Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 0479646f by security tracker role at 2018-11-11T20:10:22Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,27 @@ +CVE-2018-19182 + RESERVED +CVE-2018-19181 (statics/ueditor/php/vendor/Local.class.php in YUNUCMS 1.1.5 allows ...) + TODO: check +CVE-2018-19180 (statics/app/index/controller/Install.php in YUNUCMS 1.1.5 (if ...) + TODO: check +CVE-2018-19179 + RESERVED +CVE-2018-19178 (In JEESNS 1.3, ...) + TODO: check +CVE-2018-19177 + RESERVED +CVE-2018-19176 + RESERVED +CVE-2018-19175 + RESERVED +CVE-2018-19174 + RESERVED +CVE-2018-19173 + RESERVED +CVE-2018-19172 + RESERVED +CVE-2018-19171 + RESERVED CVE-2018-19170 (In JPress v1.0-rc.5, there is stored XSS via each of the first three ...) NOT-FOR-US: JPress CVE-2018-19169 @@ -3018,12 +3042,14 @@ CVE-2018-17965 (ImageMagick 7.0.7-28 has a memory leak vulnerability in WriteSGI CVE-2018-17964 (Aryanic HighPortal 12.5 has XSS via an Add Tags action. ...) NOT-FOR-US: Aryanic HighPortal CVE-2018-17963 (qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes ...) + {DSA-4338-1} - qemu <unfixed> (bug #911469) - qemu-kvm <removed> NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03267.html NOTE: https://www.openwall.com/lists/oss-security/2018/10/08/1 NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=1592a9947036d60dde5404204a5d45975133caf5 CVE-2018-17962 (Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because ...) + {DSA-4338-1} - qemu <unfixed> (bug #911468) - qemu-kvm <removed> NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03268.html @@ -21366,6 +21392,7 @@ CVE-2018-10840 (Linux kernel is vulnerable to a heap-based buffer overflow in th NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=199347 NOTE: Fixed by: https://git.kernel.org/linus/8a2b307c21d4b290e3cbe33f768f194286d07c23 CVE-2018-10839 (Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is ...) + {DSA-4338-1} - qemu <unfixed> (bug #910431) - qemu-kvm <removed> NOTE: https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03273.html View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0479646f3529d305289cb1caac431d955588e152 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0479646f3529d305289cb1caac431d955588e152 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits