Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cc0f6fcf by security tracker role at 2018-12-21T08:10:24Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,39 @@
+CVE-2018-20331
+ RESERVED
+CVE-2018-20330
+ RESERVED
+CVE-2018-20329 (Chamilo LMS version 1.11.8 contains a ...)
+ TODO: check
+CVE-2018-20328 (Chamilo LMS version 1.11.8 contains XSS in
main/social/group_view.php ...)
+ TODO: check
+CVE-2018-20327 (Chamilo LMS version 1.11.8 contains XSS in ...)
+ TODO: check
+CVE-2018-20326
+ RESERVED
+CVE-2018-20325
+ RESERVED
+CVE-2018-20324
+ RESERVED
+CVE-2018-20323
+ RESERVED
+CVE-2018-20322
+ RESERVED
+CVE-2018-20321
+ RESERVED
+CVE-2018-20320
+ RESERVED
+CVE-2018-20319
+ RESERVED
+CVE-2018-20318 (An issue was discovered in weixin-java-tools v3.2.0. There is
an XXE ...)
+ TODO: check
+CVE-2018-1000886 (nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow
vulnerability ...)
+ TODO: check
+CVE-2018-1000885 (PHKP version including commit
88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b ...)
+ TODO: check
+CVE-2018-1000884 (Vesta CP version Prior to commit ...)
+ TODO: check
+CVE-2018-1000883 (Elixir Plug Plug version All contains a Header Injection
vulnerability ...)
+ TODO: check
CVE-2018-20317
RESERVED
CVE-2018-20316
@@ -388,8 +424,7 @@ CVE-2018-20218
RESERVED
CVE-2018-20217
RESERVED
-CVE-2018-20216 [pvrdma: infinite loop in pvrdma_qp_send/recv]
- RESERVED
+CVE-2018-20216 (QEMU can have an infinite loop in
hw/rdma/vmw/pvrdma_dev_ring.c ...)
- qemu <unfixed> (unimportant)
[stretch] - qemu <not-affected> (Vulnerable code not present)
[jessie] - qemu <not-affected> (Vulnerable code not present)
@@ -453,8 +488,7 @@ CVE-2018-20193
RESERVED
CVE-2018-20192
RESERVED
-CVE-2018-20191 [pvrdma: uar_read leads to NULL dereference]
- RESERVED
+CVE-2018-20191 (hw/rdma/vmw/pvrdma_main.c in QEMU does not implement a read
operation ...)
- qemu <unfixed> (unimportant)
[stretch] - qemu <not-affected> (Vulnerable code not present)
[jessie] - qemu <not-affected> (Vulnerable code not present)
@@ -2626,24 +2660,21 @@ CVE-2018-20128 (An issue was discovered in UsualToolCMS
v8.0. cmsadmin\a_sqlback
NOT-FOR-US: UsualToolCMS
CVE-2018-20127 (An issue was discovered in zzzphp cms 1.5.8. del_file in ...)
NOT-FOR-US: zzzphp cms
-CVE-2018-20126 [pvrdma: memory leakage when creating cq/qp]
- RESERVED
+CVE-2018-20126 (hw/rdma/vmw/pvrdma_cmd.c in QEMU allows create_cq and
create_qp memory ...)
- qemu <unfixed> (unimportant)
[stretch] - qemu <not-affected> (Vulnerable code not present)
[jessie] - qemu <not-affected> (Vulnerable code not present)
- qemu-kvm <removed>
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02824.html
NOTE: PVRDMA support not enabled in the binary packages.
-CVE-2018-20125 [pvrdma: null dereference or excessive memory allocation when
creating QP/CQ]
- RESERVED
+CVE-2018-20125 (hw/rdma/vmw/pvrdma_cmd.c in QEMU allows attackers to cause a
denial of ...)
- qemu <unfixed> (unimportant)
[stretch] - qemu <not-affected> (Vulnerable code not present)
[jessie] - qemu <not-affected> (Vulnerable code not present)
- qemu-kvm <removed>
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02823.html
NOTE: PVRDMA support not enabled in the binary packages.
