Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
962a1435 by security tracker role at 2019-07-18T20:10:24Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,635 @@
+CVE-2019-13960 (** DISPUTED ** In libjpeg-turbo 2.0.2, a large amount of
memory can be ...)
+ TODO: check
+CVE-2019-13959 (In Bento4 1.5.1-627, AP4_DataBuffer::SetDataSize does not
handle reall ...)
+ TODO: check
+CVE-2019-13958
+ RESERVED
+CVE-2019-13957
+ RESERVED
+CVE-2019-13956 (Discuz!ML 3.2 through 3.4 allows remote attackers to execute
arbitrary ...)
+ TODO: check
+CVE-2019-13955
+ RESERVED
+CVE-2019-13954
+ RESERVED
+CVE-2019-13953
+ RESERVED
+CVE-2019-13952 (The set_ipv6() function in zscan_rfc1035.rl in gdnsd 3.2.0 has
a stack ...)
+ TODO: check
+CVE-2019-13951 (The set_ipv4() function in zscan_rfc1035.rl in gdnsd 3.2.0 has
a stack ...)
+ TODO: check
+CVE-2019-13950 (index.php?c=admin&a=index in SyGuestBook A5 Version 1.2
has stored ...)
+ TODO: check
+CVE-2019-13949 (SyGuestBook A5 Version 1.2 has no CSRF protection mechanism,
as demons ...)
+ TODO: check
+CVE-2019-13948 (SyGuestBook A5 Version 1.2 allows stored XSS because the
isValidData f ...)
+ TODO: check
+CVE-2019-13947
+ RESERVED
+CVE-2019-13946
+ RESERVED
+CVE-2019-13945
+ RESERVED
+CVE-2019-13944
+ RESERVED
+CVE-2019-13943
+ RESERVED
+CVE-2019-13942
+ RESERVED
+CVE-2019-13941
+ RESERVED
+CVE-2019-13940
+ RESERVED
+CVE-2019-13939
+ RESERVED
+CVE-2019-13938
+ RESERVED
+CVE-2019-13937
+ RESERVED
+CVE-2019-13936
+ RESERVED
+CVE-2019-13935
+ RESERVED
+CVE-2019-13934
+ RESERVED
+CVE-2019-13933
+ RESERVED
+CVE-2019-13932
+ RESERVED
+CVE-2019-13931
+ RESERVED
+CVE-2019-13930
+ RESERVED
+CVE-2019-13929
+ RESERVED
+CVE-2019-13928
+ RESERVED
+CVE-2019-13927
+ RESERVED
+CVE-2019-13926
+ RESERVED
+CVE-2019-13925
+ RESERVED
+CVE-2019-13924
+ RESERVED
+CVE-2019-13923
+ RESERVED
+CVE-2019-13922
+ RESERVED
+CVE-2019-13921
+ RESERVED
+CVE-2019-13920
+ RESERVED
+CVE-2019-13919
+ RESERVED
+CVE-2019-13918
+ RESERVED
+CVE-2019-13917
+ RESERVED
+CVE-2019-13916
+ RESERVED
+CVE-2019-13915 (b3log Wide before 1.6.0 allows three types of attacks to
access arbitr ...)
