[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Fri, 05 Oct 2018 13:11:50 -0700

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
c4cd103c by security tracker role at 2018-10-05T20:11:04Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,35 @@
+CVE-2018-18019
+       RESERVED
+CVE-2018-18018
+       RESERVED
+CVE-2018-18017
+       RESERVED
+CVE-2018-18016 (ImageMagick 7.0.7-28 has a memory leak vulnerability in 
WritePCXImage ...)
+       TODO: check
+CVE-2018-18015
+       RESERVED
+CVE-2018-18014
+       RESERVED
+CVE-2018-18013
+       RESERVED
+CVE-2018-18012
+       RESERVED
+CVE-2018-18011
+       RESERVED
+CVE-2018-18010
+       RESERVED
+CVE-2018-18009
+       RESERVED
+CVE-2018-18008
+       RESERVED
+CVE-2018-18007
+       RESERVED
+CVE-2018-18006
+       RESERVED
+CVE-2018-18005
+       RESERVED
+CVE-2018-18004
+       RESERVED
 CVE-2018-18003
        RESERVED
 CVE-2018-18002
@@ -1158,6 +1190,7 @@ CVE-2018-17457
        RESERVED
 CVE-2018-17456 [remote code execution due to insufficient validation of 
submodule url and path in .gitmodules]
        RESERVED
+       {DSA-4311-1 DLA-1533-1}
        - git 1:2.19.1-1
        NOTE: 
https://public-inbox.org/git/[email protected]/
 CVE-2018-17455 [IDOR merge request approvals]
@@ -6093,144 +6126,144 @@ CVE-2018-15438
        RESERVED
 CVE-2018-15437
        RESERVED
-CVE-2018-15436
-       RESERVED
+CVE-2018-15436 (A vulnerability in the web-based management interface of Cisco 
Webex ...)
+       TODO: check
 CVE-2018-15435
        RESERVED
-CVE-2018-15434
-       RESERVED
-CVE-2018-15433
-       RESERVED
-CVE-2018-15432
-       RESERVED
-CVE-2018-15431
-       RESERVED
-CVE-2018-15430
-       RESERVED
-CVE-2018-15429
-       RESERVED
-CVE-2018-15428
-       RESERVED
-CVE-2018-15427
-       RESERVED
-CVE-2018-15426
-       RESERVED
-CVE-2018-15425
-       RESERVED
-CVE-2018-15424
-       RESERVED
-CVE-2018-15423
-       RESERVED
-CVE-2018-15422
-       RESERVED
-CVE-2018-15421
-       RESERVED
-CVE-2018-15420
-       RESERVED
-CVE-2018-15419
-       RESERVED
-CVE-2018-15418
-       RESERVED
-CVE-2018-15417
-       RESERVED
-CVE-2018-15416
-       RESERVED
-CVE-2018-15415
-       RESERVED
-CVE-2018-15414
-       RESERVED
-CVE-2018-15413
-       RESERVED
-CVE-2018-15412
-       RESERVED
-CVE-2018-15411
-       RESERVED
-CVE-2018-15410
-       RESERVED
-CVE-2018-15409
-       RESERVED
-CVE-2018-15408
-       RESERVED
-CVE-2018-15407
-       RESERVED
-CVE-2018-15406
-       RESERVED
-CVE-2018-15405
-       RESERVED
-CVE-2018-15404
-       RESERVED
-CVE-2018-15403
-       RESERVED
+CVE-2018-15434 (A vulnerability in the web-based management interface of Cisco 
Unified ...)
+       TODO: check
+CVE-2018-15433 (A vulnerability in the server backup function of Cisco Prime 
...)
+       TODO: check
+CVE-2018-15432 (A vulnerability in the server backup function of Cisco Prime 
...)
+       TODO: check
+CVE-2018-15431 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15430 (A vulnerability in the administrative web interface of Cisco 
...)
+       TODO: check
+CVE-2018-15429 (A vulnerability in the web-based UI of Cisco HyperFlex HX Data 
...)
