[Git][security-tracker-team/security-tracker][master] Add source package association for CVE-2018-16741
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6c5df9e1 by Salvatore Bonaccorso at 2018-09-11T04:29:01Z Add source package association for CVE-2018-16741 As per https://lists.debian.org/debian-lts-changes/2018/09/msg00011.html - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -135,6 +135,7 @@ CVE-2018-16742 RESERVED CVE-2018-16741 RESERVED + - mgetty CVE-2018-16740 RESERVED CVE-2018-16739 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6c5df9e1a9ba97726500d06d25d8b56d78f7d655 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6c5df9e1a9ba97726500d06d25d8b56d78f7d655 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Reserve DSA number for libextractor update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8f31262d by Salvatore Bonaccorso at 2018-09-10T20:43:56Z
Reserve DSA number for libextractor update
- - - - -
2 changed files:
- data/DSA/list
- data/dsa-needed.txt
Changes:
=
data/DSA/list
=
@@ -1,3 +1,6 @@
+[10 Sep 2018] DSA-4290-1 libextractor - security update
+ {CVE-2018-14346 CVE-2018-14347 CVE-2018-16430}
+ [stretch] - libextractor 1:1.3-4+deb9u2
[07 Sep 2018] DSA-4289-1 chromium-browser - security update
{CVE-2018-16065 CVE-2018-16066 CVE-2018-16067 CVE-2018-16068
CVE-2018-16069 CVE-2018-16070 CVE-2018-16071 CVE-2018-16073 CVE-2018-16074
CVE-2018-16075 CVE-2018-16076 CVE-2018-16077 CVE-2018-16078 CVE-2018-16079
CVE-2018-16080 CVE-2018-16081 CVE-2018-16082 CVE-2018-16083 CVE-2018-16084
CVE-2018-16085 CVE-2018-16435 CVE-2018-16086 CVE-2018-16087 CVE-2018-16088}
[stretch] - chromium-browser 69.0.3497.81-1~deb9u1
=
data/dsa-needed.txt
=
@@ -39,9 +39,6 @@ knot-resolver
libarchive-zip-perl (carnil)
Will be handled from Perl group, first upload to unstable for a while
--
-libextractor
- Maintainer will prepare updates
---
libidn
santiago proposed debdiffs for jessie and stretch
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8f31262d7ec5dec23084adfa92f959dea9408135
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8f31262d7ec5dec23084adfa92f959dea9408135
You're receiving this email because of your account on salsa.debian.org.
___
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add fixed version for unstable for CVE-2018-14622
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
84fd9ed4 by Salvatore Bonaccorso at 2018-09-10T20:38:42Z
Add fixed version for unstable for CVE-2018-14622
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
@@ -5169,7 +5169,7 @@ CVE-2018-14623
CVE-2018-14622 (A null-pointer dereference vulnerability was found in libtirpc
before ...)
{DLA-1487-1}
[experimental] - libtirpc 1.0.2-0.1
- - libtirpc (bug #907608)
+ - libtirpc 0.2.5-1.3 (bug #907608)
[stretch] - libtirpc (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1620293
NOTE: https://bugzilla.novell.com/show_bug.cgi?id=968175
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/84fd9ed48d1bd820312f7650eed6afdba78285f6
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/84fd9ed48d1bd820312f7650eed6afdba78285f6
You're receiving this email because of your account on salsa.debian.org.
___
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e990df57 by security tracker role at 2018-09-10T20:10:20Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
@@ -1,4 +1,26 @@
-CVE-2018-16802 [further changes in addition to CVE-2018-16509 commits]
+CVE-2018-16804
+ RESERVED
+CVE-2018-16803
+ RESERVED
+CVE-2018-16801
+ RESERVED
+CVE-2018-16800
+ RESERVED
+CVE-2018-16799
+ RESERVED
+CVE-2018-16798
+ RESERVED
+CVE-2018-16797 (A heap-based buffer overflow in PotPlayerMini.exe in PotPlayer
1.8.7556 ...)
+ TODO: check
+CVE-2018-16796
+ RESERVED
+CVE-2018-16795
+ RESERVED
+CVE-2018-16794
+ RESERVED
+CVE-2018-16793
+ RESERVED
+CVE-2018-16802 (An issue was discovered in Artifex Ghostscript before 9.25.
Incorrect ...)
- ghostscript
NOTE:
http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=3e5d316b72e3965b7968bb1d96baa137cd063ac6
NOTE:
http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=643b24dbd002fb9c131313253c307cf3951b3d47
@@ -184,8 +206,8 @@ CVE-2018-16707
RESERVED
CVE-2018-16706
RESERVED
-CVE-2018-16705
- RESERVED
+CVE-2018-16705 (FURUNO FELCOM 250 and 500 devices allow unauthenticated access
to the ...)
