Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
28fd5cc8 by security tracker role at 2019-06-24T08:10:25Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,4 +1,10 @@
-CVE-2019-12935
+CVE-2019-12937 (apps/gsudo.c in gsudo in ToaruOS through 1.10.9 has a buffer
overflow ...)
+ TODO: check
+CVE-2019-12936 (BlueStacks App Player 2, 3, and 4 before 4.90 allows DNS
Rebinding for ...)
+ TODO: check
+CVE-2019-12934
+ RESERVED
+CVE-2019-12935 (Shopware before 5.5.8 has XSS via the Query String to the
backend/Logi ...)
NOT-FOR-US: Shopware
CVE-2019-12933 (An XSS issue on the PIX-Link Repeater/Router LV-WR09 with
firmware v28 ...)
NOT-FOR-US: PIX-Link Repeater/Router LV-WR09
@@ -6897,11 +6903,13 @@ CVE-2019-10164 [postgres: Stack-based buffer overflow
via setting a password]
NOTE: https://www.postgresql.org/about/news/1949/
CVE-2019-10163 [Denial of service via NOTIFY packets]
RESERVED
+ {DSA-4470-1}
- pdns 4.1.6-3
NOTE: https://www.openwall.com/lists/oss-security/2019/06/21/5
NOTE:
https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-05.html
CVE-2019-10162 [Denial of service via crafted zone records]
RESERVED
+ {DSA-4470-1}
- pdns 4.1.6-3
NOTE: https://www.openwall.com/lists/oss-security/2019/06/21/5
NOTE:
https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-04.html
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/28fd5cc8c17b8d16416cd7c4853d280d4cb6bb94
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/28fd5cc8c17b8d16416cd7c4853d280d4cb6bb94
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
