[Git][security-tracker-team/security-tracker][master] Add source package association for CVE-2018-16741
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6c5df9e1 by Salvatore Bonaccorso at 2018-09-11T04:29:01Z Add source package association for CVE-2018-16741 As per https://lists.debian.org/debian-lts-changes/2018/09/msg00011.html - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -135,6 +135,7 @@ CVE-2018-16742 RESERVED CVE-2018-16741 RESERVED + - mgetty CVE-2018-16740 RESERVED CVE-2018-16739 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6c5df9e1a9ba97726500d06d25d8b56d78f7d655 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6c5df9e1a9ba97726500d06d25d8b56d78f7d655 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Reserve DSA number for libextractor update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8f31262d by Salvatore Bonaccorso at 2018-09-10T20:43:56Z Reserve DSA number for libextractor update - - - - - 2 changed files: - data/DSA/list - data/dsa-needed.txt Changes: = data/DSA/list = @@ -1,3 +1,6 @@ +[10 Sep 2018] DSA-4290-1 libextractor - security update + {CVE-2018-14346 CVE-2018-14347 CVE-2018-16430} + [stretch] - libextractor 1:1.3-4+deb9u2 [07 Sep 2018] DSA-4289-1 chromium-browser - security update {CVE-2018-16065 CVE-2018-16066 CVE-2018-16067 CVE-2018-16068 CVE-2018-16069 CVE-2018-16070 CVE-2018-16071 CVE-2018-16073 CVE-2018-16074 CVE-2018-16075 CVE-2018-16076 CVE-2018-16077 CVE-2018-16078 CVE-2018-16079 CVE-2018-16080 CVE-2018-16081 CVE-2018-16082 CVE-2018-16083 CVE-2018-16084 CVE-2018-16085 CVE-2018-16435 CVE-2018-16086 CVE-2018-16087 CVE-2018-16088} [stretch] - chromium-browser 69.0.3497.81-1~deb9u1 = data/dsa-needed.txt = @@ -39,9 +39,6 @@ knot-resolver libarchive-zip-perl (carnil) Will be handled from Perl group, first upload to unstable for a while -- -libextractor - Maintainer will prepare updates --- libidn santiago proposed debdiffs for jessie and stretch -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8f31262d7ec5dec23084adfa92f959dea9408135 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8f31262d7ec5dec23084adfa92f959dea9408135 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add fixed version for unstable for CVE-2018-14622
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 84fd9ed4 by Salvatore Bonaccorso at 2018-09-10T20:38:42Z Add fixed version for unstable for CVE-2018-14622 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -5169,7 +5169,7 @@ CVE-2018-14623 CVE-2018-14622 (A null-pointer dereference vulnerability was found in libtirpc before ...) {DLA-1487-1} [experimental] - libtirpc 1.0.2-0.1 - - libtirpc (bug #907608) + - libtirpc 0.2.5-1.3 (bug #907608) [stretch] - libtirpc (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1620293 NOTE: https://bugzilla.novell.com/show_bug.cgi?id=968175 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/84fd9ed48d1bd820312f7650eed6afdba78285f6 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/84fd9ed48d1bd820312f7650eed6afdba78285f6 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e990df57 by security tracker role at 2018-09-10T20:10:20Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,4 +1,26 @@ -CVE-2018-16802 [further changes in addition to CVE-2018-16509 commits] +CVE-2018-16804 + RESERVED +CVE-2018-16803 + RESERVED +CVE-2018-16801 + RESERVED +CVE-2018-16800 + RESERVED +CVE-2018-16799 + RESERVED +CVE-2018-16798 + RESERVED +CVE-2018-16797 (A heap-based buffer overflow in PotPlayerMini.exe in PotPlayer 1.8.7556 ...) + TODO: check +CVE-2018-16796 + RESERVED +CVE-2018-16795 + RESERVED +CVE-2018-16794 + RESERVED +CVE-2018-16793 + RESERVED +CVE-2018-16802 (An issue was discovered in Artifex Ghostscript before 9.25. Incorrect ...) - ghostscript NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=3e5d316b72e3965b7968bb1d96baa137cd063ac6 NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=643b24dbd002fb9c131313253c307cf3951b3d47 @@ -184,8 +206,8 @@ CVE-2018-16707 RESERVED CVE-2018-16706 RESERVED -CVE-2018-16705 - RESERVED +CVE-2018-16705 (FURUNO FELCOM 250 and 500 devices allow unauthenticated access to the ...) + TODO: check CVE-2018-16704 (An issue was discovered in Gleez CMS v1.2.0. Because of an Insecure ...) NOT-FOR-US: Gleez CMS CVE-2018-16703 (A vulnerability in the Gleez CMS 1.2.0 login page could allow an ...) @@ -409,8 +431,8 @@ CVE-2018-16610 RESERVED CVE-2018-16609 RESERVED -CVE-2018-16608 - RESERVED +CVE-2018-16608 (In Monstra CMS 3.0.4, an attacker with 'Editor' privileges can change ...) + TODO: check CVE-2018-16607 RESERVED CVE-2018-16606 (In ProConf before 6.1, an Insecure Direct Object Reference (IDOR) ...) @@ -443,9 +465,9 @@ CVE-2018-16593 RESERVED CVE-2018-16592 RESERVED -CVE-2018-16591 - RESERVED -CVE-2018-16590 (FURUNO FELCOM 250 and 500 devices use only client-side JavaScript for ...) +CVE-2018-16591 (FURUNO FELCOM 250 and 500 devices allow unauthenticated users to change ...) + TODO: check +CVE-2018-16590 (FURUNO FELCOM 250 and 500 devices use only client-side JavaScript in ...) NOT-FOR-US: FURUNO FELCOM CVE-2018-16589 RESERVED @@ -796,7 +818,7 @@ CVE-2018-16437 (Gxlcms 2.0 has Directory Traversal exploitable by an administrat CVE-2018-16436 (Gxlcms 2.0 has SQL Injection exploitable by an administrator. ...) NOT-FOR-US: Gxlcms CVE-2018-16435 (Little CMS (aka Little Color Management System) 2.9 has an integer ...) - {DSA-4284-1 DLA-1496-1} + {DSA-4289-1 DSA-4284-1 DLA-1496-1} - lcms2 2.9-3 (bug #907983) - lcms - chromium-browser 69.0.3497.81-1 @@ -1630,14 +1652,17 @@ CVE-2018-16089 RESERVED CVE-2018-16088 RESERVED + {DSA-4289-1} - chromium-browser 69.0.3497.81-1 [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16087 RESERVED + {DSA-4289-1} - chromium-browser 69.0.3497.81-1 [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16086 RESERVED + {DSA-4289-1} - chromium-browser 69.0.3497.81-1 [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16085 @@ -2151,8 +2176,8 @@ CVE-2014-10074 (Umbraco before 7.2.0 has a remote PHP code execution vulnerabili NOT-FOR-US: Umbraco CVE-2018-15887 (Main_Analysis_Content.asp in ASUS DSL-N12E_C1 1.1.2.3_345 is prone to ...) NOT-FOR-US: ASUS DSL-N12E_C1 -CVE-2018-15886 - RESERVED +CVE-2018-15886 (Monstra CMS 3.0.4 does not properly restrict modified Snippet content, ...) + TODO: check CVE-2018-15885 (Ovation FindMe 1.4-1083-1 is intended to support transmission of ...) NOT-FOR-US: Ovation FindMe CVE-2018-15884 (RICOH MP C4504ex devices allow HTML Injection via the ...) @@ -5106,10 +5131,10 @@ CVE-2018-14638 RESERVED CVE-2018-14637 RESERVED -CVE-2018-14636 - RESERVED -CVE-2018-14635 - RESERVED +CVE-2018-14636 (Live-migrated instances are briefly able to inspect traffic for other ...) + TODO: check +CVE-2018-14635 (When using the Linux bridge ml2 driver, non-privileged tenants are ...) + TODO: check CVE-2018-14634 RESERVED CVE-2018-14633 @@ -5130,8 +5155,7 @@ CVE-2018-14627 (The IIOP OpenJDK Subsystem in WildFly before version 14.0.0 does NOTE: https://github.com/wildfly/wildfly/pull/10675 CVE-2018-14626 RESERVED -CVE-2018-14625 [use-after-free Read in vhost_transport_send_pkt] - RESERVED +CVE-2018-14625 (A flaw was found in the Linux Kernel where an attacker may be able to ...) - linux NOTE:
[Git][security-tracker-team/security-tracker][master] Add CVE-2018-16802
