Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
635d7fec by security tracker role at 2018-11-29T08:10:15Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,37 @@
+CVE-2018-19666 (The agent in OSSEC through 3.1.0 on Windows allows local users
to gain ...)
+ TODO: check
+CVE-2018-19665
+ RESERVED
+CVE-2018-19664 (libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the
...)
+ TODO: check
+CVE-2018-19663
+ RESERVED
+CVE-2018-19662 (An issue was discovered in libsndfile 1.0.28. There is a
buffer ...)
+ TODO: check
+CVE-2018-19661 (An issue was discovered in libsndfile 1.0.28. There is a
buffer ...)
+ TODO: check
+CVE-2018-19660
+ RESERVED
+CVE-2018-19659
+ RESERVED
+CVE-2018-19658
+ RESERVED
+CVE-2018-19657
+ RESERVED
+CVE-2018-19656
+ RESERVED
+CVE-2018-19655 (A stack-based buffer overflow in the find_green() function of
dcraw ...)
+ TODO: check
+CVE-2018-19654 (An issue was discovered in Sales & Company Management
System (SCMS) ...)
+ TODO: check
+CVE-2018-19653
+ RESERVED
+CVE-2018-19652
+ RESERVED
+CVE-2018-19651 (admin/functions/remote.php in Interspire Email Marketer
through 6.1.6 ...)
+ TODO: check
+CVE-2018-19650
+ RESERVED
CVE-2019-1564
RESERVED
CVE-2019-1563
@@ -100,20 +134,20 @@ CVE-2018-19630 (cgi_handle_request in uhttpd in OpenWrt
through 18.06.1 and LEDE
TODO: check
CVE-2018-19629
RESERVED
-CVE-2018-19628
- RESERVED
-CVE-2018-19627
- RESERVED
-CVE-2018-19626
- RESERVED
-CVE-2018-19625
- RESERVED
-CVE-2018-19624
- RESERVED
-CVE-2018-19623
- RESERVED
-CVE-2018-19622
- RESERVED
+CVE-2018-19628 (In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could
crash. This ...)
+ TODO: check
+CVE-2018-19627 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the
IxVeriWave file ...)
+ TODO: check
+CVE-2018-19626 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM
dissector ...)
+ TODO: check
+CVE-2018-19625 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the
dissection engine ...)
+ TODO: check
+CVE-2018-19624 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS
dissector ...)
+ TODO: check
+CVE-2018-19623 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM
dissector ...)
+ TODO: check
+CVE-2018-19622 (In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE
dissector ...)
+ TODO: check
CVE-2018-19621 (server/index.php?s=/api/teamMember/save in ShowDoc 2.4.2 has a
CSRF ...)
NOT-FOR-US: ShowDoc
CVE-2018-19620 (ShowDoc 2.4.1 allows remote attackers to edit other users'
notes by ...)
@@ -3350,8 +3384,8 @@ CVE-2018-19372
RESERVED
CVE-2018-19371
RESERVED
-CVE-2018-19370
- RESERVED
+CVE-2018-19370 (A Race condition vulnerability in unzip_file in ...)
+ TODO: check
CVE-2018-19369
RESERVED
CVE-2018-19368
@@ -6630,8 +6664,8 @@ CVE-2018-18205
RESERVED
CVE-2018-18204
RESERVED
-CVE-2018-18203
- RESERVED
+CVE-2018-18203 (A vulnerability in the update mechanism of Subaru StarLink
Harman head ...)
+ TODO: check
CVE-2018-18202 (The QLogic 4Gb Fibre Channel 5.5.2.6.0 and 4/8Gb SAN
7.10.1.20.0 ...)
NOT-FOR-US: IBM
CVE-2018-18201 (qibosoft V7.0 allows CSRF via ...)
@@ -7314,8 +7348,8 @@ CVE-2018-17932
RESERVED
CVE-2018-17931 (If an attacker has physical access to the VGo Robot (Versions
...)
NOT-FOR-US: VGo Robot
-CVE-2018-17930
- RESERVED
+CVE-2018-17930 (A stack-based buffer overflow vulnerability has been
identified in ...)
+ TODO: check
CVE-2018-17929 (In Delta Industrial Automation TPEditor, TPEditor Versions
1.90 and ...)
NOT-FOR-US: TPEditor
CVE-2018-17928
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/635d7fec0d0241b25fa59d81f7185f57ce5b5313
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/635d7fec0d0241b25fa59d81f7185f57ce5b5313
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
