.8 devices
CVE-2018-12256
RESERVED
-CVE-2018-12255
- RESERVED
+CVE-2018-12255 (An XSS issue was discovered in InvoicePlane 1.5.10 via the
"Quote PDF ...)
+ TODO: check
CVE-2018-12254 (router.php in the Harmis Ek rishta (aka ek-rishta) 2.10
component for ...)
NOT-FOR-US: Harmis Ek rishta component for Joomla!
CVE-2018-12253
@@ -3453,8 +3485,8 @@ CVE-2018-11748
RESERVED
CVE-2018-11747
RESERVED
-CVE-2018-11746
- RESERVED
+CVE-2018-11746 (In Puppet Discovery prior to 1.2.0, when running Discovery
against ...)
+ TODO: check
CVE-2018-11745
RESERVED
CVE-2018-11744
@@ -3780,26 +3812,26 @@ CVE-2018-11645 (psi/zfile.c in Artifex Ghostscript
before 9.21rc1 permits the st
NOTE:
http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=b60d50b7567369ad856cebe1efb6cd7dd2284219
(9.21rc1)
CVE-2018-11644
RESERVED
-CVE-2018-11643
- RESERVED
-CVE-2018-11642
- RESERVED
-CVE-2018-11641
- RESERVED
-CVE-2018-11640
- RESERVED
-CVE-2018-11639
- RESERVED
-CVE-2018-11638
- RESERVED
-CVE-2018-11637
- RESERVED
-CVE-2018-11636
- RESERVED
-CVE-2018-11635
- RESERVED
-CVE-2018-11634
- RESERVED
+CVE-2018-11643 (SQL injection vulnerability in the administrative console in
Dialogic ...)
+ TODO: check
+CVE-2018-11642 (Incorrect Permission Assignment on the
/var/www/xms/cleanzip.sh shell ...)
+ TODO: check
+CVE-2018-11641 (Use of Hard-coded Credentials in ...)
+ TODO: check
+CVE-2018-11640 (XML External Entity (XXE) vulnerability in the web service in
Dialogic ...)
+ TODO: check
+CVE-2018-11639 (Plaintext Storage of Passwords within Cookies in ...)
+ TODO: check
+CVE-2018-11638 (Unrestricted Upload of a File with a Dangerous Type in the ...)
+ TODO: check
+CVE-2018-11637 (Information leakage vulnerability in the administrative
console in ...)
+ TODO: check
+CVE-2018-11636 (Cross-site request forgery (CSRF) vulnerability in the
administrative ...)
+ TODO: check
+CVE-2018-11635 (Use of a Hard-coded Cryptographic Key used to protect cookie
session ...)
+ TODO: check
+CVE-2018-11634 (Plaintext Storage of Passwords in the administrative console
in ...)
+ TODO: check
CVE-2018-11633 (An issue was discovered in the MULTIDOTS Woo Checkout for
Digital Goods ...)
NOT-FOR-US: MULTIDOTS Woo Checkout for Digital Goods plugin for
WordPress
CVE-2018-11632 (An issue was discovered in the MULTIDOTS Add Social Share
Messenger ...)
@@ -3918,7 +3950,7 @@ CVE-2018-11583 (SeaCMS 6.61 has stored XSS in
admin_collect.php via the siteurl
NOT-FOR-US: SeaCMS
CVE-2018-11582
RESERVED
-CVE-2018-11581 (Cross-site scripting (XSS) vulnerability on Brother HL-L2340D
and ...)
+CVE-2018-11581 (Cross-site scripting (XSS) vulnerability on Brother HL series
printers ...)
NOT-FOR-US: Brother HL-L2340D and HL-L2380DW series printers
CVE-2018-11580 (An issue was discovered in mass-pages-posts-creator.php in the
...)
NOT-FOR-US: MULTIDOTS Mass Pages/Posts Creator plugin for WordPress
@@ -4648,12 +4680,12 @@ CVE-2018-11318
RESERVED
CVE-2018-11317
RESERVED
-CVE-2018-11316
- RESERVED
+CVE-2018-11316 (The UPnP HTTP server on Sonos wireless speaker products allow
...)
+ TODO: check
CVE-2018-11315 (The Local HTTP API in Radio Thermostat CT50 and CT80 1.04.84
and below ...)