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c613f5fe by Salvatore Bonaccorso at 2018-09-10T19:00:14Z Add CVE-2018-16802 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,8 @@ +CVE-2018-16802 [further changes in addition to CVE-2018-16509 commits] + - ghostscript + NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=3e5d316b72e3965b7968bb1d96baa137cd063ac6 + NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=643b24dbd002fb9c131313253c307cf3951b3d47 + NOTE: https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=5812b1b78fc4d36fdc293b7859de69241140d590 CVE-2018-16792 RESERVED CVE-2018-16791 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c613f5fe8975a05b9dbb70190dca6bcb8f7b3f1f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c613f5fe8975a05b9dbb70190dca6bcb8f7b3f1f You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add four more CVE IDs fixed in recent Chromium DSA
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 07b95221 by Moritz Muehlenhoff at 2018-09-10T16:08:42Z Add four more CVE IDs fixed in recent Chromium DSA These were added later after the initial Chrome announcement. - - - - - 1 changed file: - data/DSA/list Changes: = data/DSA/list = @@ -1,5 +1,5 @@ [07 Sep 2018] DSA-4289-1 chromium-browser - security update - {CVE-2018-16065 CVE-2018-16066 CVE-2018-16067 CVE-2018-16068 CVE-2018-16069 CVE-2018-16070 CVE-2018-16071 CVE-2018-16073 CVE-2018-16074 CVE-2018-16075 CVE-2018-16076 CVE-2018-16077 CVE-2018-16078 CVE-2018-16079 CVE-2018-16080 CVE-2018-16081 CVE-2018-16082 CVE-2018-16083 CVE-2018-16084 CVE-2018-16085} + {CVE-2018-16065 CVE-2018-16066 CVE-2018-16067 CVE-2018-16068 CVE-2018-16069 CVE-2018-16070 CVE-2018-16071 CVE-2018-16073 CVE-2018-16074 CVE-2018-16075 CVE-2018-16076 CVE-2018-16077 CVE-2018-16078 CVE-2018-16079 CVE-2018-16080 CVE-2018-16081 CVE-2018-16082 CVE-2018-16083 CVE-2018-16084 CVE-2018-16085 CVE-2018-16435 CVE-2018-16086 CVE-2018-16087 CVE-2018-16088} [stretch] - chromium-browser 69.0.3497.81-1~deb9u1 [07 Sep 2018] DSA-4288-1 ghostscript - security update {CVE-2018-15908 CVE-2018-15910 CVE-2018-15911 CVE-2018-16511 CVE-2018-16513 CVE-2018-16539 CVE-2018-16540 CVE-2018-16541 CVE-2018-16542 CVE-2018-16543 CVE-2018-16585} View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/07b952210fca30afe65c3e38daaa17d811f4eb28 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/07b952210fca30afe65c3e38daaa17d811f4eb28 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add note for not-affected status
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6baa2a38 by Salvatore Bonaccorso at 2018-09-10T14:07:46Z Add note for not-affected status - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -14769,7 +14769,7 @@ CVE-2018-10925 (It was discovered that PostgreSQL versions before 10.5, 9.6.10, CVE-2018-10924 (It was discovered that fsync(2) system call in glusterfs client code ...) - glusterfs 4.0.1-1 [stretch] - glusterfs (Issue introduced in 3.13.2 and backported to 3.12 series) - [jessie] - glusterfs + [jessie] - glusterfs (Issue introduced in 3.13.2 and backported to 3.12 series) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1611785 NOTE: Introduced by: http://git.gluster.org/cgit/glusterfs.git/commit/?id=51dfc9c789b8405f595a337eade938aedcb449c4 NOTE: https://review.gluster.org/20723 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6baa2a38c68f9cb29546acf9a144914b7d93fd81 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6baa2a38c68f9cb29546acf9a144914b7d93fd81 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] jessie is not affected by CVE-2018-10924
