Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d1f5a5de by Salvatore Bonaccorso at 2019-03-04T20:01:21Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25,11 +25,11 @@ CVE-2019-9553
CVE-2019-9552 (Eloan V3.0 through 2018-09-20 allows remote attackers to list
files via ...)
TODO: check
CVE-2019-9551 (An issue was discovered in DOYO (aka doyocms) 2.3 through
2015-05-06. ...)
- TODO: check
+ NOT-FOR-US: doyocms
CVE-2019-9550 (DhCms through 2017-09-18 has admin.php?r=admin/Index/index XSS.
...)
- TODO: check
+ NOT-FOR-US: DhCms
CVE-2019-9549 (An issue was discovered in PopojiCMS v2.0.1. It has CSRF via
the ...)
- TODO: check
+ NOT-FOR-US: PopojiCMS
CVE-2019-XXXX [insecure use of /tmp]
- bubblewrap 0.3.1-3 (bug #923557)
NOTE: https://github.com/projectatomic/bubblewrap/issues/304
@@ -52314,7 +52314,7 @@ CVE-2018-8791 (rdesktop versions up to and including
v1.8.3 contain an Out-Of-Bo
- rdesktop 1.8.4-1
NOTE:
https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2
(v1.8.4)
CVE-2018-8790 (Check Point ZoneAlarm version 15.3.064.17729 and below expose a
WCF ...)
- TODO: check
+ NOT-FOR-US: Check Point ZoneAlarm
CVE-2018-8789 (FreeRDP prior to version 2.0.0-rc4 contains several
Out-Of-Bounds ...)
{DLA-1666-1}
- freerdp2 2.0.0~git20181120.1.e21b72c95+dfsg1-1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d1f5a5de0afcfaf2a2ade5c43cd818e4e1553554
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d1f5a5de0afcfaf2a2ade5c43cd818e4e1553554
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