+       TODO: check
+CVE-2018-15428 (A vulnerability in the implementation of Border Gateway 
Protocol (BGP) ...)
+       TODO: check
+CVE-2018-15427 (A vulnerability in Cisco Video Surveillance Manager (VSM) 
Software ...)
+       TODO: check
+CVE-2018-15426 (A vulnerability in the web-based interface of Cisco Unity 
Connection ...)
+       TODO: check
+CVE-2018-15425 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
+CVE-2018-15424 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
+CVE-2018-15423 (A vulnerability in the web UI of Cisco HyperFlex Software 
could allow ...)
+       TODO: check
+CVE-2018-15422 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15421 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15420 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15419 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15418 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15417 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15416 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15415 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15414 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15413 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15412 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15411 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15410 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15409 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15408 (A vulnerability in the Cisco Webex Network Recording Player 
for ...)
+       TODO: check
+CVE-2018-15407 (A vulnerability in the installation process of Cisco HyperFlex 
...)
+       TODO: check
+CVE-2018-15406 (A vulnerability in the web-based management interface of Cisco 
UCS ...)
+       TODO: check
+CVE-2018-15405 (A vulnerability in the web interface for specific feature sets 
of ...)
+       TODO: check
+CVE-2018-15404 (A vulnerability in the web interface of Cisco Integrated 
Management ...)
+       TODO: check
+CVE-2018-15403 (A vulnerability in the web interface of Cisco Emergency 
Responder, ...)
+       TODO: check
 CVE-2018-15402
        RESERVED
-CVE-2018-15401
-       RESERVED
-CVE-2018-15400
-       RESERVED
-CVE-2018-15399
-       RESERVED
-CVE-2018-15398
-       RESERVED
-CVE-2018-15397
-       RESERVED
-CVE-2018-15396
-       RESERVED
+CVE-2018-15401 (A vulnerability in the web-based management interface of Cisco 
Hosted ...)
+       TODO: check
+CVE-2018-15400 (A vulnerability in the web-based management interface of Cisco 
Cloud ...)
+       TODO: check
+CVE-2018-15399 (A vulnerability in the TCP syslog module of Cisco Adaptive 
Security ...)
+       TODO: check
+CVE-2018-15398 (A vulnerability in the per-user-override feature of Cisco 
Adaptive ...)
+       TODO: check
+CVE-2018-15397 (A vulnerability in the implementation of Traffic Flow 
Confidentiality ...)
+       TODO: check
+CVE-2018-15396 (A vulnerability in the Bulk Administration Tool (BAT) for 
Cisco Unity ...)
+       TODO: check
 CVE-2018-15395
        RESERVED
 CVE-2018-15394
        RESERVED
 CVE-2018-15393
        RESERVED
-CVE-2018-15392
-       RESERVED
-CVE-2018-15391
-       RESERVED
-CVE-2018-15390
-       RESERVED
-CVE-2018-15389
-       RESERVED
+CVE-2018-15392 (A vulnerability in the DHCP service of Cisco Industrial 
Network ...)
+       TODO: check
+CVE-2018-15391 (A vulnerability in certain IPv4 fragment-processing functions 
of Cisco ...)
+       TODO: check
+CVE-2018-15390 (A vulnerability in the FTP inspection engine of Cisco 
Firepower Threat ...)
+       TODO: check
+CVE-2018-15389 (A vulnerability in the install function of Cisco Prime 
Collaboration ...)
+       TODO: check
 CVE-2018-15388
        RESERVED
-CVE-2018-15387
-       RESERVED
-CVE-2018-15386
-       RESERVED
+CVE-2018-15387 (A vulnerability in the Cisco SD-WAN Solution could allow an 
...)
+       TODO: check
+CVE-2018-15386 (A vulnerability in Cisco Digital Network Architecture (DNA) 
Center ...)