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: c9caa31a by Thorsten Alteholz at 2018-09-10T13:54:54Z jessie is not affected by CVE-2018-10924 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -14769,6 +14769,7 @@ CVE-2018-10925 (It was discovered that PostgreSQL versions before 10.5, 9.6.10, CVE-2018-10924 (It was discovered that fsync(2) system call in glusterfs client code ...) - glusterfs 4.0.1-1 [stretch] - glusterfs (Issue introduced in 3.13.2 and backported to 3.12 series) + [jessie] - glusterfs NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1611785 NOTE: Introduced by: http://git.gluster.org/cgit/glusterfs.git/commit/?id=51dfc9c789b8405f595a337eade938aedcb449c4 NOTE: https://review.gluster.org/20723 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c9caa31a977852ff85c389053b3aa4565c6ab70a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c9caa31a977852ff85c389053b3aa4565c6ab70a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] zutils spu
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: ceeea928 by Moritz Muehlenhoff at 2018-09-10T12:32:37Z zutils spu - - - - - 1 changed file: - data/next-point-update.txt Changes: = data/next-point-update.txt = @@ -50,3 +50,5 @@ CVE-2018-14622 [stretch] - libtirpc 0.2.5-1.2+deb9u1 CVE-2018-13796 [stretch] - mailman 1:2.1.23-1+deb9u4 +CVE-2018-1000637 + [stretch] - zutils 1.5-5+deb9u1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ceeea9281a787e0f746f219d87c6fc5840ce7d8f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ceeea9281a787e0f746f219d87c6fc5840ce7d8f You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add note for mbedtls
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 87efd979 by Salvatore Bonaccorso at 2018-09-10T11:05:02Z Add note for mbedtls - - - - - 1 changed file: - data/dsa-needed.txt Changes: = data/dsa-needed.txt = @@ -59,6 +59,7 @@ mariadb-10.1/stable security upload or need an SRM ack first. -- mbedtls + Maintainer proposing an update for CVE-2018-0497 and CVE-2018-0498 -- mercurial -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/87efd979603afbcec3c90d5715505ae7451680f7 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/87efd979603afbcec3c90d5715505ae7451680f7 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 5bd75f8b by Salvatore Bonaccorso at 2018-09-10T10:42:33Z Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -20,25 +20,25 @@ CVE-2018-16784 CVE-2018-16783 RESERVED CVE-2018-16782 (libimageworsener.a in ImageWorsener 1.3.2 has a buffer overflow in the ...) - TODO: check + NOT-FOR-US: ImageWorsener CVE-2018-16781 (ffjpeg.dll in ffjpeg before 2018-08-22 allows remote attackers to cause ...) TODO: check CVE-2018-16780 (Complete Responsive CMS Blog through 2018-05-20 has XSS via a comment. ...) - TODO: check + NOT-FOR-US: Complete Responsive CMS Blog CVE-2018-16779 (BlogCMS through 2016-10-25 has XSS via a comment. ...) - TODO: check + NOT-FOR-US: BlogCMS CVE-2018-16778 RESERVED CVE-2018-16777 RESERVED CVE-2018-16776 (wityCMS 0.6.2 has XSS via the Site Name field found in the Contact ...) - TODO: check + NOT-FOR-US: wityCMS CVE-2018-16775 (An issue was discovered in Victor CMS through 2018-05-10. There is XSS ...) - TODO: check + NOT-FOR-US: Victor CMS CVE-2018-16774 (HongCMS 3.0.0 allows arbitrary file deletion via a ../ in the file ...) - TODO: check + NOT-FOR-US: HongCMS CVE-2018-16773 (EasyCMS 1.5 allows XSS via the ...) - TODO: check + NOT-FOR-US: EasyCMS CVE-2018-16772 (Hoosk v1.7.0 allows XSS via the Navigation Title of a new page entered ...) TODO: check CVE-2018-16771 (Hoosk v1.7.0 allows PHP code execution via a SiteUrl that is provided ...) @@ -58,15 +58,15 @@ CVE-2018-16765 (In WAVM through 2018-07-26, a crafted file sent to the WebAssemb CVE-2018-16764 (In WAVM through 2018-07-26, a crafted file sent to the WebAssembly ...) TODO: check CVE-2018-16763 (FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter ...) - TODO: check + NOT-FOR-US: FUEL CMS CVE-2018-16762 (FUEL CMS 1.4.1 allows SQL Injection via the layout, published, or ...) - TODO: check + NOT-FOR-US: FUEL CMS CVE-2018-16761 (Eventum before 3.4.0 has an open redirect vulnerability. ...) TODO: check CVE-2018-16760 RESERVED CVE-2018-16759 (The removeXSS function in App/Common/common.php (called from ...) - TODO: check + NOT-FOR-US: EasyCMS CVE-2018-16758 RESERVED CVE-2018-16757 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5bd75f8b9ada94c6b46cf23edbc2e3ec37b5cfa6 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5bd75f8b9ada94c6b46cf23edbc2e3ec37b5cfa6 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add CVE-2018-16790/libbson
