[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Sun, 11 Nov 2018 12:11:26 -0800

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
0479646f by security tracker role at 2018-11-11T20:10:22Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,27 @@
+CVE-2018-19182
+       RESERVED
+CVE-2018-19181 (statics/ueditor/php/vendor/Local.class.php in YUNUCMS 1.1.5 
allows ...)
+       TODO: check
+CVE-2018-19180 (statics/app/index/controller/Install.php in YUNUCMS 1.1.5 (if 
...)
+       TODO: check
+CVE-2018-19179
+       RESERVED
+CVE-2018-19178 (In JEESNS 1.3, ...)
+       TODO: check
+CVE-2018-19177
+       RESERVED
+CVE-2018-19176
+       RESERVED
+CVE-2018-19175
+       RESERVED
+CVE-2018-19174
+       RESERVED
+CVE-2018-19173
+       RESERVED
+CVE-2018-19172
+       RESERVED
+CVE-2018-19171
+       RESERVED
 CVE-2018-19170 (In JPress v1.0-rc.5, there is stored XSS via each of the first 
three ...)
        NOT-FOR-US: JPress
 CVE-2018-19169
@@ -3018,12 +3042,14 @@ CVE-2018-17965 (ImageMagick 7.0.7-28 has a memory leak 
vulnerability in WriteSGI
 CVE-2018-17964 (Aryanic HighPortal 12.5 has XSS via an Add Tags action. ...)
        NOT-FOR-US: Aryanic HighPortal
 CVE-2018-17963 (qemu_deliver_packet_iov in net/net.c in Qemu accepts packet 
sizes ...)
+       {DSA-4338-1}
        - qemu <unfixed> (bug #911469)
        - qemu-kvm <removed>
        NOTE: 
https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03267.html
        NOTE: https://www.openwall.com/lists/oss-security/2018/10/08/1
        NOTE: 
https://git.qemu.org/?p=qemu.git;a=commit;h=1592a9947036d60dde5404204a5d45975133caf5
 CVE-2018-17962 (Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c 
because ...)
+       {DSA-4338-1}
        - qemu <unfixed> (bug #911468)
        - qemu-kvm <removed>
        NOTE: 
https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03268.html
@@ -21366,6 +21392,7 @@ CVE-2018-10840 (Linux kernel is vulnerable to a 
heap-based buffer overflow in th
        NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=199347
        NOTE: Fixed by: 
https://git.kernel.org/linus/8a2b307c21d4b290e3cbe33f768f194286d07c23
 CVE-2018-10839 (Qemu emulator &lt;= 3.0.0 built with the NE2000 NIC emulation 
support is ...)
+       {DSA-4338-1}
        - qemu <unfixed> (bug #910431)
        - qemu-kvm <removed>
        NOTE: 
https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03273.html



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0479646f3529d305289cb1caac431d955588e152

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0479646f3529d305289cb1caac431d955588e152
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to