+ TODO: check
CVE-2018-16704 (An issue was discovered in Gleez CMS v1.2.0. Because of an
Insecure ...)
NOT-FOR-US: Gleez CMS
CVE-2018-16703 (A vulnerability in the Gleez CMS 1.2.0 login page could allow
an ...)
@@ -409,8 +431,8 @@ CVE-2018-16610
RESERVED
CVE-2018-16609
RESERVED
-CVE-2018-16608
- RESERVED
+CVE-2018-16608 (In Monstra CMS 3.0.4, an attacker with 'Editor' privileges can
change ...)
+ TODO: check
CVE-2018-16607
RESERVED
CVE-2018-16606 (In ProConf before 6.1, an Insecure Direct Object Reference
(IDOR) ...)
@@ -443,9 +465,9 @@ CVE-2018-16593
RESERVED
CVE-2018-16592
RESERVED
-CVE-2018-16591
- RESERVED
-CVE-2018-16590 (FURUNO FELCOM 250 and 500 devices use only client-side
JavaScript for ...)
+CVE-2018-16591 (FURUNO FELCOM 250 and 500 devices allow unauthenticated users
to change ...)
+ TODO: check
+CVE-2018-16590 (FURUNO FELCOM 250 and 500 devices use only client-side
JavaScript in ...)
NOT-FOR-US: FURUNO FELCOM
CVE-2018-16589
RESERVED
@@ -796,7 +818,7 @@ CVE-2018-16437 (Gxlcms 2.0 has Directory Traversal
exploitable by an administrat
CVE-2018-16436 (Gxlcms 2.0 has SQL Injection exploitable by an administrator.
...)
NOT-FOR-US: Gxlcms
CVE-2018-16435 (Little CMS (aka Little Color Management System) 2.9 has an
integer ...)
- {DSA-4284-1 DLA-1496-1}
+ {DSA-4289-1 DSA-4284-1 DLA-1496-1}
- lcms2 2.9-3 (bug #907983)
- lcms
- chromium-browser 69.0.3497.81-1
@@ -1630,14 +1652,17 @@ CVE-2018-16089
RESERVED
CVE-2018-16088
RESERVED
+ {DSA-4289-1}
- chromium-browser 69.0.3497.81-1
[jessie] - chromium-browser (End of life, see DSA 4020)
CVE-2018-16087
RESERVED
+ {DSA-4289-1}
- chromium-browser 69.0.3497.81-1
[jessie] - chromium-browser (End of life, see DSA 4020)
CVE-2018-16086
RESERVED
+ {DSA-4289-1}
- chromium-browser 69.0.3497.81-1
[jessie] - chromium-browser (End of life, see DSA 4020)
CVE-2018-16085
@@ -2151,8 +2176,8 @@ CVE-2014-10074 (Umbraco before 7.2.0 has a remote PHP
code execution vulnerabili
NOT-FOR-US: Umbraco
CVE-2018-15887 (Main_Analysis_Content.asp in ASUS DSL-N12E_C1 1.1.2.3_345 is
prone to ...)
NOT-FOR-US: ASUS DSL-N12E_C1
-CVE-2018-15886
- RESERVED
+CVE-2018-15886 (Monstra CMS 3.0.4 does not properly restrict modified Snippet
content, ...)
+ TODO: check
CVE-2018-15885 (Ovation FindMe 1.4-1083-1 is intended to support transmission
of ...)
NOT-FOR-US: Ovation FindMe
CVE-2018-15884 (RICOH MP C4504ex devices allow HTML Injection via the ...)
@@ -5106,10 +5131,10 @@ CVE-2018-14638
RESERVED
CVE-2018-14637
RESERVED
-CVE-2018-14636
- RESERVED
-CVE-2018-14635
- RESERVED
+CVE-2018-14636 (Live-migrated instances are briefly able to inspect traffic
for other ...)
+ TODO: check
+CVE-2018-14635 (When using the Linux bridge ml2 driver, non-privileged tenants
are ...)
+ TODO: check
CVE-2018-14634
RESERVED
CVE-2018-14633
@@ -5130,8 +5155,7 @@ CVE-2018-14627 (The IIOP OpenJDK Subsystem in WildFly
before version 14.0.0 does
NOTE: https://github.com/wildfly/wildfly/pull/10675
CVE-2018-14626
RESERVED
-CVE-2018-14625 [use-after-free Read in vhost_transport_send_pkt]
- RESERVED
+CVE-2018-14625 (A flaw was found in the Linux Kernel where an attacker may be
able to ...)
