Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4d1d7486 by Moritz Muehlenhoff at 2019-07-18T07:25:08Z
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3847,7 +3847,7 @@ CVE-2019-12477 (Supra Smart Cloud TV allows remote file
inclusion in the openLiv
CVE-2019-12476 (An authentication bypass vulnerability in the password reset
functiona ...)
NOT-FOR-US: Zoho ManageEngine ADSelfService Plus
CVE-2019-12475 (In MicroStrategy Web before 10.4.6, there is stored XSS in
metric due ...)
- TODO: check
+ NOT-FOR-US: MicroStrategy Web
CVE-2019-12474 (Wikimedia MediaWiki 1.23.0 through 1.32.1 has an information
leak. Pri ...)
{DSA-4460-1}
- mediawiki 1:1.31.2-1
@@ -9339,11 +9339,11 @@ CVE-2019-10356
CVE-2019-10355
RESERVED
CVE-2019-10354 (A vulnerability in the Stapler web framework used in Jenkins
2.185 and ...)
- TODO: check
+ NOT-FOR-US: Jenkins
CVE-2019-10353 (CSRF tokens in Jenkins 2.185 and earlier, LTS 2.176.1 and
earlier did ...)
- TODO: check
+ NOT-FOR-US: Jenkins
CVE-2019-10352 (A path traversal vulnerability in Jenkins 2.185 and earlier,
LTS 2.176 ...)
- TODO: check
+ NOT-FOR-US: Jenkins
CVE-2019-10351 (Jenkins Caliper CI Plugin stores credentials unencrypted in
job config ...)
NOT-FOR-US: Jenkins plugin
CVE-2019-10350 (Jenkins Port Allocator Plugin stores credentials unencrypted
in job co ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4d1d7486318d5fe4f6ce9be9d1c5a105a4aae20e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4d1d7486318d5fe4f6ce9be9d1c5a105a4aae20e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