+ TODO: check
+CVE-2019-13914
+ RESERVED
+CVE-2019-13913
+ RESERVED
+CVE-2019-13912
+ RESERVED
+CVE-2019-13911
+ RESERVED
+CVE-2019-13910
+ RESERVED
+CVE-2019-13909
+ RESERVED
+CVE-2019-13908
+ RESERVED
+CVE-2019-13907
+ RESERVED
+CVE-2019-13906
+ RESERVED
+CVE-2019-13905
+ RESERVED
+CVE-2019-13904
+ RESERVED
+CVE-2019-13903
+ RESERVED
+CVE-2019-13902
+ RESERVED
+CVE-2019-13901
+ RESERVED
+CVE-2019-13900
+ RESERVED
+CVE-2019-13899
+ RESERVED
+CVE-2019-13898
+ RESERVED
+CVE-2019-13897
+ RESERVED
+CVE-2019-13896
+ RESERVED
+CVE-2019-13895
+ RESERVED
+CVE-2019-13894
+ RESERVED
+CVE-2019-13893
+ RESERVED
+CVE-2019-13892
+ RESERVED
+CVE-2019-13891
+ RESERVED
+CVE-2019-13890
+ RESERVED
+CVE-2019-13889
+ RESERVED
+CVE-2019-13888
+ RESERVED
+CVE-2019-13887
+ RESERVED
+CVE-2019-13886
+ RESERVED
+CVE-2019-13885
+ RESERVED
+CVE-2019-13884
+ RESERVED
+CVE-2019-13883
+ RESERVED
+CVE-2019-13882
+ RESERVED
+CVE-2019-13881
+ RESERVED
+CVE-2019-13880
+ RESERVED
+CVE-2019-13879
+ RESERVED
+CVE-2019-13878
+ RESERVED
+CVE-2019-13877
+ RESERVED
+CVE-2019-13876
+ RESERVED
+CVE-2019-13875
+ RESERVED
+CVE-2019-13874
+ RESERVED
+CVE-2019-13873
+ RESERVED
+CVE-2019-13872
+ RESERVED
+CVE-2019-13871
+ RESERVED
+CVE-2019-13870
+ RESERVED
+CVE-2019-13869
+ RESERVED
+CVE-2019-13868
+ RESERVED
+CVE-2019-13867
+ RESERVED
+CVE-2019-13866
+ RESERVED
+CVE-2019-13865
+ RESERVED
+CVE-2019-13864
+ RESERVED
+CVE-2019-13863
+ RESERVED
+CVE-2019-13862
+ RESERVED
+CVE-2019-13861
+ RESERVED
+CVE-2019-13860
+ RESERVED
+CVE-2019-13859
+ RESERVED
+CVE-2019-13858
+ RESERVED
+CVE-2019-13857
+ RESERVED
+CVE-2019-13856
+ RESERVED
+CVE-2019-13855
+ RESERVED
+CVE-2019-13854
+ RESERVED
+CVE-2019-13853
+ RESERVED
+CVE-2019-13852
+ RESERVED
+CVE-2019-13851
+ RESERVED
+CVE-2019-13850
+ RESERVED
+CVE-2019-13849
+ RESERVED
+CVE-2019-13848
+ RESERVED
+CVE-2019-13847
+ RESERVED
+CVE-2019-13846
+ RESERVED
+CVE-2019-13845
+ RESERVED
+CVE-2019-13844
+ RESERVED
+CVE-2019-13843
+ RESERVED
+CVE-2019-13842
+ RESERVED
+CVE-2019-13841
+ RESERVED
+CVE-2019-13840
+ RESERVED
+CVE-2019-13839
+ RESERVED
+CVE-2019-13838
+ RESERVED
+CVE-2019-13837
+ RESERVED
+CVE-2019-13836
+ RESERVED
+CVE-2019-13835
+ RESERVED
+CVE-2019-13834
+ RESERVED
+CVE-2019-13833
+ RESERVED
+CVE-2019-13832
+ RESERVED
+CVE-2019-13831
+ RESERVED
+CVE-2019-13830
+ RESERVED
+CVE-2019-13829
+ RESERVED
+CVE-2019-13828
+ RESERVED
+CVE-2019-13827
+ RESERVED
+CVE-2019-13826
+ RESERVED
+CVE-2019-13825
+ RESERVED
+CVE-2019-13824
+ RESERVED
+CVE-2019-13823
+ RESERVED
+CVE-2019-13822
+ RESERVED
+CVE-2019-13821
+ RESERVED
+CVE-2019-13820
+ RESERVED
+CVE-2019-13819
+ RESERVED
+CVE-2019-13818
+ RESERVED
+CVE-2019-13817
+ RESERVED
