Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
40d31f46 by security tracker role at 2019-06-05T20:10:28Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,4 +1,24 @@
-CVE-2019-12735 [Modelines allow arbitrary code execution]
+CVE-2019-12743
+ RESERVED
+CVE-2019-12742 (Bludit prior to 3.9.1 allows a non-privileged user to change
the passw ...)
+ TODO: check
+CVE-2019-12741 (XSS exists in the HAPI FHIR testpage overlay module of the
HAPI FHIR l ...)
+ TODO: check
+CVE-2019-12740
+ RESERVED
+CVE-2019-12739 (lib/Controller/ExtractionController.php in the Extract add-on
before 1 ...)
+ TODO: check
+CVE-2019-12738
+ RESERVED
+CVE-2019-12737
+ RESERVED
+CVE-2019-12736
+ RESERVED
+CVE-2019-12734
+ RESERVED
+CVE-2019-12733
+ RESERVED
+CVE-2019-12735 (getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6
allows remote ...)
- vim <unfixed> (bug #930020)
- neovim <unfixed> (bug #930024)
NOTE:
https://github.com/numirias/security/blob/master/doc/2019-06-04_ace-vim-neovim.md
@@ -9,6 +29,7 @@ CVE-2019-12732
CVE-2019-12731
RESERVED
CVE-2019-12730 (aa_read_header in libavformat/aadec.c in FFmpeg before 3.2.14
does not ...)
+ {DSA-4449-1}
- ffmpeg <unfixed>
NOTE:
https://github.com/FFmpeg/FFmpeg/commit/ed188f6dcdf0935c939ed813cf8745d50742014b
CVE-2019-12729
@@ -365,12 +386,12 @@ CVE-2019-12557
RESERVED
CVE-2019-12556
RESERVED
-CVE-2019-12555
- RESERVED
-CVE-2019-12554
- RESERVED
-CVE-2019-12553
- RESERVED
+CVE-2019-12555 (In SweetScape 010 Editor 9.0.1, improper validation of
arguments in th ...)
+ TODO: check
+CVE-2019-12554 (In SweetScape 010 Editor 9.0.1, improper validation of
arguments in th ...)
+ TODO: check
+CVE-2019-12553 (In SweetScape 010 Editor 9.0.1, improper validation of
arguments in th ...)
+ TODO: check
CVE-2019-12552
RESERVED
CVE-2019-12551
@@ -389,18 +410,18 @@ CVE-2019-12545
RESERVED
CVE-2019-12544
RESERVED
-CVE-2019-12543
- RESERVED
-CVE-2019-12542
- RESERVED
-CVE-2019-12541
- RESERVED
+CVE-2019-12543 (An issue was discovered in Zoho ManageEngine ServiceDesk Plus
9.3. The ...)
+ TODO: check
+CVE-2019-12542 (An issue was discovered in Zoho ManageEngine ServiceDesk Plus
9.3. The ...)
+ TODO: check
+CVE-2019-12541 (An issue was discovered in Zoho ManageEngine ServiceDesk Plus
9.3. The ...)
+ TODO: check
CVE-2019-12540
RESERVED
CVE-2019-12539
RESERVED
-CVE-2019-12538
- RESERVED
+CVE-2019-12538 (An issue was discovered in Zoho ManageEngine ServiceDesk Plus
9.3. The ...)
+ TODO: check
CVE-2019-12537
RESERVED
CVE-2019-12536
@@ -492,8 +513,8 @@ CVE-2019-12495 (An issue was discovered in Tiny C Compiler
(aka TinyCC or TCC) 0
[jessie] - tcc <no-dsa> (Minor issue)
NOTE:
https://lists.nongnu.org/archive/html/tinycc-devel/2019-05/msg00044.html
NOTE:
https://repo.or.cz/tinycc.git/commit/d04ce7772c2bc2781ab2502e0b1f1964488814b5
-CVE-2019-12494
- RESERVED
+CVE-2019-12494 (In Gardener before 0.20.0, incorrect access control in seed
clusters a ...)
+ TODO: check
CVE-2019-12493 (A stack-based buffer over-read exists in
PostScriptFunction::transform ...)