+       TODO: check
 CVE-2018-15385
        RESERVED
 CVE-2018-15384
        RESERVED
-CVE-2018-15383
-       RESERVED
-CVE-2018-15382
-       RESERVED
+CVE-2018-15383 (A vulnerability in the cryptographic hardware accelerator 
driver of ...)
+       TODO: check
+CVE-2018-15382 (A vulnerability in Cisco HyperFlex Software could allow an ...)
+       TODO: check
 CVE-2018-15381
        RESERVED
 CVE-2018-15380
        RESERVED
-CVE-2018-15379
-       RESERVED
+CVE-2018-15379 (A vulnerability in which the HTTP web server for Cisco Prime 
...)
+       TODO: check
 CVE-2018-15378
        RESERVED
-CVE-2018-15377
-       RESERVED
-CVE-2018-15376
-       RESERVED
-CVE-2018-15375
-       RESERVED
-CVE-2018-15374
-       RESERVED
-CVE-2018-15373
-       RESERVED
-CVE-2018-15372
-       RESERVED
-CVE-2018-15371
-       RESERVED
-CVE-2018-15370
-       RESERVED
-CVE-2018-15369
-       RESERVED
-CVE-2018-15368
-       RESERVED
+CVE-2018-15377 (A vulnerability in the Cisco Network Plug and Play agent, also 
...)
+       TODO: check
+CVE-2018-15376 (A vulnerability in the embedded test subsystem of Cisco IOS 
Software ...)
+       TODO: check
+CVE-2018-15375 (A vulnerability in the embedded test subsystem of Cisco IOS 
Software ...)
+       TODO: check
+CVE-2018-15374 (A vulnerability in the Image Verification feature of Cisco IOS 
XE ...)
+       TODO: check
+CVE-2018-15373 (A vulnerability in the implementation of Cisco Discovery 
Protocol ...)
+       TODO: check
+CVE-2018-15372 (A vulnerability in the MACsec Key Agreement (MKA) using 
Extensible ...)
+       TODO: check
+CVE-2018-15371 (A vulnerability in the shell access request mechanism of Cisco 
IOS XE ...)
+       TODO: check
+CVE-2018-15370 (A vulnerability in Cisco IOS ROM Monitor (ROMMON) Software for 
Cisco ...)
+       TODO: check
+CVE-2018-15369 (A vulnerability in the TACACS+ client subsystem of Cisco IOS 
Software ...)
+       TODO: check
+CVE-2018-15368 (A vulnerability in the CLI parser of Cisco IOS XE Software 
could allow ...)
+       TODO: check
 CVE-2018-15367
        RESERVED
 CVE-2018-15366
@@ -15284,9 +15317,9 @@ CVE-2018-11784 (When the default servlet in Apache 
Tomcat versions 9.0.0.M1 to 9
        - tomcat9 <itp> (bug #802312)
        - tomcat8 8.5.34-1
        - tomcat8.0 <unfixed> (unimportant)
-        NOTE: tomcat8.0 builds only tomcat8.0-user and libtomcat8.0-java
-        - tomcat7 7.0.72-3
-        NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
+       NOTE: tomcat8.0 builds only tomcat8.0-user and libtomcat8.0-java
+       - tomcat7 7.0.72-3
+       NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
        NOTE: Fixed upstream in 9.0.12, 8.5.34, 7.0.91
        NOTE: 
https://lists.apache.org/thread.html/23134c9b5a23892a205dc140cdd8c9c0add233600f76b313dda6bd75@%3Cannounce.tomcat.apache.org%3E
        NOTE: https://svn.apache.org/r1840055 (9.0.x)
@@ -15304,8 +15337,7 @@ CVE-2018-11780 (A potential Remote Code Execution bug 
exists with the PDFInfo pl
        NOTE: https://www.openwall.com/lists/oss-security/2018/09/16/1
 CVE-2018-11779
        RESERVED
-CVE-2018-11778
-       RESERVED
+CVE-2018-11778 (UnixAuthenticationService in Apache Ranger 1.2.0 was updated 
to ...)
