Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ca8b4fcc by Moritz Muehlenhoff at 2018-12-21T16:08:42Z
new zoneminder issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -173,9 +173,13 @@ CVE-2018-1000835 (KeePassDX version <= 2.5.0.0beta17
contains a XML External
CVE-2018-1000834 (runelite version <= runelite-parent-1.4.23 contains a XML
External ...)
NOT-FOR-US: runelite
CVE-2018-1000833 (ZoneMinder version <= 1.32.2 contains a Other/Unknown
vulnerability in ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://0dd.zone/2018/10/28/zoneminder-Object-Injection-2/
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2272
CVE-2018-1000832 (ZoneMinder version <= 1.32.2 contains a Other/Unknown
vulnerability in ...)
- TODO: check
+ - zoneminder <unfixed>
+ NOTE: https://0dd.zone/2018/10/28/zoneminder-Object-Injection/
+ NOTE: https://github.com/ZoneMinder/zoneminder/issues/2271
CVE-2018-1000831 (K9Mail version <= v5.600 contains a XML External Entity
(XXE) ...)
NOT-FOR-US: K9Mail
CVE-2018-1000830 (XR3Player version <= V3.124 contains a XML External
Entity (XXE) ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca8b4fccf2b184444166d5dd75035667d98aa2e0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ca8b4fccf2b184444166d5dd75035667d98aa2e0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