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: aeabb6b4 by Salvatore Bonaccorso at 2018-09-10T08:37:57Z Add CVE-2018-16790/libbson - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -3,7 +3,8 @@ CVE-2018-16792 CVE-2018-16791 RESERVED CVE-2018-16790 (_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as used in ...) - TODO: check + - libbson + NOTE: https://jira.mongodb.org/browse/CDRIVER-2819 CVE-2018-16789 RESERVED CVE-2018-16788 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aeabb6b49ad2e9d48f9920146b1e066409333ac0 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aeabb6b49ad2e9d48f9920146b1e066409333ac0 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4d1750ac by security tracker role at 2018-09-10T08:10:22Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,71 @@ +CVE-2018-16792 + RESERVED +CVE-2018-16791 + RESERVED +CVE-2018-16790 (_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as used in ...) + TODO: check +CVE-2018-16789 + RESERVED +CVE-2018-16788 + RESERVED +CVE-2018-16787 + RESERVED +CVE-2018-16786 + RESERVED +CVE-2018-16785 + RESERVED +CVE-2018-16784 + RESERVED +CVE-2018-16783 + RESERVED +CVE-2018-16782 (libimageworsener.a in ImageWorsener 1.3.2 has a buffer overflow in the ...) + TODO: check +CVE-2018-16781 (ffjpeg.dll in ffjpeg before 2018-08-22 allows remote attackers to cause ...) + TODO: check +CVE-2018-16780 (Complete Responsive CMS Blog through 2018-05-20 has XSS via a comment. ...) + TODO: check +CVE-2018-16779 (BlogCMS through 2016-10-25 has XSS via a comment. ...) + TODO: check +CVE-2018-16778 + RESERVED +CVE-2018-16777 + RESERVED +CVE-2018-16776 (wityCMS 0.6.2 has XSS via the Site Name field found in the Contact ...) + TODO: check +CVE-2018-16775 (An issue was discovered in Victor CMS through 2018-05-10. There is XSS ...) + TODO: check +CVE-2018-16774 (HongCMS 3.0.0 allows arbitrary file deletion via a ../ in the file ...) + TODO: check +CVE-2018-16773 (EasyCMS 1.5 allows XSS via the ...) + TODO: check +CVE-2018-16772 (Hoosk v1.7.0 allows XSS via the Navigation Title of a new page entered ...) + TODO: check +CVE-2018-16771 (Hoosk v1.7.0 allows PHP code execution via a SiteUrl that is provided ...) + TODO: check +CVE-2018-16770 (In WAVM through 2018-07-26, a crafted file sent to the WebAssembly ...) + TODO: check +CVE-2018-16769 (In WAVM through 2018-07-26, a crafted file sent to the WebAssembly ...) + TODO: check +CVE-2018-16768 (In WAVM through 2018-07-26, a crafted file sent to the WebAssembly ...) + TODO: check +CVE-2018-16767 (In WAVM through 2018-07-26, a crafted file sent to the WebAssembly ...) + TODO: check +CVE-2018-16766 (In WAVM through 2018-07-26, a crafted file sent to the WebAssembly ...) + TODO: check +CVE-2018-16765 (In WAVM through 2018-07-26, a crafted file sent to the WebAssembly ...) + TODO: check +CVE-2018-16764 (In WAVM through 2018-07-26, a crafted file sent to the WebAssembly ...) + TODO: check +CVE-2018-16763 (FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter ...) + TODO: check +CVE-2018-16762 (FUEL CMS 1.4.1 allows SQL Injection via the layout, published, or ...) + TODO: check +CVE-2018-16761 (Eventum before 3.4.0 has an open redirect vulnerability. ...) + TODO: check +CVE-2018-16760 + RESERVED +CVE-2018-16759 (The removeXSS function in App/Common/common.php (called from ...) + TODO: check CVE-2018-16758 RESERVED CVE-2018-16757 @@ -29050,7 +29118,7 @@ CVE-2017-18046 (Buffer overflow on Dasan GPON ONT WiFi Router H640X 12.02-01121 CVE-2016-10709 (pfSense before 2.3 allows remote authenticated users to execute ...) NOT-FOR-US: pfSense CVE-2016-10708 (sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of ...) - {DLA-1257-1} + {DLA-1500-1 DLA-1257-1} - openssh 1:7.4p1-1 NOTE: https://anongit.mindrot.org/openssh.git/commit/?id=28652bca29046f62c7045e933e6b931de1d16737 NOTE: http://blog.swiecki.net/2018/01/fuzzing-tcp-servers.html @@ -49750,6 +49818,7 @@ CVE-2017-15909 (D-Link DGS-1500 Ax devices before 2.51B021 have a hardcoded pass CVE-2017-15907 (SQL injection vulnerability in phpCollab 2.5.1 and earlier allows ...) NOT-FOR-US: phpCollab CVE-2017-15906 (The process_open function in sftp-server.c in OpenSSH before 7.6 does ...) + {DLA-1500-1} - openssh 1:7.6p1-1 (low) [stretch] - openssh 1:7.4p1-10+deb9u3 [wheezy] - openssh (Minor issue) @@ -86954,12 +87023,14 @@ CVE-2016-10013 (Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to - xen 4.8.0-1 (bug #848713) NOTE: https://xenbits.xen.org/xsa/advisory-204.html CVE-2016-10012 (The shared memory manager (associated with pre-authentication ...) + {DLA-1500-1} - openssh 1:7.4p1-1 (low; bug #848717) [wheezy] - openssh (Minor issue) NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4 NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.c.diff?r1=1.165=1.166 NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.h.diff?r1=1.19=1.20 CVE-2016-10011 (authfile.c in sshd in OpenSSH before 7.4 does not properly consider ...) + {DLA-1500-1}
[Git][security-tracker-team/security-tracker][master] one gs issue n/a, drop one postponed, to be included in next update
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 7aee4843 by Moritz Muehlenhoff at 2018-09-10T07:59:06Z one gs issue n/a, drop one postponed, to be included in next update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -2138,6 +2138,7 @@ CVE-2018-16511 (An issue was discovered in Artifex Ghostscript before 9.24. A ty NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699659 CVE-2018-16510 (An issue was discovered in Artifex Ghostscript before 9.24. Incorrect ...) - ghostscript (bug #908304) + [stretch] - ghostscript (Introduced in 9.22) [jessie] - ghostscript (vulnerable code is not present) NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=ea735ba37dc0fd5f5622d031830b9a559dec1cc9 NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699671 @@ -12742,7 +12743,6 @@ CVE-2018-11646 (webkitFaviconDatabaseSetIconForPageURL and ...) NOTE: https://webkitgtk.org/security/WSA-2018-0005.html CVE-2018-11645 (psi/zfile.c in Artifex Ghostscript before 9.21rc1 permits the status ...) - ghostscript 9.21~dfsg-1 (low) - [stretch] - ghostscript (Be be fixed along in future update) NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697193 NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=b60d50b7567369ad856cebe1efb6cd7dd2284219 (9.21rc1) CVE-2018-11644 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7aee4843962c121d9fcf08e6ded678b42203a334 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7aee4843962c121d9fcf08e6ded678b42203a334 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Drop postponed tags
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e74c3720 by Salvatore Bonaccorso at 2018-09-10T07:43:56Z Drop postponed tags - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -29052,7 +29052,6 @@ CVE-2016-10709 (pfSense before 2.3 allows remote authenticated users to execute CVE-2016-10708 (sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of ...) {DLA-1257-1} - openssh 1:7.4p1-1 - [jessie] - openssh (Minor issue) NOTE: https://anongit.mindrot.org/openssh.git/commit/?id=28652bca29046f62c7045e933e6b931de1d16737 NOTE: http://blog.swiecki.net/2018/01/fuzzing-tcp-servers.html