        NOT-FOR-US: Apache Ranger
 CVE-2018-11777
        RESERVED
@@ -28411,8 +28443,8 @@ CVE-2018-6981
        RESERVED
 CVE-2018-6980
        RESERVED
-CVE-2018-6979
-       RESERVED
+CVE-2018-6979 (The VMware Workspace ONE Unified Endpoint Management Console 
(A/W ...)
+       TODO: check
 CVE-2018-6978
        RESERVED
 CVE-2018-6977
@@ -43244,8 +43276,8 @@ CVE-2018-1814
        RESERVED
 CVE-2018-1813
        RESERVED
-CVE-2018-1812
-       RESERVED
+CVE-2018-1812 (IBM Robotic Process Automation with Automation Anywhere 
Enterprise 10 ...)
+       TODO: check
 CVE-2018-1811
        RESERVED
 CVE-2018-1810
@@ -43278,8 +43310,8 @@ CVE-2018-1797
        RESERVED
 CVE-2018-1796
        RESERVED
-CVE-2018-1795
-       RESERVED
+CVE-2018-1795 (IBM Robotic Process Automation with Automation Anywhere 
Enterprise 10 ...)
+       TODO: check
 CVE-2018-1794 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using 
OAuth ...)
        NOT-FOR-US: IBM WebSphere Application Server
 CVE-2018-1793 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using 
SAML ear ...)
@@ -43302,8 +43334,8 @@ CVE-2018-1785 (IBM Tivoli Storage Manager (IBM Spectrum 
Protect 7.1 and 8.1) use
        NOT-FOR-US: IBM
 CVE-2018-1784
        RESERVED
-CVE-2018-1783
-       RESERVED
+CVE-2018-1783 (IBM GPFS (IBM Spectrum Scale 4.1.1.0, 4.1.1.20, 4.2.0.0, 
4.2.3.10, ...)
+       TODO: check
 CVE-2018-1782 (IBM GPFS (IBM Spectrum Scale 5.0.1.0 and 5.0.1.1) allows a 
local, ...)
        NOT-FOR-US: IBM
 CVE-2018-1781
@@ -43422,8 +43454,8 @@ CVE-2018-1725
        RESERVED
 CVE-2018-1724
        RESERVED
-CVE-2018-1723
-       RESERVED
+CVE-2018-1723 (IBM Spectrum Scale 4.1.1.0, 4.1.1.20, 4.2.0.0, 4.2.3.10, 5.0.0 
and ...)
+       TODO: check
 CVE-2018-1722 (IBM Security Access Manager Appliance 9.0.4.0 and 9.0.5.0 could 
allow ...)
        NOT-FOR-US: IBM
 CVE-2018-1721
@@ -43496,8 +43528,8 @@ CVE-2018-1688
        RESERVED
 CVE-2018-1687
        RESERVED
-CVE-2018-1686
-       RESERVED
+CVE-2018-1686 (IBM Maximo Asset Management 7.6 through 7.6.3 is vulnerable to 
...)
+       TODO: check
 CVE-2018-1685 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect 
Server) 9.7, ...)
        NOT-FOR-US: IBM
 CVE-2018-1684
@@ -43570,12 +43602,12 @@ CVE-2018-1651
        RESERVED
 CVE-2018-1650
        RESERVED
-CVE-2018-1649
-       RESERVED
+CVE-2018-1649 (IBM QRadar Incident Forensics 7.2 and 7.3 could allow a remote 
...)
+       TODO: check
 CVE-2018-1648
        RESERVED
-CVE-2018-1647
-       RESERVED
+CVE-2018-1647 (IBM QRadar Incident Forensics 7.2 and 7.3 does not properly 
restrict ...)
+       TODO: check
 CVE-2018-1646
        RESERVED
 CVE-2018-1645
@@ -48258,136 +48290,136 @@ CVE-2017-1000159 (Command injection in evince via 
filename when printing to PDF.
        NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=784947
        NOTE: Introduced by: 
https://git.gnome.org/browse/evince/commit/?id=1fcca0b8041de0d6074d7e17fba174da36c65f99
 (EVINCE_0_9_1)
        NOTE: Fixed by: 
https://git.gnome.org/browse/evince/commit/?id=350404c76dc8601e2cdd2636490e2afc83d3090e
 (3.25.91)
-CVE-2018-0485
-       RESERVED
+CVE-2018-0485 (A vulnerability in the SM-1T3/E3 firmware on Cisco Second 
Generation ...)
+       TODO: check
 CVE-2018-0484
        RESERVED
 CVE-2018-0483
        RESERVED
 CVE-2018-0482
        RESERVED
-CVE-2018-0481
-       RESERVED
-CVE-2018-0480
-       RESERVED
+CVE-2018-0481 (A vulnerability in the CLI parser of Cisco IOS XE Software 
could allow ...)
+       TODO: check
+CVE-2018-0480 (A vulnerability in the errdisable per VLAN feature of Cisco IOS 
XE ...)
+       TODO: check
 CVE-2018-0479
        RESERVED
 CVE-2018-0478
        RESERVED
-CVE-2018-0477
-       RESERVED
-CVE-2018-0476
-       RESERVED
-CVE-2018-0475
-       RESERVED
+CVE-2018-0477 (A vulnerability in the CLI parser of Cisco IOS XE Software 
could allow ...)
+       TODO: check
+CVE-2018-0476 (A vulnerability in the Network Address Translation (NAT) 
Session ...)
+       TODO: check
+CVE-2018-0475 (A vulnerability in the implementation of the cluster feature of 
Cisco ...)
+       TODO: check
 CVE-2018-0474
        RESERVED
-CVE-2018-0473
-       RESERVED
-CVE-2018-0472
-       RESERVED
-CVE-2018-0471
-       RESERVED
-CVE-2018-0470
-       RESERVED
-CVE-2018-0469
-       RESERVED
+CVE-2018-0473 (A vulnerability in the Precision Time Protocol (PTP) subsystem 
of ...)
+       TODO: check
+CVE-2018-0472 (A vulnerability in the IPsec driver code of multiple Cisco IOS 
XE ...)
+       TODO: check
+CVE-2018-0471 (A vulnerability in the Cisco Discovery Protocol (CDP) module of 
Cisco ...)
+       TODO: check
+CVE-2018-0470 (A vulnerability in the web framework of Cisco IOS XE Software 
could ...)
+       TODO: check
+CVE-2018-0469 (A vulnerability in the web user interface of Cisco IOS XE 
Software ...)
+       TODO: check
 CVE-2018-0468
        RESERVED
-CVE-2018-0467
-       RESERVED
-CVE-2018-0466
-       RESERVED
-CVE-2018-0465
-       RESERVED
-CVE-2018-0464
-       RESERVED
-CVE-2018-0463
-       RESERVED
-CVE-2018-0462
-       RESERVED
+CVE-2018-0467 (A vulnerability in the IPv6 processing code of Cisco IOS and 
IOS XE ...)
+       TODO: check
+CVE-2018-0466 (A vulnerability in the Open Shortest Path First version 3 
(OSPFv3) ...)
+       TODO: check
+CVE-2018-0465 (A vulnerability in the web-based management interface of Cisco 
Small ...)
+       TODO: check
+CVE-2018-0464 (A vulnerability in Cisco Data Center Network Manager software 
could ...)
+       TODO: check
+CVE-2018-0463 (A vulnerability in the Cisco Network Plug and Play server 
component of ...)
+       TODO: check
+CVE-2018-0462 (A vulnerability in the user management functionality of Cisco 
...)
+       TODO: check
 CVE-2018-0461
        RESERVED
-CVE-2018-0460
-       RESERVED
-CVE-2018-0459
-       RESERVED
-CVE-2018-0458
-       RESERVED
-CVE-2018-0457
-       RESERVED
+CVE-2018-0460 (A vulnerability in the REST API of Cisco Enterprise NFV 
Infrastructure ...)