TODO: check
CVE-2019-12492
@@ -959,6 +980,7 @@ CVE-2019-12310 (ExaGrid appliances with firmware version
v4.8.1.1044.P50 have a
CVE-2019-12309 (dotCMS before 5.1.0 has a path traversal vulnerability
exploitable by ...)
NOT-FOR-US: dotCMS
CVE-2019-12308 (An issue was discovered in Django 1.11 before 1.11.21, 2.1
before 2.1. ...)
+ {DLA-1814-1}
- python-django 1:1.11.21-1 (bug #929927)
[stretch] - python-django <no-dsa> (Minor issue)
NOTE:
https://github.com/django/django/commit/deeba6d92006999fee9adfbd8be79bf0a59e8008
(master)
@@ -1035,8 +1057,8 @@ CVE-2019-12278
RESERVED
CVE-2019-12277 (Blogifier 2.3 before 2019-05-11 does not properly restrict
APIs, as de ...)
NOT-FOR-US: Blogifier
-CVE-2019-12276
- RESERVED
+CVE-2019-12276 (A Path Traversal vulnerability in
Controllers/LetsEncryptController.cs ...)
+ TODO: check
CVE-2019-12275
RESERVED
CVE-2016-10750 (In Hazelcast before 3.11, the cluster join procedure is
vulnerable to ...)
@@ -1109,8 +1131,8 @@ CVE-2019-12245
RESERVED
CVE-2019-12244
RESERVED
-CVE-2019-12243
- RESERVED
+CVE-2019-12243 (Istio 1.1.x through 1.1.6 has Incorrect Access Control. ...)
+ TODO: check
CVE-2019-12242
RESERVED
CVE-2019-12241 (The Carts Guru plugin 1.4.5 for WordPress allows Insecure
Deserializat ...)
@@ -1255,8 +1277,8 @@ CVE-2019-12198 (In GoHttp through 2017-07-25, there is a
stack-based buffer over
NOT-FOR-US: GoHttp
CVE-2019-12197
RESERVED
-CVE-2019-12196
- RESERVED
+CVE-2019-12196 (A SQL injection vulnerability in
/client/api/json/v2/nfareports/compar ...)
+ TODO: check
CVE-2019-12195 (TP-Link TL-WR840N v5 00000005 devices allow XSS via the
network name. ...)
NOT-FOR-US: TP-Link
CVE-2019-12194
@@ -1706,102 +1728,102 @@ CVE-2019-11990
RESERVED
CVE-2019-11989
RESERVED
-CVE-2019-11988
- RESERVED
-CVE-2019-11987
- RESERVED
-CVE-2019-11986
- RESERVED
-CVE-2019-11985
- RESERVED
-CVE-2019-11984
- RESERVED
-CVE-2019-11983
- RESERVED
-CVE-2019-11982
- RESERVED
+CVE-2019-11988 (A Remote Unauthorized Access vulnerability was identified in
HPE Smart ...)
+ TODO: check
+CVE-2019-11987 (A security vulnerability in HPE Smart Update Manager (SUM)
prior to v8 ...)
+ TODO: check
+CVE-2019-11986 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11985 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11984 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11983 (A remote buffer overflow vulnerability was identified in HPE
Integrate ...)
+ TODO: check
+CVE-2019-11982 (A remote cross site scripting vulnerability was identified in
HPE Inte ...)