NOT-FOR-US: Radio Thermostat CT50 and CT80
-CVE-2018-11314
- RESERVED
+CVE-2018-11314 (The External Control API in Roku and Roku TV products allow
...)
+ TODO: check
CVE-2018-11313
RESERVED
CVE-2018-11312
@@ -5321,10 +5353,10 @@ CVE-2018-11054
RESERVED
CVE-2018-11053 (Dell EMC iDRAC Service Module for all supported Linux and
XenServer ...)
NOT-FOR-US: Dell
-CVE-2018-11052
- RESERVED
-CVE-2018-11051
- RESERVED
+CVE-2018-11052 (Dell EMC ECS versions 3.2.0.0 and 3.2.0.1 contain an
authentication ...)
+ TODO: check
+CVE-2018-11051 (RSA Certificate Manager Versions 6.9 build 560 through 6.9
build 564 ...)
+ TODO: check
CVE-2018-11050
RESERVED
CVE-2018-11049
@@ -10396,7 +10428,7 @@ CVE-2017-18249 (The add_free_nid function in
fs/f2fs/node.c in the Linux kernel
[wheezy] - linux <not-affected> (Vulnerable code not present)
NOTE: Fixed by:
https://git.kernel.org/linus/30a61ddf8117c26ac5b295e1233eaa9629a94ca3
CVE-2017-18248 (The add_job function in scheduler/ipp.c in CUPS before 2.2.6,
when ...)
- {DLA-1387-1}
+ {DLA-1412-1 DLA-1387-1}
- cups 2.2.6-1
[stretch] - cups <no-dsa> (Minor issue)
NOTE:
https://github.com/apple/cups/commit/49fa4983f25b64ec29d548ffa3b9782426007df3
@@ -13404,56 +13436,56 @@ CVE-2018-7789
RESERVED
CVE-2018-7788
RESERVED
-CVE-2018-7787
- RESERVED
-CVE-2018-7786
- RESERVED
-CVE-2018-7785
- RESERVED
-CVE-2018-7784
- RESERVED
-CVE-2018-7783
- RESERVED
-CVE-2018-7782
- RESERVED
-CVE-2018-7781
- RESERVED
-CVE-2018-7780
- RESERVED
-CVE-2018-7779
- RESERVED
-CVE-2018-7778
- RESERVED
-CVE-2018-7777
- RESERVED
-CVE-2018-7776
- RESERVED
-CVE-2018-7775
- RESERVED
-CVE-2018-7774
- RESERVED
-CVE-2018-7773
- RESERVED
-CVE-2018-7772
- RESERVED
-CVE-2018-7771
- RESERVED
-CVE-2018-7770
- RESERVED
-CVE-2018-7769
- RESERVED
-CVE-2018-7768
- RESERVED
-CVE-2018-7767
- RESERVED
-CVE-2018-7766
- RESERVED
-CVE-2018-7765
- RESERVED
-CVE-2018-7764
- RESERVED
-CVE-2018-7763
- RESERVED
+CVE-2018-7787 (In Schneider Electric U.motion Builder software versions prior
to ...)
+ TODO: check
+CVE-2018-7786 (In Schneider Electric U.motion Builder software versions prior
to ...)
+ TODO: check
+CVE-2018-7785 (In Schneider Electric U.motion Builder software versions prior
to ...)
+ TODO: check
+CVE-2018-7784 (In Schneider Electric U.motion Builder software versions prior
to ...)
+ TODO: check
+CVE-2018-7783 (Schneider Electric SoMachine Basic prior to v1.6 SP1 suffers
from an ...)
+ TODO: check
+CVE-2018-7782 (In Schneider Electric Pelco Sarix Professional 1st generation
cameras ...)
+ TODO: check
+CVE-2018-7781 (In Schneider Electric Pelco Sarix Professional 1st generation
cameras ...)
+ TODO: check
+CVE-2018-7780 (In Schneider Electric Pelco Sarix Professional 1st generation
cameras ...)
+ TODO: check
+CVE-2018-7779 (In Schneider Electric Wiser for KNX V2.1.0 and prior, homeLYnk
V2.0.1 ...)
+ TODO: check
+CVE-2018-7778 (In Schneider Electric Evlink Charging Station versions prior to
...)
+ TODO: check
+CVE-2018-7777 (In Schneider Electric U.motion Builder software versions prior
to ...)
