Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a9e3e4e5 by security tracker role at 2018-12-30T20:10:21Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,27 @@
+CVE-2018-20596 (Jspxcms v9.0.0 allows SSRF. ...)
+ TODO: check
+CVE-2018-20595 (A CSRF issue was discovered in ...)
+ TODO: check
+CVE-2018-20594 (An issue was discovered in hsweb 3.0.4. It is a reflected XSS
...)
+ TODO: check
+CVE-2018-20593 (In Mini-XML (aka mxml) v2.12, there is stack-based buffer
overflow in ...)
+ TODO: check
+CVE-2018-20592 (In Mini-XML (aka mxml) v2.12, there is a use-after-free in the
mxmlAdd ...)
+ TODO: check
+CVE-2018-20591 (A heap-based buffer over-read was discovered in decompileJUMP
function ...)
+ TODO: check
+CVE-2018-20590 (Ivan Cordoba Generic Content Management System (CMS) through
2018-04-28 ...)
+ TODO: check
+CVE-2018-20589 (Ivan Cordoba Generic Content Management System (CMS) through
2018-04-28 ...)
+ TODO: check
+CVE-2018-20588 (lib/support/unicodeconv/unicodeconv.c in libotfcc.a in otfcc
...)
+ TODO: check
+CVE-2018-20587
+ RESERVED
+CVE-2018-20586
+ RESERVED
+CVE-2018-20585
+ RESERVED
CVE-2018-20584 (JasPer 2.0.14 allows remote attackers to cause a denial of
service ...)
- jasper <removed>
NOTE: https://github.com/mdadams/jasper/issues/192
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/a9e3e4e539e25bbf1d03b7ae94ca1dc440837451
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/a9e3e4e539e25bbf1d03b7ae94ca1dc440837451
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