-CVE-2018-20124 [rdma: OOB access when building scatter-gather array]
- RESERVED
+CVE-2018-20124 (hw/rdma/rdma_backend.c in QEMU allows guest OS users to
trigger ...)
- qemu <unfixed> (unimportant)
[stretch] - qemu <not-affected> (Vulnerable code not present)
[jessie] - qemu <not-affected> (Vulnerable code not present)
@@ -9551,14 +9582,14 @@ CVE-2018-19244 (An XML External Entity (XXE)
vulnerability exists in the Charles
NOT-FOR-US: Charles
CVE-2018-19243
RESERVED
-CVE-2018-19242
- RESERVED
-CVE-2018-19241
- RESERVED
-CVE-2018-19240
- RESERVED
-CVE-2018-19239
- RESERVED
+CVE-2018-19242 (Buffer overflow in apply.cgi on TRENDnet TEW-632BRP 1.010B32
and ...)
+ TODO: check
+CVE-2018-19241 (Buffer overflow in video.cgi on TRENDnet TV-IP110WN V1.2.2
build 68, ...)
+ TODO: check
+CVE-2018-19240 (Buffer overflow in network.cgi on TRENDnet TV-IP110WN V1.2.2
build 68, ...)
+ TODO: check
+CVE-2018-19239 (TRENDnet TEW-673GRU v1.00b40 devices have an OS command
injection ...)
+ TODO: check
CVE-2018-19238
RESERVED
CVE-2018-19237
@@ -9812,8 +9843,7 @@ CVE-2018-19136 (DomainMOD through 4.11.01 has XSS via the
...)
NOT-FOR-US: DomainMOD
CVE-2018-19135 (ClipperCMS 1.3.3 does not have CSRF protection on its kcfinder
file ...)
NOT-FOR-US: ClipperCMS
-CVE-2018-19134 [ghostscript: Type confusion in setpattern (700141)]
- RESERVED
+CVE-2018-19134 (In Artifex Ghostscript through 9.25, the setpattern operator
did not ...)
{DSA-4346-1}
- ghostscript 9.26~dfsg-1
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=700141
@@ -10147,8 +10177,8 @@ CVE-2018-19007 (In Geutebrueck GmbH E2 Camera Series
versions prior to 1.12.0.25
NOT-FOR-US: Geutebrueck cameras
CVE-2018-19006
RESERVED
-CVE-2018-19005
- RESERVED
+CVE-2018-19005 (Cscape, Version 9.80.75.3 SP3 and prior. An improper input
validation ...)
+ TODO: check
CVE-2018-19004
RESERVED
CVE-2018-19003 (GE Mark VIe, EX2100e, EX2100e_Reg, and LS2100e Versions
03.03.28C to ...)
@@ -10446,8 +10476,8 @@ CVE-2018-18873 (An issue was discovered in JasPer
2.0.14. There is a NULL pointe
NOTE: https://github.com/mdadams/jasper/issues/184
CVE-2018-18872
RESERVED
-CVE-2018-18871
- RESERVED
+CVE-2018-18871 (Missing password verification in the web interface on Gigaset
Maxwell ...)
+ TODO: check
CVE-2018-18870
RESERVED
CVE-2018-18869 (EmpireCMS V7.5 allows remote attackers to upload and execute
arbitrary ...)
@@ -10688,8 +10718,8 @@ CVE-2018-18769
RESERVED
CVE-2018-18768
RESERVED
-CVE-2018-18767
- RESERVED
+CVE-2018-18767 (An issue was discovered in D-Link 'myDlink Baby App' version
2.04.06. ...)
+ TODO: check
CVE-2018-18766
RESERVED
CVE-2018-18765 (An exploitable arbitrary memory read vulnerability exists in
the MQTT ...)
@@ -11034,8 +11064,8 @@ CVE-2018-18631
RESERVED
CVE-2018-18630
RESERVED
-CVE-2018-18629
- RESERVED
+CVE-2018-18629 (An issue was discovered in the Keybase command-line client
before ...)