+CVE-2019-13816
+ RESERVED
+CVE-2019-13815
+ RESERVED
+CVE-2019-13814
+ RESERVED
+CVE-2019-13813
+ RESERVED
+CVE-2019-13812
+ RESERVED
+CVE-2019-13811
+ RESERVED
+CVE-2019-13810
+ RESERVED
+CVE-2019-13809
+ RESERVED
+CVE-2019-13808
+ RESERVED
+CVE-2019-13807
+ RESERVED
+CVE-2019-13806
+ RESERVED
+CVE-2019-13805
+ RESERVED
+CVE-2019-13804
+ RESERVED
+CVE-2019-13803
+ RESERVED
+CVE-2019-13802
+ RESERVED
+CVE-2019-13801
+ RESERVED
+CVE-2019-13800
+ RESERVED
+CVE-2019-13799
+ RESERVED
+CVE-2019-13798
+ RESERVED
+CVE-2019-13797
+ RESERVED
+CVE-2019-13796
+ RESERVED
+CVE-2019-13795
+ RESERVED
+CVE-2019-13794
+ RESERVED
+CVE-2019-13793
+ RESERVED
+CVE-2019-13792
+ RESERVED
+CVE-2019-13791
+ RESERVED
+CVE-2019-13790
+ RESERVED
+CVE-2019-13789
+ RESERVED
+CVE-2019-13788
+ RESERVED
+CVE-2019-13787
+ RESERVED
+CVE-2019-13786
+ RESERVED
+CVE-2019-13785
+ RESERVED
+CVE-2019-13784
+ RESERVED
+CVE-2019-13783
+ RESERVED
+CVE-2019-13782
+ RESERVED
+CVE-2019-13781
+ RESERVED
+CVE-2019-13780
+ RESERVED
+CVE-2019-13779
+ RESERVED
+CVE-2019-13778
+ RESERVED
+CVE-2019-13777
+ RESERVED
+CVE-2019-13776
+ RESERVED
+CVE-2019-13775
+ RESERVED
+CVE-2019-13774
+ RESERVED
+CVE-2019-13773
+ RESERVED
+CVE-2019-13772
+ RESERVED
+CVE-2019-13771
+ RESERVED
+CVE-2019-13770
+ RESERVED
+CVE-2019-13769
+ RESERVED
+CVE-2019-13768
+ RESERVED
+CVE-2019-13767
+ RESERVED
+CVE-2019-13766
+ RESERVED
+CVE-2019-13765
+ RESERVED
+CVE-2019-13764
+ RESERVED
+CVE-2019-13763
+ RESERVED
+CVE-2019-13762
+ RESERVED
+CVE-2019-13761
+ RESERVED
+CVE-2019-13760
+ RESERVED
+CVE-2019-13759
+ RESERVED
+CVE-2019-13758
+ RESERVED
+CVE-2019-13757
+ RESERVED
+CVE-2019-13756
+ RESERVED
+CVE-2019-13755
+ RESERVED
+CVE-2019-13754
+ RESERVED
+CVE-2019-13753
+ RESERVED
+CVE-2019-13752
+ RESERVED
+CVE-2019-13751
+ RESERVED
+CVE-2019-13750
+ RESERVED
+CVE-2019-13749
+ RESERVED
+CVE-2019-13748
+ RESERVED
+CVE-2019-13747
+ RESERVED
+CVE-2019-13746
+ RESERVED
+CVE-2019-13745
+ RESERVED
+CVE-2019-13744
+ RESERVED
+CVE-2019-13743
+ RESERVED
+CVE-2019-13742
+ RESERVED
+CVE-2019-13741
+ RESERVED
+CVE-2019-13740
+ RESERVED
+CVE-2019-13739
+ RESERVED
+CVE-2019-13738
+ RESERVED
+CVE-2019-13737
+ RESERVED
+CVE-2019-13736
+ RESERVED
+CVE-2019-13735
+ RESERVED
+CVE-2019-13734
+ RESERVED
+CVE-2019-13733
+ RESERVED
+CVE-2019-13732
+ RESERVED
+CVE-2019-13731
+ RESERVED
+CVE-2019-13730
+ RESERVED
+CVE-2019-13729
+ RESERVED
+CVE-2019-13728
+ RESERVED
+CVE-2019-13727
+ RESERVED
+CVE-2019-13726
+ RESERVED
+CVE-2019-13725
+ RESERVED
+CVE-2019-13724
+ RESERVED
+CVE-2019-13723
+ RESERVED
+CVE-2019-13722
+ RESERVED
+CVE-2019-13721
+ RESERVED
+CVE-2019-13720
+ RESERVED
+CVE-2019-13719
+ RESERVED
+CVE-2019-13718