+ TODO: check
+CVE-2018-7776 (The vulnerability is due to insufficient handling of
update_file ...)
+ TODO: check
+CVE-2018-7775 (The vulnerability exists within error.php in Schneider Electric
...)
+ TODO: check
+CVE-2018-7774 (The vulnerability exists within processing of localize.php in
...)
+ TODO: check
+CVE-2018-7773 (The vulnerability exists within processing of nfcserver.php in
...)
+ TODO: check
+CVE-2018-7772 (The vulnerability exists within processing of applets which are
...)
+ TODO: check
+CVE-2018-7771 (The vulnerability exists within processing of editscript.php in
...)
+ TODO: check
+CVE-2018-7770 (The vulnerability exists within processing of sendmail.php in
...)
+ TODO: check
+CVE-2018-7769 (The vulnerability exists within processing of xmlserver.php in
...)
+ TODO: check
+CVE-2018-7768 (The vulnerability exists within processing of loadtemplate.php
in ...)
+ TODO: check
+CVE-2018-7767 (The vulnerability exists within processing of editobject.php in
...)
+ TODO: check
+CVE-2018-7766 (The vulnerability exists within processing of track_getdata.php
in ...)
+ TODO: check
+CVE-2018-7765 (The vulnerability exists within processing of
track_import_export.php ...)
+ TODO: check
+CVE-2018-7764 (The vulnerability exists within runscript.php applet in
Schneider ...)
+ TODO: check
+CVE-2018-7763 (The vulnerability exists within css.inc.php in Schneider
Electric ...)
+ TODO: check
CVE-2018-7762 (A vulnerability exists in the web services to process SOAP
requests in ...)
NOT-FOR-US: Schneider
CVE-2018-7761 (A vulnerability exists in the HTTP request parser in Schneider
...)
@@ -13939,8 +13971,8 @@ CVE-2018-7637 (An issue was discovered in CImg v.220. A
heap-based buffer over-r
NOTE:
https://github.com/dtschump/CImg/commit/10af1e8c1ad2a58a0a3342a856bae63e8f257abb
CVE-2018-7636
RESERVED
-CVE-2018-7635
- RESERVED
+CVE-2018-7635 (Whale Browser before 1.0.41.8 displays no URL information but
only a ...)
+ TODO: check
CVE-2018-7634 (An issue was discovered in Enalean Tuleap 9.17. Lack of CSRF
attack ...)
NOT-FOR-US: Enalean Tuleap
CVE-2018-7633
@@ -15596,7 +15628,7 @@ CVE-2018-7182 (The ctl_getitem method in ntpd in
ntp-4.2.8p6 before 4.2.8p11 all
CVE-2018-7181
RESERVED
CVE-2017-18190 (A localhost.localdomain whitelist entry in valid_host() in ...)
- {DLA-1288-1}
+ {DLA-1412-1 DLA-1288-1}
- cups 2.2.3-2
[stretch] - cups 2.2.1-8+deb9u1
NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1048
@@ -22702,18 +22734,18 @@ CVE-2018-4858
RESERVED
CVE-2018-4857
RESERVED
-CVE-2018-4856
- RESERVED
-CVE-2018-4855
- RESERVED
-CVE-2018-4854
- RESERVED
-CVE-2018-4853
- RESERVED
-CVE-2018-4852
- RESERVED
-CVE-2018-4851
- RESERVED
+CVE-2018-4856 (A vulnerability has been identified in SICLOCK TC100 (All
versions) ...)
+ TODO: check
+CVE-2018-4855 (A vulnerability has been identified in SICLOCK TC100 (All
versions) ...)
+ TODO: check
+CVE-2018-4854 (A vulnerability has been identified in SICLOCK TC100 (All
versions) ...)
+ TODO: check
+CVE-2018-4853 (A vulnerability has been identified in SICLOCK TC100 (All
versions) ...)
+ TODO: check
+CVE-2018-4852 (A vulnerability has been identified in SICLOCK TC100 (All
versions) ...)
+ TODO: check
+CVE-2018-4851 (A vulnerability has been identified in SICLOCK TC100 (All
versions) ...)
+ TODO: check
CVE-2018-4850 (A vulnerability has been identified in SIMATIC S7-400 (incl. F)
CPU ...)