+ TODO: check
CVE-2018-18628 (An issue was discovered in Pippo 1.11.0. The function ...)
NOT-FOR-US: Pippo
CVE-2017-18349 (parseObject in Fastjson before 1.2.25, as used in
FastjsonEngine in ...)
@@ -11532,10 +11562,10 @@ CVE-2018-18443 (OpenEXR 2.3.0 has a memory leak in
ThreadPool in ...)
[stretch] - openexr <no-dsa> (Minor issue)
[jessie] - openexr <no-dsa> (Minor issue)
NOTE: https://github.com/openexr/openexr/issues/350
-CVE-2018-18442
- RESERVED
-CVE-2018-18441
- RESERVED
+CVE-2018-18442 (D-Link DCS-825L devices with firmware 1.08 do not employ a
suitable ...)
+ TODO: check
+CVE-2018-18441 (D-Link DCS series Wi-Fi cameras expose sensitive information
regarding ...)
+ TODO: check
CVE-2018-18440 (DENX U-Boot through 2018.09-rc1 has a locally exploitable
buffer ...)
- u-boot <unfixed> (unimportant)
NOTE: https://www.openwall.com/lists/oss-security/2018/11/02/2
@@ -11645,8 +11675,8 @@ CVE-2018-18401
RESERVED
CVE-2018-18400
RESERVED
-CVE-2018-18399
- RESERVED
+CVE-2018-18399 (SQL injection vulnerability in the
"ContentPlaceHolder1_uxTitle" ...)
+ TODO: check
CVE-2018-18398 (Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the
IBus-Unikey ...)
- thunar <unfixed> (unimportant)
NOTE: https://0xd0ff9.wordpress.com/2018/10/18/cve-2018-18398/
@@ -11673,8 +11703,8 @@ CVE-2018-18390 (User Enumeration in Moxa ThingsPro IIoT
Gateway and Device Manag
NOT-FOR-US: Moxa
CVE-2018-18389 (Due to incorrect access control in Neo4j Enterprise Database
Server ...)
NOT-FOR-US: Neo4J server
-CVE-2018-18388
- RESERVED
+CVE-2018-18388 (eScan Agent Application (MWAGENT.EXE) 4.0.2.98 in MicroWorld
...)
+ TODO: check
CVE-2018-18387 (playSMS through 1.4.2 allows Privilege Escalation through
Daemon ...)
NOT-FOR-US: playSMS
CVE-2018-18386 (drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows
local ...)
@@ -14557,16 +14587,14 @@ CVE-2018-17249
RESERVED
CVE-2018-17248
RESERVED
-CVE-2018-17247
- RESERVED
-CVE-2018-17246
- RESERVED
+CVE-2018-17247 (Elasticsearch Security versions 6.5.0 and 6.5.1 contain an XXE
flaw in ...)
+ TODO: check
+CVE-2018-17246 (Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary
file ...)
- kibana <itp> (bug #700337)
-CVE-2018-17245
- RESERVED
+CVE-2018-17245 (Kibana versions 4.0 to 4.6, 5.0 to 5.6.12, and 6.0 to 6.4.2
contain an ...)
- kibana <itp> (bug #700337)
-CVE-2018-17244
- RESERVED
+CVE-2018-17244 (Elasticsearch Security versions 6.4.0 to 6.4.2 contain an
error in the ...)
+ TODO: check
CVE-2018-17243 (Global Search in Zoho ManageEngine OpManager before 12.3
123205 allows ...)
NOT-FOR-US: Zoho ManageEngine OpManager
CVE-2018-17242
@@ -16190,8 +16218,8 @@ CVE-2018-16629 (panel/uploads/#elf_l1_XA in Subrion CMS
v4.2.1 allows XSS via an
NOT-FOR-US: Subrion CMS
CVE-2018-16628 (panel/login in Kirby v2.5.12 allows XSS via a blog name. ...)
NOT-FOR-US: Kirby
-CVE-2018-16627
- RESERVED
+CVE-2018-16627 (panel/login in Kirby v2.5.12 allows Host header injection via
the ...)