+ RESERVED
+CVE-2019-13717
+ RESERVED
+CVE-2019-13716
+ RESERVED
+CVE-2019-13715
+ RESERVED
+CVE-2019-13714
+ RESERVED
+CVE-2019-13713
+ RESERVED
+CVE-2019-13712
+ RESERVED
+CVE-2019-13711
+ RESERVED
+CVE-2019-13710
+ RESERVED
+CVE-2019-13709
+ RESERVED
+CVE-2019-13708
+ RESERVED
+CVE-2019-13707
+ RESERVED
+CVE-2019-13706
+ RESERVED
+CVE-2019-13705
+ RESERVED
+CVE-2019-13704
+ RESERVED
+CVE-2019-13703
+ RESERVED
+CVE-2019-13702
+ RESERVED
+CVE-2019-13701
+ RESERVED
+CVE-2019-13700
+ RESERVED
+CVE-2019-13699
+ RESERVED
+CVE-2019-13698
+ RESERVED
+CVE-2019-13697
+ RESERVED
+CVE-2019-13696
+ RESERVED
+CVE-2019-13695
+ RESERVED
+CVE-2019-13694
+ RESERVED
+CVE-2019-13693
+ RESERVED
+CVE-2019-13692
+ RESERVED
+CVE-2019-13691
+ RESERVED
+CVE-2019-13690
+ RESERVED
+CVE-2019-13689
+ RESERVED
+CVE-2019-13688
+ RESERVED
+CVE-2019-13687
+ RESERVED
+CVE-2019-13686
+ RESERVED
+CVE-2019-13685
+ RESERVED
+CVE-2019-13684
+ RESERVED
+CVE-2019-13683
+ RESERVED
+CVE-2019-13682
+ RESERVED
+CVE-2019-13681
+ RESERVED
+CVE-2019-13680
+ RESERVED
+CVE-2019-13679
+ RESERVED
+CVE-2019-13678
+ RESERVED
+CVE-2019-13677
+ RESERVED
+CVE-2019-13676
+ RESERVED
+CVE-2019-13675
+ RESERVED
+CVE-2019-13674
+ RESERVED
+CVE-2019-13673
+ RESERVED
+CVE-2019-13672
+ RESERVED
+CVE-2019-13671
+ RESERVED
+CVE-2019-13670
+ RESERVED
+CVE-2019-13669
+ RESERVED
+CVE-2019-13668
+ RESERVED
+CVE-2019-13667
+ RESERVED
+CVE-2019-13666
+ RESERVED
+CVE-2019-13665
+ RESERVED
+CVE-2019-13664
+ RESERVED
+CVE-2019-13663
+ RESERVED
+CVE-2019-13662
+ RESERVED
+CVE-2019-13661
+ RESERVED
+CVE-2019-13660
+ RESERVED
+CVE-2019-13659
+ RESERVED
+CVE-2019-13658
+ RESERVED
+CVE-2019-13657
+ RESERVED
+CVE-2019-13656
+ RESERVED
+CVE-2019-13655
+ RESERVED
+CVE-2019-13654
+ RESERVED
+CVE-2019-13653
+ RESERVED
+CVE-2019-13652
+ RESERVED
+CVE-2019-13651
+ RESERVED
+CVE-2019-13650
+ RESERVED
+CVE-2019-13649
+ RESERVED
+CVE-2019-13648
+ RESERVED
+CVE-2018-20853
+ RESERVED
+CVE-2016-10763 (The CampTix Event Ticketing plugin before 1.5 for WordPress
allows XSS ...)
+ TODO: check
+CVE-2016-10762 (The CampTix Event Ticketing plugin before 1.5 for WordPress
allows CSV ...)
+ TODO: check
CVE-2019-13647 (Firefly III before 4.7.17.3 is vulnerable to stored XSS due to
lack of ...)
NOT-FOR-US: Firefly
CVE-2019-13646 (Firefly III before 4.7.17.3 is vulnerable to reflected XSS due
to lack ...)
@@ -1077,8 +1709,8 @@ CVE-2014-1001
RESERVED
CVE-2014-1000
RESERVED
-CVE-2019-13607
- RESERVED
+CVE-2019-13607 (The Opera Mini application through 16.0.14 for iOS has a UXSS
vulnerab ...)
+ TODO: check
CVE-2019-13606
RESERVED
CVE-2019-13605 (In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.838 to
0.9.8.8 ...)