NOT-FOR-US: SIMATIC
CVE-2018-4849 (A vulnerability has been identified in Siveillance VMS Video
for ...)
@@ -82799,12 +82831,12 @@ CVE-2017-1719
RESERVED
CVE-2017-1718
RESERVED
-CVE-2017-1717
- RESERVED
+CVE-2017-1717 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1716 (IBM Tivoli Workload Scheduler 8.6.0, 9.1.0, and 9.2.0 could
disclose ...)
NOT-FOR-US: IBM Tivoli Workload Scheduler
-CVE-2017-1715
- RESERVED
+CVE-2017-1715 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1714 (IBM Notes and Domino NSD 8.5 and 9.0 could allow an
authenticated ...)
NOT-FOR-US: IBM Notes and Domino NSD
CVE-2017-1713
@@ -82851,10 +82883,10 @@ CVE-2017-1693 (IBM Integration Bus 9.0 and 10.0 could
allow an attacker that has
NOT-FOR-US: IBM Integration Bus
CVE-2017-1692 (IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified
vulnerability ...)
NOT-FOR-US: IBM AIX
-CVE-2017-1691
- RESERVED
-CVE-2017-1690
- RESERVED
+CVE-2017-1691 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1690 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1689 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to
cross-site ...)
NOT-FOR-US: IBM
CVE-2017-1688 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to
cross-site ...)
@@ -82929,10 +82961,10 @@ CVE-2017-1654 (IBM Spectrum Scale 4.1.1 and 4.2.0 -
4.2.3 could allow a local ..
NOT-FOR-US: IBM
CVE-2017-1653 (IBM Jazz Foundation (IBM Rational Collaborative Lifecycle
Management ...)
NOT-FOR-US: IBM Jazz Foundation
-CVE-2017-1652
- RESERVED
-CVE-2017-1651
- RESERVED
+CVE-2017-1652 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1651 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1650 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to
cross-site ...)
NOT-FOR-US: IBM
CVE-2017-1649
@@ -82991,8 +83023,8 @@ CVE-2017-1623 (IBM QRadar 7.2 and 7.3 is vulnerable to
cross-site scripting. Thi
NOT-FOR-US: IBM QRadar
CVE-2017-1622
RESERVED
-CVE-2017-1621
- RESERVED
+CVE-2017-1621 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1620
RESERVED
CVE-2017-1619
@@ -83017,8 +83049,8 @@ CVE-2017-1610
RESERVED
CVE-2017-1609
RESERVED
-CVE-2017-1608
- RESERVED
+CVE-2017-1608 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1607 (IBM DOORS Next Generation (DNG/RRC) 6.0 is vulnerable to
cross-site ...)
NOT-FOR-US: IBM
CVE-2017-1606 (IBM Financial Transaction Manager (FTM) for Multi-Platform (MP)
...)
@@ -83049,8 +83081,8 @@ CVE-2017-1594
RESERVED
CVE-2017-1593 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is
vulnerable to ...)
NOT-FOR-US: IBM
-CVE-2017-1592
- RESERVED
+CVE-2017-1592 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1591 (IBM WebSphere DataPower Appliances 7.0.0 through 7.6 is
vulnerable to ...)
NOT-FOR-US: IBM
CVE-2017-1590
@@ -83097,22 +83129,22 @@ CVE-2017-1570 (IBM Jazz Foundation products could
allow an authenticated user to
NOT-FOR-US: IBM
CVE-2017-1569 (IBM WebSphere Commerce 7.0 and 8.0 contains an unspecified ...)
NOT-FOR-US: IBM
-CVE-2017-1568
- RESERVED
+CVE-2017-1568 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1567 (IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site
...)
NOT-FOR-US: IBM Doors Web Access
CVE-2017-1566
RESERVED
-CVE-2017-1565
- RESERVED
-CVE-2017-1564
- RESERVED
+CVE-2017-1565 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1564 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1563 (IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site
...)
NOT-FOR-US: IBM Doors Web Access
-CVE-2017-1562
- RESERVED
-CVE-2017-1561
- RESERVED
+CVE-2017-1562 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1561 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1560 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is
vulnerable to ...)
NOT-FOR-US: IBM
CVE-2017-1559
@@ -83600,18 +83632,18 @@ CVE-2017-1319 (IBM Tivoli Federated Identity Manager
6.2 is affected by a ...)