+       TODO: check
+CVE-2018-0459 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
+CVE-2018-0458 (A vulnerability in the web-based management interface of Cisco 
Prime ...)
+       TODO: check
+CVE-2018-0457 (A vulnerability in the Cisco Webex Player for Webex Recording 
Format ...)
+       TODO: check
 CVE-2018-0456
        RESERVED
-CVE-2018-0455
-       RESERVED
-CVE-2018-0454
-       RESERVED
-CVE-2018-0453
-       RESERVED
-CVE-2018-0452
-       RESERVED
-CVE-2018-0451
-       RESERVED
-CVE-2018-0450
-       RESERVED
+CVE-2018-0455 (A vulnerability in the Server Message Block Version 2 (SMBv2) 
and ...)
+       TODO: check
+CVE-2018-0454 (A vulnerability in the web-based management interface of Cisco 
Cloud ...)
+       TODO: check
+CVE-2018-0453 (A vulnerability in the Sourcefire tunnel control channel 
protocol in ...)
+       TODO: check
+CVE-2018-0452 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
+CVE-2018-0451 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
+CVE-2018-0450 (A vulnerability in the web-based management interface of Cisco 
Data ...)
+       TODO: check
 CVE-2018-0449
        RESERVED
-CVE-2018-0448
-       RESERVED
-CVE-2018-0447
-       RESERVED
-CVE-2018-0446
-       RESERVED
-CVE-2018-0445
-       RESERVED
-CVE-2018-0444
-       RESERVED
+CVE-2018-0448 (A vulnerability in the identity management service of Cisco 
Digital ...)
+       TODO: check
+CVE-2018-0447 (A vulnerability in the anti-spam protection mechanisms of Cisco 
...)
+       TODO: check
+CVE-2018-0446 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
+CVE-2018-0445 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
+CVE-2018-0444 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
 CVE-2018-0443
        RESERVED
 CVE-2018-0442
        RESERVED
 CVE-2018-0441
        RESERVED
-CVE-2018-0440
-       RESERVED
-CVE-2018-0439
-       RESERVED
-CVE-2018-0438
-       RESERVED
-CVE-2018-0437
-       RESERVED
-CVE-2018-0436
-       RESERVED
-CVE-2018-0435
-       RESERVED
-CVE-2018-0434
-       RESERVED
-CVE-2018-0433
-       RESERVED
-CVE-2018-0432
-       RESERVED
-CVE-2018-0431
-       RESERVED
-CVE-2018-0430
-       RESERVED
+CVE-2018-0440 (A vulnerability in the web interface of Cisco Data Center 
Network ...)
+       TODO: check
+CVE-2018-0439 (A vulnerability in the web-based management interface of Cisco 
Meeting ...)
+       TODO: check
+CVE-2018-0438 (A vulnerability in the Cisco Umbrella Enterprise Roaming Client 
(ERC) ...)
+       TODO: check
+CVE-2018-0437 (A vulnerability in the Cisco Umbrella Enterprise Roaming Client 
(ERC) ...)
+       TODO: check
+CVE-2018-0436 (A vulnerability in Cisco Webex Teams, formerly Cisco Spark, 
could ...)
+       TODO: check
+CVE-2018-0435 (A vulnerability in the Cisco Umbrella API could allow an ...)
+       TODO: check
+CVE-2018-0434 (A vulnerability in the Zero Touch Provisioning feature of the 
Cisco ...)
+       TODO: check
+CVE-2018-0433 (A vulnerability in the command-line interface (CLI) in the 
Cisco ...)
+       TODO: check
+CVE-2018-0432 (A vulnerability in the error reporting feature of the Cisco 
SD-WAN ...)
+       TODO: check
+CVE-2018-0431 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
+CVE-2018-0430 (A vulnerability in the web-based management interface of Cisco 
...)
+       TODO: check
 CVE-2018-0429 (Stack-based buffer overflow in the Cisco Thor decoder before 
commit ...)