@@ -1158,8 +1790,8 @@ CVE-2018-20852
(http.cookiejar.DefaultPolicy.domain_return_ok in Lib/http/cookie
NOTE:
https://github.com/python/cpython/commit/e5123d81ffb3be35a1b2767d6ced1a097aaf77be
(v3.7.3rc1)
CVE-2019-13576
RESERVED
-CVE-2019-13575
- RESERVED
+CVE-2019-13575 (A SQL injection vulnerability exists in WPEverest Everest
Forms plugin ...)
+ TODO: check
CVE-2019-13574 (In lib/mini_magick/image.rb in MiniMagick before 4.9.4, a
fetched remo ...)
{DSA-4481-1}
- ruby-mini-magick <unfixed> (bug #931932)
@@ -1291,8 +1923,8 @@ CVE-2019-13511
RESERVED
CVE-2019-13510
RESERVED
-CVE-2019-13509
- RESERVED
+CVE-2019-13509 (In Docker CE and EE before 18.09.8 (as well as Docker EE
before 17.06. ...)
+ TODO: check
CVE-2019-13508
RESERVED
CVE-2019-13507 (hidea.com AZ Admin 1.0 has news_det.php?cod= SQL Injection.
...)
@@ -7211,8 +7843,8 @@ CVE-2019-11232 (EXCELLENT INFOTEK BiYan v1.57 ~ v2.8
allows an attacker to leak
NOT-FOR-US: EXCELLENT INFOTEK BiYan
CVE-2019-11231 (An issue was discovered in GetSimple CMS through 3.3.15.
insufficient ...)
NOT-FOR-US: GetSimple CMS
-CVE-2019-11230
- RESERVED
+CVE-2019-11230 (In Avast Antivirus before 19.4, a local administrator can
trick the pr ...)
+ TODO: check
CVE-2019-11229 (models/repo_mirror.go in Gitea before 1.7.6 and 1.8.x before
1.8-RC3 m ...)
- gitea <removed>
CVE-2019-11228 (repo/setting.go in Gitea before 1.7.6 and 1.8.x before 1.8-RC3
does no ...)
@@ -10776,8 +11408,8 @@ CVE-2019-1010281
RESERVED
CVE-2019-1010280
RESERVED
-CVE-2019-1010279
- RESERVED
+CVE-2019-1010279 (Open Information Security Foundation Suricata prior to
version 4.1.3 i ...)
+ TODO: check
CVE-2019-1010278
RESERVED
CVE-2019-1010277
@@ -10798,8 +11430,8 @@ CVE-2019-1010270
RESERVED
CVE-2019-1010269
RESERVED
-CVE-2019-1010268
- RESERVED
+CVE-2019-1010268 (Ladon since 0.6.1 (since
ebef0aae48af78c159b6fce81bc6f5e7e0ddb059) is ...)
+ TODO: check
CVE-2019-1010267
RESERVED
CVE-2019-1010266 (lodash prior to 4.7.11 is affected by: CWE-400: Uncontrolled
Resource ...)
@@ -10812,14 +11444,14 @@ CVE-2019-1010263 (Perl Crypt::JWT prior to 0.023 is
affected by: Incorrect Acces
- libcrypt-jwt-perl <not-affected> (Fixed with the initial upload to
Debian)
NOTE:
https://github.com/DCIT/perl-Crypt-JWT/commit/b98a59b42ded9f9e51b2560410106207c2152d6c
NOTE: https://www.openwall.com/lists/oss-security/2018/09/07/1
-CVE-2019-1010262
- RESERVED
-CVE-2019-1010261
- RESERVED
+CVE-2019-1010262 (scapy 2.4.0 and earlier is affected by: Denial of Services.
The impact ...)
+ TODO: check
+CVE-2019-1010261 (Gitea 1.7.0 and earlier is affected by: Cross Site Scripting
(XSS). Th ...)
+ TODO: check
CVE-2019-1010260 (Using ktlint to download and execute custom rulesets can
result in arb ...)
NOT-FOR-US: ktlint
-CVE-2019-1010259
- RESERVED
+CVE-2019-1010259 (SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection.
The impac ...)
+ TODO: check
CVE-2019-1010258 (nanosvg library nanosvg after commit
c1f6e209c16b18b46aa9f45d7e619acf4 ...)
NOT-FOR-US: nanosvg
CVE-2019-1010257 (An Information Disclosure / Data Modification issue exists
in article2 ...)