+ TODO: check
CVE-2019-11981
RESERVED
-CVE-2019-11980
- RESERVED
-CVE-2019-11979
- RESERVED
-CVE-2019-11978
- RESERVED
-CVE-2019-11977
- RESERVED
-CVE-2019-11976
- RESERVED
-CVE-2019-11975
- RESERVED
-CVE-2019-11974
- RESERVED
-CVE-2019-11973
- RESERVED
-CVE-2019-11972
- RESERVED
-CVE-2019-11971
- RESERVED
-CVE-2019-11970
- RESERVED
-CVE-2019-11969
- RESERVED
-CVE-2019-11968
- RESERVED
-CVE-2019-11967
- RESERVED
-CVE-2019-11966
- RESERVED
-CVE-2019-11965
- RESERVED
-CVE-2019-11964
- RESERVED
-CVE-2019-11963
- RESERVED
-CVE-2019-11962
- RESERVED
-CVE-2019-11961
- RESERVED
-CVE-2019-11960
- RESERVED
-CVE-2019-11959
- RESERVED
-CVE-2019-11958
- RESERVED
-CVE-2019-11957
- RESERVED
-CVE-2019-11956
- RESERVED
-CVE-2019-11955
- RESERVED
-CVE-2019-11954
- RESERVED
-CVE-2019-11953
- RESERVED
-CVE-2019-11952
- RESERVED
-CVE-2019-11951
- RESERVED
-CVE-2019-11950
- RESERVED
-CVE-2019-11949
- RESERVED
-CVE-2019-11948
- RESERVED
-CVE-2019-11947
- RESERVED
-CVE-2019-11946
- RESERVED
-CVE-2019-11945
- RESERVED
-CVE-2019-11944
- RESERVED
-CVE-2019-11943
- RESERVED
-CVE-2019-11942
- RESERVED
-CVE-2019-11941
- RESERVED
+CVE-2019-11980 (A remote code exection vulnerability was identified in HPE
Intelligent ...)
+ TODO: check
+CVE-2019-11979 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11978 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11977 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11976 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11975 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11974 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11973 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11972 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11971 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11970 (A SQL injection code execution vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11969 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11968 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11967 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11966 (A remote privilege escalation vulnerability was identified in
HPE Inte ...)
+ TODO: check
+CVE-2019-11965 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11964 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11963 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11962 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11961 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11960 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11959 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11958 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11957 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11956 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11955 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11954 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11953 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11952 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11951 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11950 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11949 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11948 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11947 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11946 (A remote credential disclosure vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-11945 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11944 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11943 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11942 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-11941 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
CVE-2019-11940
RESERVED
CVE-2019-11939
@@ -3605,8 +3627,8 @@ CVE-2019-11228 (repo/setting.go in Gitea before 1.7.6 and
1.8.x before 1.8-RC3 d
- gitea <removed>
CVE-2019-11227
RESERVED
-CVE-2019-11226
- RESERVED
+CVE-2019-11226 (CMS Made Simple 2.2.10 has XSS via the m1_name parameter in
"Add Artic ...)
+ TODO: check
CVE-2019-11225
RESERVED
CVE-2019-11224 (HARMAN AMX MVP5150 v2.87.13 devices allow remote OS Command
Injection. ...)
@@ -5177,8 +5199,8 @@ CVE-2019-10639
RESERVED
CVE-2019-10638
RESERVED
-CVE-2019-10637
- RESERVED
+CVE-2019-10637 (Marvell SSD Controller (88SS1074, 88SS1079, 88SS1080,
88SS1093, 88SS10 ...)
+ TODO: check
CVE-2019-10636 (Marvell SSD Controller (88SS1074, 88SS1079, 88SS1080,
88SS1093, 88SS10 ...)
TODO: check
CVE-2019-10635
@@ -6225,8 +6247,8 @@ CVE-2019-10151
CVE-2019-10150
RESERVED
NOT-FOR-US: OpenShift
-CVE-2019-10149
- RESERVED
+CVE-2019-10149 (A flaw was found in Exim versions 4.87 to 4.91 (inclusive).
Improper v ...)
+ {DSA-4456-1}
- exim4 4.92~RC3-1
[jessie] - exim4 <not-affected> (Vulnerable code introduced in 4.87)
NOTE: https://www.openwall.com/lists/oss-security/2019/06/04/1
@@ -8035,8 +8057,7 @@ CVE-2019-9756 (An issue was discovered in GitLab
Community and Enterprise Editio
[experimental] - gitlab 11.8.2-1
- gitlab 11.8.2-2 (bug #924447)
NOTE:
https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/
-CVE-2019-9755 [heap buffer overflow]
- RESERVED
+CVE-2019-9755 (An integer underflow issue exists in ntfs-3g 2017.3.23. A local
attack ...)
