Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1ebf21b7 by Salvatore Bonaccorso at 2018-09-02T19:49:52Z
Process two NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -18,7 +18,7 @@ CVE-2018-16332 (An issue was discovered in iCMS 7.0.9. There
is an ...)
CVE-2018-16331 (admin.php?s=/Admin/doedit in DamiCMS v6.0.0 allows CSRF to
change the ...)
NOT-FOR-US: DamiCMS
CVE-2018-16330 (Pandao Editor.md 1.5.0 allows XSS via crafted attributes of an
invalid ...)
- TODO: check
+ NOT-FOR-US: Pandao Editor.md
CVE-2018-16329 (In ImageMagick before 7.0.8-8, a NULL pointer dereference
exists in the ...)
- imagemagick <undetermined>
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1225
@@ -35,7 +35,7 @@ CVE-2018-16328 (In ImageMagick before 7.0.8-8, a NULL pointer
dereference exists
NOTE:
https://github.com/ImageMagick/ImageMagick/commit/107ce8577e818cf4801e5a59641cb769d645cc95
NOTE: ImageMagick6:
https://github.com/ImageMagick/ImageMagick6/commit/68e4f4d22abaf97b61019ea85f74e2f639d0e93e
CVE-2018-16327 (There is Stored XSS in Subrion 4.2.1 via the admin panel URL
...)
- TODO: check
+ NOT-FOR-US: Subrion CMS
CVE-2018-16326
RESERVED
CVE-2018-16325 (There is XSS in GetSimple CMS 3.4.0.9 via the admin/edit.php
title ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1ebf21b764129b43430c474baf8898620b40cec4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1ebf21b764129b43430c474baf8898620b40cec4
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