@@ -10832,20 +11464,20 @@ CVE-2019-1010254
RESERVED
CVE-2019-1010253
RESERVED
-CVE-2019-1010252
- RESERVED
-CVE-2019-1010251
- RESERVED
-CVE-2019-1010250
- RESERVED
-CVE-2019-1010249
- RESERVED
-CVE-2019-1010248
- RESERVED
+CVE-2019-1010252 (The Linux Foundation ONOS 2.0.0 and earlier is affected by:
Poor Input ...)
+ TODO: check
+CVE-2019-1010251 (Open Information Security Foundation Suricata prior to
version 4.1.2 i ...)
+ TODO: check
+CVE-2019-1010250 (The Linux Foundation ONOS 2.0.0 and earlier is affected by:
Poor Input ...)
+ TODO: check
+CVE-2019-1010249 (The Linux Foundation ONOS 2.0.0 and earlier is affected by:
Integer Ov ...)
+ TODO: check
+CVE-2019-1010248 (Synetics GmbH I-doit 1.12 and earlier is affected by: SQL
Injection. T ...)
+ TODO: check
CVE-2019-1010247
RESERVED
-CVE-2019-1010246
- RESERVED
+CVE-2019-1010246 (MailCleaner before c888fbb6aaa7c5f8400f637bcf1cbb844de46cd9
is affecte ...)
+ TODO: check
CVE-2019-1010245
RESERVED
CVE-2019-1010244
@@ -11112,8 +11744,8 @@ CVE-2019-1010114
RESERVED
CVE-2019-1010113
RESERVED
-CVE-2019-1010112
- RESERVED
+CVE-2019-1010112 (OECMS v4.3.R60321 and v4.3 later is affected by: Cross Site
Request Fo ...)
+ TODO: check
CVE-2019-1010111
RESERVED
CVE-2019-1010110
@@ -11128,8 +11760,8 @@ CVE-2019-1010106
RESERVED
CVE-2019-1010105
RESERVED
-CVE-2019-1010104
- RESERVED
+CVE-2019-1010104 (TechyTalk Quick Chat WordPress Plugin All up to the latest
is affected ...)
+ TODO: check
CVE-2019-1010103
RESERVED
CVE-2019-1010102
@@ -11144,12 +11776,12 @@ CVE-2019-1010098
RESERVED
CVE-2019-1010097
RESERVED
-CVE-2019-1010096
- RESERVED
-CVE-2019-1010095
- RESERVED
-CVE-2019-1010094
- RESERVED
+CVE-2019-1010096 (domainmod(https://domainmod.org/) domainmod v4.10.0 is
affected by: Cr ...)
+ TODO: check
+CVE-2019-1010095 (domainmod(https://domainmod.org/) domainmod v4.10.0 is
affected by: Cr ...)
+ TODO: check
+CVE-2019-1010094 (domainmod v4.10.0 is affected by: Cross Site Request Forgery
(CSRF). T ...)
+ TODO: check
CVE-2019-1010093
RESERVED
CVE-2019-1010092
@@ -11191,24 +11823,24 @@ CVE-2019-1010075
RESERVED
CVE-2019-1010074
RESERVED
-CVE-2019-1010073
- RESERVED
+CVE-2019-1010073 (BACnet Stack bacserv 0.9.1 and 0.8.5 is affected by: Buffer
Overflow. ...)
+ TODO: check
CVE-2019-1010072
RESERVED
CVE-2019-1010071
RESERVED
CVE-2019-1010070
RESERVED
-CVE-2019-1010069
- RESERVED
+CVE-2019-1010069 (moinejf abcm2ps 8.13.20 is affected by: Incorrect Access
Control. The ...)
+ TODO: check
CVE-2019-1010068
RESERVED
CVE-2019-1010067
RESERVED
-CVE-2019-1010066
- RESERVED
-CVE-2019-1010065
- RESERVED
+CVE-2019-1010066 (Lawrence Livermore National Laboratory msr-safe v1.1.0 is
affected by: ...)
+ TODO: check
+CVE-2019-1010065 (The Sleuth Kit 4.6.0 and earlier is affected by: Integer
Overflow. The ...)
+ TODO: check
CVE-2019-1010064
RESERVED
CVE-2019-1010063
@@ -11236,8 +11868,8 @@ CVE-2019-1010056
RESERVED
CVE-2019-1010055
RESERVED
-CVE-2019-1010054
- RESERVED
+CVE-2019-1010054 (Dolibarr 7.0.0 is affected by: Cross Site Request Forgery
(CSRF). The ...)
