Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5f44c252 by security tracker role at 2019-10-03T08:10:20Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -344,9 +344,11 @@ CVE-2019-16945
CVE-2019-16944
RESERVED
CVE-2019-16943 (A Polymorphic Typing issue was discovered in FasterXML
jackson-databin ...)
+ {DLA-1943-1}
- jackson-databind <unfixed> (bug #941530)
NOTE: https://github.com/FasterXML/jackson-databind/issues/2478
CVE-2019-16942 (A Polymorphic Typing issue was discovered in FasterXML
jackson-databin ...)
+ {DLA-1943-1}
- jackson-databind <unfixed> (bug #941530)
NOTE: https://github.com/FasterXML/jackson-databind/issues/2478
CVE-2019-16941 (NSA Ghidra through 9.0.4, when experimental mode is enabled,
allows ar ...)
@@ -1920,6 +1922,7 @@ CVE-2019-16337
CVE-2019-16336
RESERVED
CVE-2019-16335 (A Polymorphic Typing issue was discovered in FasterXML
jackson-databin ...)
+ {DLA-1943-1}
- jackson-databind 2.10.0-1 (bug #940498)
NOTE: https://github.com/FasterXML/jackson-databind/issues/2449
NOTE:
https://github.com/FasterXML/jackson-databind/commit/73c1c2cc76e6cdd7f3a5615cbe3207fe96e4d3db
@@ -7169,6 +7172,7 @@ CVE-2019-14541 (GnuCOBOL 2.2 has a stack-based buffer
overflow in cb_encode_prog
[jessie] - open-cobol <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/open-cobol/bugs/584/
CVE-2019-14540 (A Polymorphic Typing issue was discovered in FasterXML
jackson-databin ...)
+ {DLA-1943-1}
- jackson-databind 2.10.0-1 (bug #940498)
NOTE: https://github.com/FasterXML/jackson-databind/issues/2410
NOTE: https://github.com/FasterXML/jackson-databind/issues/2449
@@ -16450,8 +16454,8 @@ CVE-2019-11653 (Remote Access Control Bypass in Micro
Focus Content Manager. ver
NOT-FOR-US: Micro Focus
CVE-2019-11652 (A potential authorization bypass issue was found in Micro
Focus Self S ...)
NOT-FOR-US: Micro Focus
-CVE-2019-11651
- RESERVED
+CVE-2019-11651 (Reflected XSS on Micro Focus Enterprise Developer and
Enterprise Serve ...)
+ TODO: check
CVE-2019-11650 (A potential Man in the Middle attack (MITM) was found in NetIQ
Advance ...)
NOT-FOR-US: NetIQ Advanced Authentication Framework
CVE-2019-11649 (Cross-Site Scripting vulnerability in Micro Focus Fortify
Software Sec ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/5f44c252f165af3d0e23d9600eb5fb3f985a9966
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/5f44c252f165af3d0e23d9600eb5fb3f985a9966
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