{DSA-4413-1 DLA-1724-1}
- ntfs-3g 1:2017.3.23AR.3-3 (bug #925255)
NOTE:
https://sourceforge.net/p/ntfs-3g/ntfs-3g/ci/85c1634a26faa572d3c558d4cf8aaaca5202d4e9/
@@ -8133,8 +8154,8 @@ CVE-2019-9732 (An issue was discovered in GitLab
Community and Enterprise Editio
NOTE: https://about.gitlab.com/2019/03/14/gitlab-11-8-2-released/
CVE-2019-9731
RESERVED
-CVE-2019-9730
- RESERVED
+CVE-2019-9730 (Incorrect access control in the CxUtilSvc component of the
Synaptics S ...)
+ TODO: check
CVE-2019-9729 (In Shanda MapleStory Online V160, the SdoKeyCrypt.sys driver
allows pr ...)
NOT-FOR-US: Shanda MapleStory Online
CVE-2019-9728
@@ -8272,8 +8293,8 @@ CVE-2019-9675 (** DISPUTED ** An issue was discovered in
PHP 7.x before 7.1.27 a
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77586
CVE-2019-9674
RESERVED
-CVE-2019-9673
- RESERVED
+CVE-2019-9673 (Freenet 1483 has a MIME type bypass that allows arbitrary
JavaScript e ...)
+ TODO: check
CVE-2019-9672
RESERVED
CVE-2019-9671
@@ -8333,8 +8354,8 @@ CVE-2019-9649 (An issue was discovered in the SFTP Server
component in Core FTP
NOT-FOR-US: Core FTP
CVE-2019-9648 (An issue was discovered in the SFTP Server component in Core
FTP 2.0 B ...)
NOT-FOR-US: Core FTP
-CVE-2019-9647
- RESERVED
+CVE-2019-9647 (Gila CMS 1.9.1 has XSS. ...)
+ TODO: check
CVE-2019-9645
RESERVED
CVE-2019-9646 (The Contact Form Email plugin before 1.2.66 for WordPress
allows wp-ad ...)
@@ -8346,8 +8367,8 @@ CVE-2019-9644 (An XSSI (cross-site inclusion)
vulnerability in Jupyter Notebook
NOTE:
https://github.com/jupyter/notebook/commit/bfaa61385729ed4fb453863053f9a79141f01119
CVE-2019-9643
RESERVED
-CVE-2019-9642
- RESERVED
+CVE-2019-9642 (An issue was discovered in proxy.php in pydio-core in Pydio
through 8. ...)
+ TODO: check
CVE-2019-9636 (Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected
by: Impr ...)
- python3.7 3.7.3~rc1-1 (bug #924072)
- python3.6 <removed>
@@ -8654,8 +8675,8 @@ CVE-2019-1002100 (In all Kubernetes versions prior to
v1.11.8, v1.12.6, and v1.1
- kubernetes <unfixed> (bug #923686)
NOTE: https://github.com/kubernetes/kubernetes/issues/74534
NOTE: https://github.com/kubernetes/kubernetes/pull/74000
-CVE-2019-9548
- RESERVED
+CVE-2019-9548 (Citrix Application Delivery Management (ADM) 12.1.x before
12.1.50.33 ...)
+ TODO: check
CVE-2019-9547 (In Storage Performance Development Kit (SPDK) before 19.01, a
maliciou ...)
NOT-FOR-US: Storage Performance Development Kit (SPDK)
CVE-2019-9546 (SolarWinds Orion Platform before 2018.4 Hotfix 2 allows
privilege esca ...)
@@ -9474,12 +9495,11 @@ CVE-2019-9191 (The ETSI Enterprise Transport Security
(ETS, formerly known as eT
NOT-FOR-US: ETSI protocol
CVE-2019-9190
RESERVED
-CVE-2019-9189
- RESERVED
+CVE-2019-9189 (On Prima Systems FlexAir devices through 2.4.9api3, an
authenticated u ...)
+ TODO: check
CVE-2019-9188
RESERVED
-CVE-2019-9187 [Server-side request forgery via aggregate plugin]
- RESERVED
+CVE-2019-9187 (ikiwiki before 3.20170111.1 and 3.2018x and 3.2019x before
3.20190226 ...)
