Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 2c5b5911 by Salvatore Bonaccorso at 2019-04-08T08:40:08Z Put temporary description in [] brackets - - - - - 11c06742 by Salvatore Bonaccorso at 2019-04-08T08:40:27Z Remove trailing whitespaces - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -101,7 +101,7 @@ CVE-2019-10876 (An issue was discovered in OpenStack Neutron 11.x before 11.0.7, [stretch] - neutron <not-affected> (Vulnerable code introduced later; Around Pike Openstack release) [jessie] - neutron <not-affected> (Vulnerable code introduced later; Around Pike Openstack release) NOTE: https://bugs.launchpad.net/ossa/+bug/1813007 - NOTE: https://review.openstack.org/#/q/topic:bug/1813007 + NOTE: https://review.openstack.org/#/q/topic:bug/1813007 CVE-2019-10875 (A URL spoofing vulnerability was found in all international versions o ...) TODO: check CVE-2019-10874 (Cross Site Request Forgery (CSRF) in the bolt/upload File Upload featu ...) @@ -17197,10 +17197,10 @@ CVE-2019-3882 [DoS through vfio/type1 DMA mappings] NOTE: Fixed by: https://git.kernel.org/linus/492855939bdb59c6f947b0b5b44af9ad82b7e38c CVE-2019-3881 RESERVED -CVE-2019-3880 (Save registry file outside share as unprivileged user) +CVE-2019-3880 [Save registry file outside share as unprivileged user] {DSA-4427-1} - - samba <unfixed> - NOTE: https://www.samba.org/samba/security/CVE-2019-3880.html + - samba <unfixed> + NOTE: https://www.samba.org/samba/security/CVE-2019-3880.html CVE-2019-3879 (It was discovered that in the ovirt's REST API before version 4.3.2.1, ...) NOT-FOR-US: ovirt-engine CVE-2019-3878 (A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache ...) @@ -17232,10 +17232,10 @@ CVE-2019-3871 (A vulnerability was found in PowerDNS Authoritative Server before NOTE: https://github.com/PowerDNS/pdns/issues/7573 NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-03.html NOTE: Patches: https://downloads.powerdns.com/patches/2019-03/ -CVE-2019-3870 (During the provision of a new Active Directory DC, some files in the ...) +CVE-2019-3870 [During the provision of a new Active Directory DC, some files in the ...] - samba <unfixed> [stretch] - samba <not-affected> (Vulnerable code not present) - NOTE: https://www.samba.org/samba/security/CVE-2019-3870.html + NOTE: https://www.samba.org/samba/security/CVE-2019-3870.html CVE-2019-3869 (When running Tower before 3.4.3 on OpenShift or Kubernetes, applicatio ...) NOT-FOR-US: Ansible Tower CVE-2019-3868 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/52c62481cdec2b24711122ab32f97940b1ef1822...11c067424206aaed50d61af7c3d652cfdba33fed -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/52c62481cdec2b24711122ab32f97940b1ef1822...11c067424206aaed50d61af7c3d652cfdba33fed You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits