[Git][security-tracker-team/security-tracker][master] automatic update

Wed, 17 Jul 2019 01:11:21 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
c374caac by security tracker role at 2019-07-17T08:10:17Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2019-13625 (NSA Ghidra before 9.0.1 allows XXE when a project is opened or 
restore ...)
+       TODO: check
+CVE-2019-13624 (In ONOS 1.15.0, 
apps/yang/web/src/main/java/org/onosproject/yang/web/Y ...)
+       TODO: check
+CVE-2019-13623 (In NSA Ghidra through 9.0.4, path traversal can occur in 
RestoreTask.j ...)
+       TODO: check
+CVE-2019-13622
+       RESERVED
+CVE-2019-13621
+       RESERVED
+CVE-2019-13620
+       RESERVED
+CVE-2019-13619
+       RESERVED
 CVE-2019-13618 (In GPAC before 0.8.0, isomedia/isom_read.c in libgpac.a has a 
heap-bas ...)
        - gpac <unfixed> (bug #932242)
        NOTE: https://github.com/gpac/gpac/issues/1250
@@ -11259,7 +11273,8 @@ CVE-2019-1010013
        RESERVED
 CVE-2019-1010012
        RESERVED
-CVE-2019-1010011 (moinejf abcm2ps 8.13.16 and after is affected by: CWE-121: 
Stack-based ...)
+CVE-2019-1010011
+       REJECTED
        - abcm2ps 8.14.2-0.1 (unimportant)
        NOTE: https://github.com/leesavide/abcm2ps/issues/55
        NOTE: Issue covered by fixes for CVE-2018-10753 and CVE-2018-10771 
already.
@@ -11378,11 +11393,13 @@ CVE-2019-9850
        RESERVED
 CVE-2019-9849 [remote bullet graphics retrieved in 'stealth mode']
        RESERVED
+       {DSA-4483-1}
        [experimental] - libreoffice 1:6.3.0~beta2-1
        - libreoffice 1:6.3.0~rc1-1
        NOTE: 
https://www.libreoffice.org/about-us/security/advisories/cve-2019-9849/
 CVE-2019-9848 [LibreLogo arbitrary script execution]
        RESERVED
+       {DSA-4483-1}
        [experimental] - libreoffice 1:6.3.0~beta2-1
        - libreoffice 1:6.3.0~rc1-1
        NOTE: 
https://www.libreoffice.org/about-us/security/advisories/cve-2019-9848/
@@ -26762,8 +26779,8 @@ CVE-2019-3573 (In libsixel v1.8.2, there is an infinite 
loop in the function six
 CVE-2019-3572 (An issue was discovered in libming 0.4.8. There is a heap-based 
buffer ...)
        - ming <removed>
        NOTE: https://github.com/libming/libming/issues/169
-CVE-2019-3571
-       RESERVED
+CVE-2019-3571 (An input validation issue affected WhatsApp Desktop versions 
prior to  ...)
+       TODO: check
 CVE-2019-3570
        RESERVED
        - hhvm <removed>



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/c374caac3a74fa0b6a080090447fc20992580b9b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/c374caac3a74fa0b6a080090447fc20992580b9b
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to