NOT-FOR-US: IBM
CVE-2017-1318 (IBM MQ Appliance 8.0 and 9.0 could allow an authenticated
messaging ...)
NOT-FOR-US: IBM
-CVE-2017-1317
- RESERVED
-CVE-2017-1316
- RESERVED
-CVE-2017-1315
- RESERVED
-CVE-2017-1314
- RESERVED
-CVE-2017-1313
- RESERVED
-CVE-2017-1312
- RESERVED
+CVE-2017-1317 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1316 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1315 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1314 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1313 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1312 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1311 (IBM Insights Foundation for Energy 2.0 is vulnerable to SQL
injection. ...)
NOT-FOR-US: IBM
CVE-2017-1310 (IBM Informix Dynamic Server 12.1 could allow an authenticated
user to ...)
@@ -83622,8 +83654,8 @@ CVE-2017-1308 (IBM Daeja ViewONE Professional, Standard
& Virtual 4.1.5.1 an
NOT-FOR-US: IBM
CVE-2017-1307
RESERVED
-CVE-2017-1306
- RESERVED
+CVE-2017-1306 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1305 (IBM DOORS Next Generation (DNG/RRC) 6.0.2 and 6.0.3 is
vulnerable to ...)
NOT-FOR-US: IBM
CVE-2017-1304 (IBM has identified a vulnerability with IBM Spectrum Scale/GPFS
...)
@@ -83636,8 +83668,8 @@ CVE-2017-1301 (IBM Spectrum Protect 7.1 and 8.1 could
allow a local attacker to
NOT-FOR-US: IBM
CVE-2017-1300 (IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to
...)
NOT-FOR-US: IBM
-CVE-2017-1299
- RESERVED
+CVE-2017-1299 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1298
REJECTED
CVE-2017-1297 (IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1
...)
@@ -83646,10 +83678,10 @@ CVE-2017-1296
RESERVED
CVE-2017-1295 (IBM RSA DM contains unspecified vulnerability in CLM
Applications with ...)
NOT-FOR-US: IBM
-CVE-2017-1294
- RESERVED
-CVE-2017-1293
- RESERVED
+CVE-2017-1294 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1293 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1292 (IBM Maximo Asset Management 7.5 and 7.6 generates error
messages that ...)
NOT-FOR-US: IBM
CVE-2017-1291 (IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to HTTP
response ...)
@@ -83672,20 +83704,20 @@ CVE-2017-1283 (IBM WebSphere MQ 8.0 and 9.0 could
allow an authenticated user to
NOT-FOR-US: IBM
CVE-2017-1282 (IBM Content Navigator & CMIS 2.0 and 3.0 is vulnerable to
cross-site ...)
NOT-FOR-US: IBM
-CVE-2017-1281
- RESERVED
-CVE-2017-1280
- RESERVED
+CVE-2017-1281 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
+CVE-2017-1280 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1279 (IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 could allow
a ...)
NOT-FOR-US: IBM Tealeaf Customer Experience
CVE-2017-1278 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0 and 6.0 is
vulnerable to ...)
NOT-FOR-US: IBM
-CVE-2017-1277
- RESERVED
+CVE-2017-1277 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1276 (IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0 and 6.0 is
vulnerable to ...)
NOT-FOR-US: IBM
-CVE-2017-1275
- RESERVED
+CVE-2017-1275 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1274 (IBM Domino 8.5.3, and 9.0 is vulnerable to a stack based
overflow in ...)
NOT-FOR-US: IBM
CVE-2017-1273
@@ -83734,8 +83766,8 @@ CVE-2017-1252
RESERVED
CVE-2017-1251 (An undisclosed vulnerability in CLM applications may result in
some ...)
NOT-FOR-US: IBM
-CVE-2017-1250
- RESERVED
+CVE-2017-1250 (IBM Rational Quality Manager and IBM Rational Collaborative
Lifecycle ...)
+ TODO: check
CVE-2017-1249 (IBM Rhapsody DM 5.0 and 6.0 is vulnerable to cross-site
scripting. ...)
NOT-FOR-US: IBM
CVE-2017-1248
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/54dd3d5cd7b35b5d05ab425475ab3b52a56caf3b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/54dd3d5cd7b35b5d05ab425475ab3b52a56caf3b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