NOTE: Flaw is not crashing the whole sshd daemon, rather the privsep process @@ -49753,7 +49752,6 @@ CVE-2017-15907 (SQL injection vulnerability in phpCollab 2.5.1 and earlier allow CVE-2017-15906 (The process_open function in sftp-server.c in OpenSSH before 7.6 does ...) - openssh 1:7.6p1-1 (low) [stretch] - openssh 1:7.4p1-10+deb9u3 - [jessie] - openssh (Minor issue) [wheezy] - openssh (Minor issue) NOTE: https://github.com/openbsd/src/commit/a6981567e8e215acc1ef690c8dbb30f2d9b00a19 CVE-2017-15905 @@ -86957,14 +86955,12 @@ CVE-2016-10013 (Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to NOTE: https://xenbits.xen.org/xsa/advisory-204.html CVE-2016-10012 (The shared memory manager (associated with pre-authentication ...) - openssh 1:7.4p1-1 (low; bug #848717) - [jessie] - openssh (Minor issue) [wheezy] - openssh (Minor issue) NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4 NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.c.diff?r1=1.165=1.166 NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.h.diff?r1=1.19=1.20 CVE-2016-10011 (authfile.c in sshd in OpenSSH before 7.4 does not properly consider ...) - openssh 1:7.4p1-1 (low; bug #848716) - [jessie] - openssh (Minor issue) [wheezy] - openssh (Minor issue) NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4 NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/authfile.c.diff?r1=1.121=1.122 @@ -86975,7 +86971,6 @@ CVE-2016-10010 (sshd in OpenSSH before 7.4, when privilege separation is not use NOTE: Privilege separation is enabled in the Debian package CVE-2016-10009 (Untrusted search path vulnerability in ssh-agent.c in ssh-agent in ...) - openssh 1:7.4p1-1 (low; bug #848714) - [jessie] - openssh (Minor issue) [wheezy] - openssh (Minor issue) NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4 NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/ssh-agent.c.diff?r1=1.214=1.215 @@ -106240,7 +106235,6 @@ CVE-2016-6517 (Directory traversal vulnerability in Liferay 5.1.0 allows remote CVE-2016-6515 (The auth_password function in auth-passwd.c in sshd in OpenSSH before ...) {DLA-594-1} - openssh 1:7.3p1-1 (bug #833823) - [jessie] - openssh (Minor issue; can be included in future DSA or via point release) NOTE: Fixed by: https://anongit.mindrot.org/openssh.git/commit/?id=fcd135c9df440bcd2d5870405ad3311743d78d97 CVE-2016-6514 RESERVED @@ -117919,7 +117913,6 @@ CVE-2016-3116 (CRLF injection vulnerability in Dropbear SSH before 2016.72 allow NOTE: Fixed in 2016.72 upstream CVE-2016-3115 (Multiple CRLF injection vulnerabilities in session.c in sshd in ...) - openssh 1:7.2p2-1 - [jessie] - openssh (Minor issue) [wheezy] - openssh (Minor issue) NOTE: http://www.openssh.com/txt/x11fwd.adv NOTE: Portable OpenSSH 7.2p2 contains a fix for this vulnerability. @@ -122262,7 +122255,6 @@ CVE-2016-1716 (AppleGraphicsPowerManagement in Apple OS X before 10.11.3 allows NOT-FOR-US: Apple CVE-2016-1908 (The client in OpenSSH before 7.2 mishandles failed cookie generation ...) - openssh 1:7.2p1-1 - [jessie] - openssh (Minor issue) [wheezy] - openssh (Minor issue) [squeeze] - openssh (Minor issue) NOTE: Upstream commit: https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c @@ -134915,14 +134907,12 @@ CVE-2015-6565 (sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for T NOTE: http://www.openwall.com/lists/oss-security/2015/08/12/1 CVE-2015-6563 (The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD ...) - openssh 1:6.9p1-1 (bug #795711) - [jessie] - openssh (Minor issue) [wheezy] - openssh (Minor issue) [squeeze] - openssh (Minor issue) NOTE:
[Git][security-tracker-team/security-tracker][master] Reserve DLA-1500-1 for openssh
Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker Commits: f2c0843c by Santiago Ruano Rincón at 2018-09-10T07:30:29Z Reserve DLA-1500-1 for openssh - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: = data/DLA/list = @@ -1,3 +1,6 @@ +[10 Sep 2018] DLA-1500-1 openssh - security update + {CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-1908 CVE-2016-3115 CVE-2016-6515 CVE-2016-10009 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2017-15906} + [jessie] - openssh 1:6.7p1-5+deb8u6 [08 Sep 2018] DLA-1499-1 discount - security update {CVE-2018-11468 CVE-2018-11503 CVE-2018-11504 CVE-2018-12495} [jessie] - discount 2.1.7-1+deb8u1 = data/dla-needed.txt = @@ -64,11 +64,6 @@ openjdk-7 (Emilio Pozuelo) openjpeg2 NOTE: 20180719: there is no patch available for the remaining CVEs -- -openssh (Santiago) - NOTE: 20180830: only no-dsa issues remain. wait for an issue warranting - NOTE: a DLA. - NOTE: WIP package in https://salsa.debian.org/santiago/openssh/tree/jessie --- phpldapadmin (Mike Gabriel) NOTE: 20180731: See https://lists.debian.org/debian-lts/2018/07/msg00123.html for research already done -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2c0843c16cda301490ddd8ffd7dc300739b950d -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2c0843c16cda301490ddd8ffd7dc300739b950d You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Update information on CVE-2017-14992/docker.io
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8b4a5292 by Salvatore Bonaccorso at 2018-09-10T06:18:37Z Update information on CVE-2017-14992/docker.io - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -52528,13 +52528,15 @@ CVE-2017-14994 (ReadDCMImage in coders/dcm.c in GraphicsMagick 1.3.26 allows rem CVE-2017-14993 (OXID eShop Community Edition before 6.0.0 RC3 (development), 4.10.x ...) NOT-FOR-US: OXID eShop Community Edition CVE-2017-14992 (Lack of content verification in Docker-CE (Also known as Moby) ...) - - docker.io (bug #908055) + - docker.io 18.03.1+dfsg1-2 (bug #908055) - golang-github-vbatts-tar-split 0.10.2-1 (bug #908056) [stretch] - golang-github-vbatts-tar-split (Minor issue) NOTE: Issue needs to be fixed in src:golang-github-vbatts-tar-split first NOTE: https://github.com/vbatts/tar-split/issues/41 NOTE: docker.io needs then a rebuild with a fixed golang-github-vbatts-tar-split NOTE: version. + NOTE: 17.12.1+dfsg-1 was the first upload (to experimental) using the fixed version + NOTE: golang-github-vbatts-tar-split. CVE-2017-14991 (The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel before ...) - linux 4.13.4-1 [stretch] - linux (Vulnerable code introduced later) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b4a5292a3d5e3238971d9b1a1c8c316e57081be -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b4a5292a3d5e3238971d9b1a1c8c316e57081be You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-10892 via experimental upload
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8ee139d7 by Salvatore Bonaccorso at 2018-09-10T06:16:57Z Add fixed version for CVE-2018-10892 via experimental upload - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -14829,6 +14829,7 @@ CVE-2018-10893 [Insufficient encoding checks for LZ can cause different integer/ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1598234 NOTE: Ongoing patch review: https://lists.freedesktop.org/archives/spice-devel/2018-July/044489.html CVE-2018-10892 (The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby ...) + [experimental] - docker.io 18.06.0+dfsg1-1 - docker.io (bug #908057) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1598581 NOTE: https://github.com/moby/moby/pull/37404 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8ee139d7a762db5dd6dc4ecead60dd7a385b873b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8ee139d7a762db5dd6dc4ecead60dd7a385b873b You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits