[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Tue, 13 Nov 2018 00:10:49 -0800

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
f4a08ce4 by security tracker role at 2018-11-13T08:10:11Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,65 @@
-CVE-2018-19219 (In LibSaas 3.5-stable, there is an illegal address access at 
...)
+CVE-2018-19248
+       RESERVED
+CVE-2018-19247
+       RESERVED
+CVE-2018-19246 (PHP-Proxy 5.1.0 allows remote attackers to read local files if 
the ...)
+       TODO: check
+CVE-2018-19245
+       RESERVED
+CVE-2018-19244 (An XML External Entity (XXE) vulnerability exists in the 
Charles 4.2.7 ...)
+       TODO: check
+CVE-2018-19243
+       RESERVED
+CVE-2018-19242
+       RESERVED
+CVE-2018-19241
+       RESERVED
+CVE-2018-19240
+       RESERVED
+CVE-2018-19239
+       RESERVED
+CVE-2018-19238
+       RESERVED
+CVE-2018-19237
+       RESERVED
+CVE-2018-19236
+       RESERVED
+CVE-2018-19235
+       RESERVED
+CVE-2018-19234
+       RESERVED
+CVE-2018-19233
+       RESERVED
+CVE-2018-19232
+       RESERVED
+CVE-2018-19231
+       RESERVED
+CVE-2018-19230
+       RESERVED
+CVE-2018-19229 (An issue was discovered in LAOBANCMS 2.0. It allows XSS via 
the ...)
+       TODO: check
+CVE-2018-19228 (An issue was discovered in LAOBANCMS 2.0. It allows arbitrary 
file ...)
+       TODO: check
+CVE-2018-19227 (An issue was discovered in LAOBANCMS 2.0. It allows XSS via 
the ...)
+       TODO: check
+CVE-2018-19226 (An issue was discovered in LAOBANCMS 2.0. It allows remote 
attackers to ...)
+       TODO: check
+CVE-2018-19225 (An issue was discovered in LAOBANCMS 2.0. admin/mima.php has 
CSRF. ...)
+       TODO: check
+CVE-2018-19224 (An issue was discovered in LAOBANCMS 2.0. /admin/login.php 
allows ...)
+       TODO: check
+CVE-2018-19223 (An issue was discovered in LAOBANCMS 2.0. It allows XSS via 
the first ...)
+       TODO: check
+CVE-2018-19222 (An issue was discovered in LAOBANCMS 2.0. It allows a ...)
+       TODO: check
+CVE-2018-19221 (An issue was discovered in LAOBANCMS 2.0. It allows SQL 
Injection via ...)
+       TODO: check
+CVE-2018-19220 (An issue was discovered in LAOBANCMS 2.0. It allows remote 
attackers to ...)
+       TODO: check
+CVE-2018-19219 (In LibSass 3.5-stable, there is an illegal address access at 
...)
        - libsass <undetermined>
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1643760
-CVE-2018-19218 (In LibSaas 3.5-stable, there is an illegal address access at 
...)
+CVE-2018-19218 (In LibSass 3.5-stable, there is an illegal address access at 
...)
        - libsass <undetermined>
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1643758
 CVE-2018-19217 (In ncurses 6.1, there is a NULL pointer dereference at the 
function ...)
@@ -18998,7 +19056,7 @@ CVE-2018-11700
        RESERVED
 CVE-2018-11699
        RESERVED
-CVE-2018-11698 (An issue was discovered in LibSaas through 3.5.4. An 
out-of-bounds read ...)
+CVE-2018-11698 (An issue was discovered in LibSass through 3.5.4. An 
out-of-bounds read ...)
        - libsass <unfixed>
        [stretch] - libsass <no-dsa> (Minor issue)
        NOTE: https://github.com/sass/libsass/issues/2662
@@ -19006,19 +19064,19 @@ CVE-2018-11697 (An issue was discovered in LibSass 
through 3.5.4. An out-of-boun
        - libsass <unfixed>
        [stretch] - libsass <no-dsa> (Minor issue)
        NOTE: https://github.com/sass/libsass/issues/2656
-CVE-2018-11696 (An issue was discovered in LibSaas through 3.5.4. A NULL 
pointer ...)
+CVE-2018-11696 (An issue was discovered in LibSass through 3.5.4. A NULL 
pointer ...)
        - libsass <unfixed>
        [stretch] - libsass <no-dsa> (Minor issue)
        NOTE: https://github.com/sass/libsass/issues/2665
-CVE-2018-11695 (An issue was discovered in LibSaas through 3.5.2. A NULL 
pointer ...)
+CVE-2018-11695 (An issue was discovered in LibSass through 3.5.2. A NULL 
pointer ...)
        - libsass <unfixed>
        [stretch] - libsass <no-dsa> (Minor issue)
        NOTE: https://github.com/sass/libsass/issues/2664
-CVE-2018-11694 (An issue was discovered in LibSaas through 3.5.4. A NULL 
pointer ...)
+CVE-2018-11694 (An issue was discovered in LibSass through 3.5.4. A NULL 
pointer ...)
        - libsass <unfixed>
        [stretch] - libsass <no-dsa> (Minor issue)
        NOTE: https://github.com/sass/libsass/issues/2663
-CVE-2018-11693 (An issue was discovered in LibSaas through 3.5.4. An 
out-of-bounds read ...)
+CVE-2018-11693 (An issue was discovered in LibSass through 3.5.4. An 
out-of-bounds read ...)
        - libsass <unfixed>
        [stretch] - libsass <no-dsa> (Minor issue)
        NOTE: https://github.com/sass/libsass/issues/2661



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f4a08ce4854a15aab77fa50452c4ccf747decd5b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f4a08ce4854a15aab77fa50452c4ccf747decd5b
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to