+ TODO: check
CVE-2018-16626
RESERVED
CVE-2018-16625
@@ -18528,14 +18556,14 @@ CVE-2018-15725
RESERVED
CVE-2018-15724
RESERVED
-CVE-2018-15723
- RESERVED
-CVE-2018-15722
- RESERVED
-CVE-2018-15721
- RESERVED
-CVE-2018-15720
- RESERVED
+CVE-2018-15723 (The Logitech Harmony Hub before version 4.15.206 is vulnerable
to ...)
+ TODO: check
+CVE-2018-15722 (The Logitech Harmony Hub before version 4.15.206 is vulnerable
to OS ...)
+ TODO: check
+CVE-2018-15721 (The XMPP server in Logitech Harmony Hub before version
4.15.206 is ...)
+ TODO: check
+CVE-2018-15720 (Logitech Harmony Hub before version 4.15.206 contained two
hard-coded ...)
+ TODO: check
CVE-2018-15719 (Open Dental before version 18.4 installs a mysql database and
uses the ...)
TODO: check
CVE-2018-15718 (Open Dental before version 18.4 transmits the entire user
database ...)
@@ -19481,12 +19509,12 @@ CVE-2018-15333
RESERVED
CVE-2018-15332 (The svpn component of the F5 BIG-IP APM client prior to
version ...)
NOT-FOR-US: F5 BIG-IP
-CVE-2018-15331
- RESERVED
-CVE-2018-15330
- RESERVED
-CVE-2018-15329
- RESERVED
+CVE-2018-15331 (On BIG-IP AAM 13.0.0 or 12.1.0-12.1.3.7, the dcdb_convert
utility used ...)
+ TODO: check
+CVE-2018-15330 (On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.1, or
12.1.0-12.1.3.7, when a ...)
+ TODO: check
+CVE-2018-15329 (On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.1, or
12.1.0-12.1.3.7, or ...)
+ TODO: check
CVE-2018-15328 (On BIG-IP 14.0.x, 13.x, 12.x, and 11.x, Enterprise Manager
3.1.1, ...)
TODO: check
CVE-2018-15327 (In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1 or Enterprise
Manager ...)
@@ -20555,8 +20583,8 @@ CVE-2018-14848
RESERVED
CVE-2018-14847 (MikroTik RouterOS through 6.42 allows unauthenticated remote
attackers ...)
NOT-FOR-US: Winbox for MikroTik RouterOS
-CVE-2018-14846
- RESERVED
+CVE-2018-14846 (The Mondula Multi Step Form plugin before 1.2.8 for WordPress
has ...)
+ TODO: check
CVE-2018-14845
RESERVED
CVE-2018-14844
@@ -26030,8 +26058,8 @@ CVE-2018-12653
RESERVED
CVE-2018-12652
RESERVED
-CVE-2018-12651
- RESERVED
+CVE-2018-12651 (A Reflected Cross Site Scripting (XSS) Vulnerability was
discovered in ...)
+ TODO: check
CVE-2018-12650 (Adrenalin HRMS version 5.4.0 contains a Reflected Cross Site
Scripting ...)
NOT-FOR-US: Adrenalin HRMS
CVE-2018-12649 (An issue was discovered in app/Controller/UsersController.php
in MISP ...)
@@ -28725,7 +28753,7 @@ CVE-2018-11761 (In Apache Tika 0.1 to 1.18, the XML
parsers were not configured
CVE-2018-11760
RESERVED
CVE-2018-11759 (The Apache Web Server (httpd) specific code that normalised
the ...)
- {DLA-1609-1}
+ {DSA-4357-1 DLA-1609-1}
- libapache-mod-jk 1:1.2.46-1
NOTE:
https://tomcat.apache.org/security-jk.html#Fixed_in_Apache_Tomcat_JK_Connector_1.2.46
NOTE:
https://www.immunit.ch/blog/2018/11/01/cve-2018-11759-apache-mod_jk-access-bypass/
@@ -36384,16 +36412,16 @@ CVE-2018-8894 (In 2345 Security Guard 3.6, the driver
file (2345BdPcSafe.sys) al
NOT-FOR-US: 2345 Security Guard
CVE-2018-8893 (Z-BlogPHP 1.5.1 Zero has CSRF in plugin_edit.php, resulting in
the ...)
NOT-FOR-US: Z-BlogPHP
-CVE-2018-8892
- RESERVED
-CVE-2018-8891
- RESERVED
+CVE-2018-8892 (A cross-site request forgery (CSRF) vulnerability in the
Management ...)
+ TODO: check
+CVE-2018-8891 (Multiple stored cross-site scripting (XSS) vulnerabilities in
the ...)
+ TODO: check
CVE-2018-8890 (An information disclosure vulnerability in the Management
Console of ...)
NOT-FOR-US: BlackBerry
CVE-2018-8889 (A directory traversal vulnerability in the Connect Service of
the ...)
NOT-FOR-US: BlackBerry
-CVE-2018-8888
- RESERVED
+CVE-2018-8888 (A stored cross-site scripting (XSS) vulnerability in the
Management ...)
+ TODO: check
CVE-2018-8887
RESERVED
CVE-2018-8886
@@ -59064,8 +59092,7 @@ CVE-2018-1162 (This vulnerability allows remote
attackers to create a ...)
NOT-FOR-US: Quest NetVault Backup
CVE-2018-1161 (This vulnerability allows remote attackers to execute arbitrary
code ...)
NOT-FOR-US: Quest NetVault Backup
-CVE-2018-1160 [Unauthenticated remote code execution in Netatalk]
- RESERVED
+CVE-2018-1160 (Netatalk before 3.1.12 is vulnerable to an out of bounds write
in ...)
{DSA-4356-1}
- netatalk <unfixed> (bug #916930)
NOTE: https://bugzilla.samba.org/show_bug.cgi?id=13711
@@ -84960,8 +84987,8 @@ CVE-2017-9734
RESERVED
CVE-2017-9733
RESERVED
-CVE-2017-9732
- RESERVED
+CVE-2017-9732 (The read_packet function in knc (Kerberised NetCat) before
1.11-1 is ...)
+ TODO: check
CVE-2017-9731 (In meta/classes/package_ipk.bbclass in Poky in poky-pyro 17.0.0
for ...)
NOT-FOR-US: Poky for Yocto Project
CVE-2017-9730 (SQL injection vulnerability in rdr.php in nuevoMailer version
6.0 and ...)
@@ -149521,19 +149548,19 @@ CVE-2015-6825 (The ff_frame_thread_init function in
libavcodec/pthread_frame.c i
[wheezy] - libav <not-affected> (Vulnerable code not present)
NOTE:
http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=f1a38264f20382731cf2cc75fdd98f4c9a84a626
CVE-2015-6824 (The sws_init_context function in libswscale/utils.c in FFmpeg
before ...)
- {DLA-1611-1}
+ {DLA-1611-2}
- ffmpeg 7:2.7.2-1
[squeeze] - ffmpeg <end-of-life> (Not supported in Squeeze LTS)
- libav <removed>
NOTE:
http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=a5d44d5c220e12ca0cb7a4eceb0f74759cb13111
CVE-2015-6823 (The allocate_buffers function in libavcodec/alac.c in FFmpeg
before ...)
- {DLA-1611-1}
+ {DLA-1611-2}
- ffmpeg 7:2.7.2-1
[squeeze] - ffmpeg <end-of-life> (Not supported in Squeeze LTS)
- libav <removed>
NOTE:
http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=f7068bf277a37479aecde2832208d820682b35e6
CVE-2015-6822 (The destroy_buffers function in libavcodec/sanm.c in FFmpeg
before ...)
- {DLA-1611-1}
+ {DLA-1611-2 DLA-1611-1}
- ffmpeg 7:2.7.2-1
[squeeze] - ffmpeg <end-of-life> (Not supported in Squeeze LTS)
- libav <removed>
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/cc0f6fcf1bb5670c1c8d3436a1ddd4efabec67a4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/cc0f6fcf1bb5670c1c8d3436a1ddd4efabec67a4
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