{DSA-4399-1 DLA-1716-1}
- ikiwiki 3.20190228-1
NOTE: https://ikiwiki.info/security/#cve-2019-9187
@@ -9567,12 +9587,12 @@ CVE-2019-9160 (WAC on the Sangfor Sundray WLAN
Controller version 3.7.4.2 and ea
NOT-FOR-US: Sangfor Sundray WLAN Controller
CVE-2019-9159
RESERVED
-CVE-2019-9158
- RESERVED
-CVE-2019-9157
- RESERVED
-CVE-2019-9156
- RESERVED
+CVE-2019-9158 (Gemalto DS3 Authentication Server 2.6.1-SP01 has Broken Access
Control ...)
+ TODO: check
+CVE-2019-9157 (Gemalto DS3 Authentication Server 2.6.1-SP01 allows Local File
Disclos ...)
+ TODO: check
+CVE-2019-9156 (Gemalto DS3 Authentication Server 2.6.1-SP01 allows OS Command
Injecti ...)
+ TODO: check
CVE-2019-9192 (** DISPUTED ** In the GNU C Library (aka glibc or libc6)
through 2.29, ...)
- glibc <unfixed> (unimportant)
- eglibc <removed> (unimportant)
@@ -11563,8 +11583,8 @@ CVE-2019-8387 (MASTER IPCAMERA01 3.3.4.2103 devices
allow Remote Command Executi
NOT-FOR-US: MASTER IPCAMERA01 devices
CVE-2019-8386
RESERVED
-CVE-2019-8385
- RESERVED
+CVE-2019-8385 (An issue was discovered in Thomson Reuters Desktop Extensions
1.9.0.35 ...)
+ TODO: check
CVE-2019-8384
RESERVED
CVE-2019-8383 (An issue was discovered in AdvanceCOMP through 2.1. An invalid
memory ...)
@@ -13149,10 +13169,10 @@ CVE-2019-7674 (An issue was discovered on MOBOTIX S14
MX-V4.2.1.61 devices. /adm
NOT-FOR-US: MOBOTIX
CVE-2019-7673 (An issue was discovered on MOBOTIX S14 MX-V4.2.1.61 devices.
Administr ...)
NOT-FOR-US: MOBOTIX
-CVE-2019-7672
- RESERVED
-CVE-2019-7671
- RESERVED
+CVE-2019-7672 (Prima Systems FlexAir devices have Hard-coded Credentials. ...)
+ TODO: check
+CVE-2019-7671 (Prima Systems FlexAir devices allow Authenticated Stored XSS.
...)
+ TODO: check
CVE-2019-7670
RESERVED
CVE-2019-7669
@@ -15427,8 +15447,8 @@ CVE-2019-6802 (CRLF Injection in pypiserver 1.2.5 and
below allows attackers to
NOT-FOR-US: pypiserver
CVE-2019-6801
RESERVED
-CVE-2019-6800
- RESERVED
+CVE-2019-6800 (In TitanHQ SpamTitan through 7.03, a vulnerability exists in
the spam ...)
+ TODO: check
CVE-2019-6799 (An issue was discovered in phpMyAdmin before 4.8.5. When the
AllowArbi ...)
{DLA-1692-1}
- phpmyadmin <unfixed> (bug #920823)
@@ -18997,120 +19017,120 @@ CVE-2019-5396
RESERVED
CVE-2019-5395
RESERVED
-CVE-2019-5394
- RESERVED
-CVE-2019-5393
- RESERVED
-CVE-2019-5392
- RESERVED
-CVE-2019-5391
- RESERVED
-CVE-2019-5390
- RESERVED
-CVE-2019-5389
- RESERVED
-CVE-2019-5388
- RESERVED
-CVE-2019-5387
- RESERVED
-CVE-2019-5386
- RESERVED
-CVE-2019-5385
- RESERVED
-CVE-2019-5384
- RESERVED
-CVE-2019-5383
- RESERVED
-CVE-2019-5382
- RESERVED
-CVE-2019-5381
- RESERVED
-CVE-2019-5380
- RESERVED
-CVE-2019-5379
- RESERVED
-CVE-2019-5378
- RESERVED
-CVE-2019-5377
- RESERVED
-CVE-2019-5376
- RESERVED
-CVE-2019-5375
- RESERVED
-CVE-2019-5374
- RESERVED
-CVE-2019-5373
- RESERVED
-CVE-2019-5372
- RESERVED
-CVE-2019-5371
- RESERVED
-CVE-2019-5370
- RESERVED
-CVE-2019-5369
- RESERVED
-CVE-2019-5368
- RESERVED
-CVE-2019-5367
- RESERVED
-CVE-2019-5366
- RESERVED
-CVE-2019-5365
- RESERVED
-CVE-2019-5364
- RESERVED
-CVE-2019-5363
- RESERVED
-CVE-2019-5362
- RESERVED
-CVE-2019-5361
- RESERVED
-CVE-2019-5360
- RESERVED
-CVE-2019-5359
- RESERVED
-CVE-2019-5358
- RESERVED
-CVE-2019-5357
- RESERVED
-CVE-2019-5356
- RESERVED
-CVE-2019-5355
- RESERVED
-CVE-2019-5354
- RESERVED
-CVE-2019-5353
- RESERVED
-CVE-2019-5352
- RESERVED
-CVE-2019-5351
- RESERVED
-CVE-2019-5350
- RESERVED
-CVE-2019-5349
- RESERVED
-CVE-2019-5348
- RESERVED
-CVE-2019-5347
- RESERVED
-CVE-2019-5346
- RESERVED
-CVE-2019-5345
- RESERVED
-CVE-2019-5344
- RESERVED
-CVE-2019-5343
- RESERVED
-CVE-2019-5342
- RESERVED
-CVE-2019-5341
- RESERVED
-CVE-2019-5340
- RESERVED
-CVE-2019-5339
- RESERVED
-CVE-2019-5338
- RESERVED
+CVE-2019-5394 (The HPE Nonstop Maintenance Entity family of products are
vulnerable t ...)
+ TODO: check
+CVE-2019-5393 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5392 (A disclosure of information vulnerability was identified in HPE
Intell ...)
+ TODO: check
+CVE-2019-5391 (A stack buffer overflow vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5390 (A remote command injection vulnerability was identified in HPE
Intelli ...)
+ TODO: check
