Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d710ed3d by security tracker role at 2019-07-13T08:10:14Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,5 @@
+CVE-2019-13576
+ RESERVED
CVE-2019-13575
RESERVED
CVE-2019-13574 (In lib/mini_magick/image.rb in MiniMagick before 4.9.4, a
fetched remo ...)
@@ -14,7 +16,7 @@ CVE-2019-13569
RESERVED
CVE-2019-13568
RESERVED
-CVE-2019-13567 (The Zoom Client before 4.4.2 on macOS allows remote code
execution, a ...)
+CVE-2019-13567 (The Zoom Client before 4.4.53932.0709 on macOS allows remote
code exec ...)
NOT-FOR-US: Zoom
CVE-2019-13566
RESERVED
@@ -952,8 +954,8 @@ CVE-2019-13163
RESERVED
CVE-2019-13162
RESERVED
-CVE-2019-13161
- RESERVED
+CVE-2019-13161 (An issue was discovered in Asterisk Open Source through
13.27.0, 14.x ...)
+ TODO: check
CVE-2019-13160
RESERVED
CVE-2019-13159
@@ -1836,8 +1838,8 @@ CVE-2019-12829 (radare2 through 3.5.1 mishandles the
RParse API, which allows re
NOTE:
https://github.com/radare/radare2/commit/b282620b7a8818910c42a29b8f0855a2d13eec14
CVE-2019-12828 (An issue was discovered in Electronic Arts Origin before
10.5.39. Due ...)
NOT-FOR-US: Electronic Arts Origin
-CVE-2019-12827
- RESERVED
+CVE-2019-12827 (Buffer overflow in res_pjsip_messaging in Digium Asterisk
versions 13. ...)
+ TODO: check
CVE-2019-12826 (A Cross-Site-Request-Forgery (CSRF) vulnerability in
widget_logic.php ...)
NOT-FOR-US: 2by2host Widget Logic plugin for WordPress
CVE-2019-12825
@@ -9497,13 +9499,16 @@ CVE-2019-1010314 (Gitea 1.7.2, 1.7.3 is affected by:
Cross Site Scripting (XSS).
- gitea <removed>
CVE-2019-1010313
RESERVED
-CVE-2019-1010312 (Tildeslash Monit Version 5.25.2 and earlier is affected by:
Buffer Ove ...)
+CVE-2019-1010312
+ REJECTED
NOTE: Invalid CVE, duplicate of CVE-2019-11455
-CVE-2019-1010311 (Tildeslash Monit Version 5.25.2 and earlier is affected by:
Cross Site ...)
+CVE-2019-1010311
+ REJECTED
NOTE: Invalid CVE, duplicate of CVE-2019-11454
CVE-2019-1010310 (GLPI GLPI Product 9.3.1 is affected by: Frame and Form tags
Injection ...)
TODO: check
-CVE-2019-1010309 (pacman prior to version 5.1.3 is affected by: Directory
Traversal. The ...)
+CVE-2019-1010309
+ REJECTED
NOTE: Duplicate assignement for CVE-2019-9686
CVE-2019-1010308
RESERVED
@@ -21078,8 +21083,8 @@ CVE-2019-5631
RESERVED
CVE-2019-5630 (A Cross-Site Request Forgery (CSRF) vulnerability was found in
Rapid7 ...)
NOT-FOR-US: Rapid7 Nexpose InsightVM Security Console
-CVE-2019-5629
- RESERVED
+CVE-2019-5629 (Rapid7 Insight Agent, version 2.6.3 and prior, suffers from a
local pr ...)
+ TODO: check
CVE-2019-5628
RESERVED
CVE-2019-5627 (The iOS mobile application BlueCats Reveal before 5.14 stores
the user ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d710ed3d2a81b1fbe3ae192864c5679962bcfa5b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d710ed3d2a81b1fbe3ae192864c5679962bcfa5b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
