Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
978486f4 by security tracker role at 2019-10-07T08:10:18Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,65 @@
+CVE-2019-17271
+ RESERVED
+CVE-2019-17270
+ RESERVED
+CVE-2019-17269 (Intellian Remote Access 3.18 allows remote attackers to
execute arbitr ...)
+ TODO: check
+CVE-2019-17268
+ RESERVED
+CVE-2019-17267 (A Polymorphic Typing issue was discovered in FasterXML
jackson-databin ...)
+ TODO: check
+CVE-2019-17266 (libsoup through 2.68.1 has a heap-based buffer over-read
because soup_ ...)
+ TODO: check
+CVE-2019-17265
+ RESERVED
+CVE-2019-17264 (In libyal liblnk before 20191006,
liblnk_location_information_read_dat ...)
+ TODO: check
+CVE-2019-17263 (In libyal libfwsi before 20191006,
libfwsi_extension_block_copy_from_b ...)
+ TODO: check
+CVE-2019-17262
+ RESERVED
+CVE-2019-17261
+ RESERVED
+CVE-2019-17260
+ RESERVED
+CVE-2019-17259
+ RESERVED
+CVE-2019-17258
+ RESERVED
+CVE-2019-17257
+ RESERVED
+CVE-2019-17256
+ RESERVED
+CVE-2019-17255
+ RESERVED
+CVE-2019-17254
+ RESERVED
+CVE-2019-17253
+ RESERVED
+CVE-2019-17252
+ RESERVED
+CVE-2019-17251
+ RESERVED
+CVE-2019-17250
+ RESERVED
+CVE-2019-17249
+ RESERVED
+CVE-2019-17248
+ RESERVED
+CVE-2019-17247
+ RESERVED
+CVE-2019-17246
+ RESERVED
+CVE-2019-17245
+ RESERVED
+CVE-2019-17244
+ RESERVED
+CVE-2019-17243
+ RESERVED
+CVE-2019-17242
+ RESERVED
+CVE-2019-17241
+ RESERVED
CVE-2019-17240 (bl-kernel/security.class.php in Bludit 3.9.2 allows attackers
to bypas ...)
NOT-FOR-US: Bludit
CVE-2019-17239
@@ -12046,14 +12108,14 @@ CVE-2019-13377 (The implementations of SAE and
EAP-pwd in hostapd and wpa_suppli
NOTE: "added support for Brainpool Elliptic Curves with SAE"
NOTE: Patches: https://w1.fi/security/2019-6/
CVE-2019-13376 (phpBB version 3.2.7 allows the stealing of an Administration
Control P ...)
- {DLA-1942-1}
+ {DLA-1942-2 DLA-1942-1}
- phpbb3 <removed>
NOTE:
https://ssd-disclosure.com/archives/4007/ssd-advisory-phpbb-csrf-token-hijacking-leading-to-stored-xss
NOTE: fixed in 3.2.8 as 'SECURITY-246'
NOTE:
https://github.com/phpbb/phpbb/commit/cdf4f5ef85f05c0f94eae1a9edb1c28d4ac3515f
NOTE: follow-up to incomplete fix for CVE-2019-16993
CVE-2019-16993 (In phpBB before 3.1.7-PL1, includes/acp/acp_bbcodes.php has
improper v ...)
- {DLA-1942-1}
+ {DLA-1942-2 DLA-1942-1}
- phpbb3 <removed>
NOTE:
https://github.com/phpbb/phpbb/commit/18abef716ecf42a35416444f3f84f5459d573789
NOTE: https://www.phpbb.com/community/viewtopic.php?t=2352606
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/978486f468122e9629c23a245d557c76cf8a8915
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/978486f468122e9629c23a245d557c76cf8a8915
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