+CVE-2019-5389 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5388 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5387 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5386 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5385 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5384 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5383 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5382 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5381 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5380 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5379 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5378 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5377 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5376 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5375 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5374 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5373 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5372 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5371 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5370 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5369 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5368 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5367 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5366 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5365 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5364 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5363 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5362 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5361 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5360 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5359 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5358 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5357 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5356 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5355 (A remote denial of service vulnerability was identified in HPE
Intelli ...)
+ TODO: check
+CVE-2019-5354 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5353 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5352 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5351 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5350 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5349 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5348 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5347 (A remote authentication bypass vulnerability was identified in
HPE Int ...)
+ TODO: check
+CVE-2019-5346 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5345 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5344 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5343 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5342 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5341 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5340 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5339 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2019-5338 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
CVE-2019-5337
RESERVED
CVE-2019-5336
@@ -28798,12 +28818,12 @@ CVE-2019-1884
RESERVED
CVE-2019-1883
RESERVED
-CVE-2019-1882
- RESERVED
-CVE-2019-1881
- RESERVED
-CVE-2019-1880
- RESERVED
+CVE-2019-1882 (A vulnerability in Cisco Industrial Network Director could
allow an au ...)
+ TODO: check
+CVE-2019-1881 (A vulnerability in the web-based management interface of Cisco
Industr ...)
+ TODO: check
+CVE-2019-1880 (A vulnerability in the BIOS upgrade utility of Cisco Unified
Computing ...)
+ TODO: check
CVE-2019-1879
RESERVED
CVE-2019-1878
@@ -28818,16 +28838,16 @@ CVE-2019-1874
RESERVED
CVE-2019-1873
RESERVED
-CVE-2019-1872
- RESERVED
+CVE-2019-1872 (A vulnerability in Cisco TelePresence Video Communication
Server (VCS) ...)
+ TODO: check
CVE-2019-1871
RESERVED
-CVE-2019-1870
- RESERVED
+CVE-2019-1870 (A vulnerability in the web-based management interface of Cisco
Enterpr ...)
+ TODO: check
CVE-2019-1869
RESERVED
-CVE-2019-1868
- RESERVED
+CVE-2019-1868 (A vulnerability in the web-based management interface of Cisco
Webex M ...)
+ TODO: check
CVE-2019-1867 (A vulnerability in the REST API of Cisco Elastic Services
Controller ( ...)