        NOT-FOR-US: Cisco
 CVE-2018-0428 (A vulnerability in the account management subsystem of Cisco 
Web ...)
        NOT-FOR-US: Cisco
 CVE-2018-0427 (A vulnerability in the CronJob scheduler API of Cisco Digital 
Network ...)
        NOT-FOR-US: Cisco
-CVE-2018-0426
-       RESERVED
-CVE-2018-0425
-       RESERVED
-CVE-2018-0424
-       RESERVED
-CVE-2018-0423
-       RESERVED
-CVE-2018-0422
-       RESERVED
-CVE-2018-0421
-       RESERVED
+CVE-2018-0426 (A vulnerability in the web-based management interface of the 
Cisco ...)
+       TODO: check
+CVE-2018-0425 (A vulnerability in the web-based management interface of the 
Cisco ...)
+       TODO: check
+CVE-2018-0424 (A vulnerability in the web-based management interface of the 
Cisco ...)
+       TODO: check
+CVE-2018-0423 (A vulnerability in the web-based management interface of the 
Cisco ...)
+       TODO: check
+CVE-2018-0422 (A vulnerability in the folder permissions of Cisco Webex 
Meetings ...)
+       TODO: check
+CVE-2018-0421 (A vulnerability in TCP connection management in Cisco Prime 
Access ...)
+       TODO: check
 CVE-2018-0420
        RESERVED
 CVE-2018-0419 (A vulnerability in certain attachment detection mechanisms of 
Cisco ...)
@@ -48400,8 +48432,8 @@ CVE-2018-0416
        RESERVED
 CVE-2018-0415 (A vulnerability in the implementation of Extensible 
Authentication ...)
        NOT-FOR-US: Cisco
-CVE-2018-0414
-       RESERVED
+CVE-2018-0414 (A vulnerability in the web-based UI of Cisco Secure Access 
Control ...)
+       TODO: check
 CVE-2018-0413 (A vulnerability in the web-based management interface of Cisco 
Identity ...)
        NOT-FOR-US: Cisco
 CVE-2018-0412 (A vulnerability in the implementation of Extensible 
Authentication ...)
@@ -48418,10 +48450,10 @@ CVE-2018-0407 (A vulnerability in the web-based 
management interface of Cisco Sm
        NOT-FOR-US: Cisco
 CVE-2018-0406 (A vulnerability in the web-based management interface of Cisco 
Web ...)
        NOT-FOR-US: Cisco
-CVE-2018-0405
-       RESERVED
-CVE-2018-0404
-       RESERVED
+CVE-2018-0405 (A vulnerability in the web framework code for Cisco RV180W 
Wireless-N ...)
+       TODO: check
+CVE-2018-0404 (A vulnerability in the web framework code for Cisco RV180W 
Wireless-N ...)
+       TODO: check
 CVE-2018-0403 (Multiple vulnerabilities in the web-based management interface 
of Cisco ...)
        NOT-FOR-US: Cisco
 CVE-2018-0402 (Multiple vulnerabilities in the web-based management interface 
of Cisco ...)
@@ -48850,8 +48882,8 @@ CVE-2018-0199 (A vulnerability in Cisco Jabber Client 
Framework (JCF) could allo
        NOT-FOR-US: Cisco
 CVE-2018-0198 (A vulnerability in the web framework of Cisco Unified 
Communications ...)
        NOT-FOR-US: Cisco
-CVE-2018-0197
-       RESERVED
+CVE-2018-0197 (A vulnerability in the VLAN Trunking Protocol (VTP) subsystem 
of Cisco ...)
+       TODO: check
 CVE-2018-0196 (A vulnerability in the web-based user interface (web UI) of 
Cisco IOS ...)
        NOT-FOR-US: Cisco
 CVE-2018-0195 (A vulnerability in the Cisco IOS XE Software REST API could 
allow an ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/c4cd103c1d1b0dd50f42fc1d018fea2f1c472a22

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/c4cd103c1d1b0dd50f42fc1d018fea2f1c472a22
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to