+ TODO: check
CVE-2019-1010053
RESERVED
CVE-2019-1010052
@@ -13150,10 +13782,10 @@ CVE-2019-9233
RESERVED
CVE-2019-9232
RESERVED
-CVE-2019-9231
- RESERVED
-CVE-2019-9230
- RESERVED
+CVE-2019-9231 (An issue was discovered on AudioCodes Mediant 500L-MSBR,
500-MBSR, M80 ...)
+ TODO: check
+CVE-2019-9230 (An issue was discovered on AudioCodes Mediant 500L-MSBR,
500-MBSR, M80 ...)
+ TODO: check
CVE-2019-9229
RESERVED
CVE-2019-9228
@@ -15691,8 +16323,8 @@ CVE-2019-8288
RESERVED
CVE-2019-8287
RESERVED
-CVE-2019-8286
- RESERVED
+CVE-2019-8286 (Information Disclosure in Kaspersky Anti-Virus, Kaspersky
Internet Sec ...)
+ TODO: check
CVE-2019-8285 (Kaspersky Lab Antivirus Engine version before 04.apr.2019 has a
heap-b ...)
NOT-FOR-US: Kaspersky Lab Antivirus Engine
CVE-2019-8284
@@ -26371,8 +27003,8 @@ CVE-2019-3795 (Spring Security versions 4.2.x prior to
4.2.12, 5.0.x prior to 5.
{DLA-1794-1}
- libspring-security-2.0-java <removed>
NOTE:
https://github.com/spring-projects/spring-security/commit/6f02f690ac65ccf99d8df47ac3d730a68f87c569
-CVE-2019-3794
- RESERVED
+CVE-2019-3794 (Cloud Foundry UAA, versions prior to v73.4.0, does not set an
X-FRAME- ...)
+ TODO: check
CVE-2019-3793 (Pivotal Apps Manager Release, versions 665.0.x prior to
665.0.28, vers ...)
NOT-FOR-US: Pivotal
CVE-2019-3792 (Pivotal Concourse version 5.0.0, contains an API that is
vulnerable to ...)
@@ -26477,8 +27109,8 @@ CVE-2019-3743
RESERVED
CVE-2019-3742
RESERVED
-CVE-2019-3741
- RESERVED
+CVE-2019-3741 (Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116
contain a ...)
+ TODO: check
CVE-2019-3740
RESERVED
CVE-2019-3739
@@ -26491,8 +27123,8 @@ CVE-2019-3736
RESERVED
CVE-2019-3735 (Dell SupportAssist for Business PCs version 2.0 and Dell
SupportAssist ...)
NOT-FOR-US: Dell SupportAssist
-CVE-2019-3734
- RESERVED
+CVE-2019-3734 (Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116
contain an ...)
+ TODO: check
CVE-2019-3733
RESERVED
CVE-2019-3732
@@ -26779,8 +27411,8 @@ CVE-2019-3594
RESERVED
CVE-2019-3593 (Exploitation of Privilege/Trust vulnerability in Microsoft
Windows cli ...)
NOT-FOR-US: McAfee
-CVE-2019-3592
- RESERVED
+CVE-2019-3592 (Privilege escalation vulnerability in McAfee Agent (MA) before
5.6.1 H ...)
+ TODO: check
CVE-2019-3591
RESERVED
CVE-2019-3590
@@ -26842,8 +27474,7 @@ CVE-2019-3572 (An issue was discovered in libming
0.4.8. There is a heap-based b
NOTE: https://github.com/libming/libming/issues/169
CVE-2019-3571 (An input validation issue affected WhatsApp Desktop versions
prior to ...)
NOT-FOR-US: WhatsApp Desktop
-CVE-2019-3570
- RESERVED
+CVE-2019-3570 (Call to the scrypt_enc() function in HHVM can lead to heap
corruption ...)
- hhvm <removed>
NOTE: https://hhvm.com/blog/2019/06/10/hhvm-4.9.0.html
CVE-2019-3569 (HHVM, when used with FastCGI, would bind by default to all
available i ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/962a14353cb5471f41839cf740c562312ca594eb
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/962a14353cb5471f41839cf740c562312ca594eb
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