NOT-FOR-US: Cisco
CVE-2019-1866
@@ -28840,8 +28860,8 @@ CVE-2019-1863
RESERVED
CVE-2019-1862 (A vulnerability in the web-based user interface (Web UI) of
Cisco IOS ...)
NOT-FOR-US: Cisco
-CVE-2019-1861
- RESERVED
+CVE-2019-1861 (A vulnerability in the software update feature of Cisco
Industrial Net ...)
+ TODO: check
CVE-2019-1860 (A vulnerability in the dashboard gadget rendering of Cisco
Unified Int ...)
NOT-FOR-US: Cisco
CVE-2019-1859 (A vulnerability in the Secure Shell (SSH) authentication
process of Ci ...)
@@ -28872,14 +28892,14 @@ CVE-2019-1847
RESERVED
CVE-2019-1846 (A vulnerability in the Multiprotocol Label Switching (MPLS)
Operations ...)
NOT-FOR-US: Cisco
-CVE-2019-1845
- RESERVED
+CVE-2019-1845 (A vulnerability in the authentication service of the Cisco
Unified Com ...)
+ TODO: check
CVE-2019-1844 (A vulnerability in certain attachment detection mechanisms of
the Cisc ...)
NOT-FOR-US: Cisco
CVE-2019-1843
RESERVED
-CVE-2019-1842
- RESERVED
+CVE-2019-1842 (A vulnerability in the Secure Shell (SSH) authentication
function of C ...)
+ TODO: check
CVE-2019-1841 (A vulnerability in the Software Image Management feature of
Cisco DNA ...)
NOT-FOR-US: Cisco
CVE-2019-1840 (A vulnerability in the DHCPv6 input packet processor of Cisco
Prime Ne ...)
@@ -36084,8 +36104,8 @@ CVE-2018-18573
RESERVED
CVE-2018-18572
RESERVED
-CVE-2018-18571
- RESERVED
+CVE-2018-18571 (An Incorrect Access Control vulnerability has been identified
in Citri ...)
+ TODO: check
CVE-2018-18570
RESERVED
CVE-2018-18569 (The Dundas BI server before 5.0.1.1010 is vulnerable to a
Server-Side ...)
@@ -66949,16 +66969,16 @@ CVE-2018-7127
RESERVED
CVE-2018-7126
RESERVED
-CVE-2018-7125
- RESERVED
-CVE-2018-7124
- RESERVED
-CVE-2018-7123
- RESERVED
-CVE-2018-7122
- RESERVED
-CVE-2018-7121
- RESERVED
+CVE-2018-7125 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2018-7124 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
+CVE-2018-7123 (A remote denial of service vulnerability was identified in HPE
Intelli ...)
+ TODO: check
+CVE-2018-7122 (A remote disclosure of information vulnerability was identified
in HPE ...)
+ TODO: check
+CVE-2018-7121 (A remote code execution vulnerability was identified in HPE
Intelligen ...)
+ TODO: check
CVE-2018-7120 (A security vulnerability in the HPE Virtual Connect SE 16Gb
Fibre Chan ...)
NOT-FOR-US: HPE
CVE-2018-7119 (A Local Disclosure of Sensitive Information vulnerability was
identifi ...)
@@ -121663,8 +121683,8 @@ CVE-2017-6263 (NVIDIA driver contains a vulnerability
where it is possible a use
NOT-FOR-US: NVIDIA driver for Android
CVE-2017-6262 (NVIDIA driver contains a vulnerability where it is possible a
use afte ...)
NOT-FOR-US: NVIDIA driver for Android
-CVE-2017-6261
- RESERVED
+CVE-2017-6261 (NVIDIA’s Vibrante Linux version 1.1, 2.0, and 2.2
contains a vul ...)
+ TODO: check
CVE-2017-6260 (NVIDIA Windows GPU Display Driver contains a vulnerability in
the kern ...)
NOT-FOR-US: NVIDIA Windows GPU Display Driver
CVE-2017-6259 (NVIDIA GPU Display Driver contains a vulnerability in the
kernel mode ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/40d31f46597ccbbfff410155881df655031ba05d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/40d31f46597ccbbfff410155881df655031ba05d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