- linux
NOTE:
[Git][security-tracker-team/security-tracker][master] Add CVE-2018-16802
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c613f5fe by Salvatore Bonaccorso at 2018-09-10T19:00:14Z Add CVE-2018-16802 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,8 @@ +CVE-2018-16802 [further changes in addition to CVE-2018-16509 commits] + - ghostscript + NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=3e5d316b72e3965b7968bb1d96baa137cd063ac6 + NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=643b24dbd002fb9c131313253c307cf3951b3d47 + NOTE: https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=5812b1b78fc4d36fdc293b7859de69241140d590 CVE-2018-16792 RESERVED CVE-2018-16791 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c613f5fe8975a05b9dbb70190dca6bcb8f7b3f1f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c613f5fe8975a05b9dbb70190dca6bcb8f7b3f1f You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add four more CVE IDs fixed in recent Chromium DSA
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
07b95221 by Moritz Muehlenhoff at 2018-09-10T16:08:42Z
Add four more CVE IDs fixed in recent Chromium DSA
These were added later after the initial Chrome announcement.
- - - - -
1 changed file:
- data/DSA/list
Changes:
=
data/DSA/list
=
@@ -1,5 +1,5 @@
[07 Sep 2018] DSA-4289-1 chromium-browser - security update
- {CVE-2018-16065 CVE-2018-16066 CVE-2018-16067 CVE-2018-16068
CVE-2018-16069 CVE-2018-16070 CVE-2018-16071 CVE-2018-16073 CVE-2018-16074
CVE-2018-16075 CVE-2018-16076 CVE-2018-16077 CVE-2018-16078 CVE-2018-16079
CVE-2018-16080 CVE-2018-16081 CVE-2018-16082 CVE-2018-16083 CVE-2018-16084
CVE-2018-16085}
+ {CVE-2018-16065 CVE-2018-16066 CVE-2018-16067 CVE-2018-16068
CVE-2018-16069 CVE-2018-16070 CVE-2018-16071 CVE-2018-16073 CVE-2018-16074
CVE-2018-16075 CVE-2018-16076 CVE-2018-16077 CVE-2018-16078 CVE-2018-16079
CVE-2018-16080 CVE-2018-16081 CVE-2018-16082 CVE-2018-16083 CVE-2018-16084
CVE-2018-16085 CVE-2018-16435 CVE-2018-16086 CVE-2018-16087 CVE-2018-16088}
[stretch] - chromium-browser 69.0.3497.81-1~deb9u1
[07 Sep 2018] DSA-4288-1 ghostscript - security update
{CVE-2018-15908 CVE-2018-15910 CVE-2018-15911 CVE-2018-16511
CVE-2018-16513 CVE-2018-16539 CVE-2018-16540 CVE-2018-16541 CVE-2018-16542
CVE-2018-16543 CVE-2018-16585}
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/07b952210fca30afe65c3e38daaa17d811f4eb28
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/07b952210fca30afe65c3e38daaa17d811f4eb28
You're receiving this email because of your account on salsa.debian.org.
___
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add note for not-affected status
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6baa2a38 by Salvatore Bonaccorso at 2018-09-10T14:07:46Z Add note for not-affected status - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -14769,7 +14769,7 @@ CVE-2018-10925 (It was discovered that PostgreSQL versions before 10.5, 9.6.10, CVE-2018-10924 (It was discovered that fsync(2) system call in glusterfs client code ...) - glusterfs 4.0.1-1 [stretch] - glusterfs (Issue introduced in 3.13.2 and backported to 3.12 series) - [jessie] - glusterfs + [jessie] - glusterfs (Issue introduced in 3.13.2 and backported to 3.12 series) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1611785 NOTE: Introduced by: http://git.gluster.org/cgit/glusterfs.git/commit/?id=51dfc9c789b8405f595a337eade938aedcb449c4 NOTE: https://review.gluster.org/20723 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6baa2a38c68f9cb29546acf9a144914b7d93fd81 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6baa2a38c68f9cb29546acf9a144914b7d93fd81 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] jessie is not affected by CVE-2018-10924
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: c9caa31a by Thorsten Alteholz at 2018-09-10T13:54:54Z jessie is not affected by CVE-2018-10924 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -14769,6 +14769,7 @@ CVE-2018-10925 (It was discovered that PostgreSQL versions before 10.5, 9.6.10, CVE-2018-10924 (It was discovered that fsync(2) system call in glusterfs client code ...) - glusterfs 4.0.1-1 [stretch] - glusterfs (Issue introduced in 3.13.2 and backported to 3.12 series) + [jessie] - glusterfs NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1611785 NOTE: Introduced by: http://git.gluster.org/cgit/glusterfs.git/commit/?id=51dfc9c789b8405f595a337eade938aedcb449c4 NOTE: https://review.gluster.org/20723 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c9caa31a977852ff85c389053b3aa4565c6ab70a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c9caa31a977852ff85c389053b3aa4565c6ab70a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] zutils spu
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: ceeea928 by Moritz Muehlenhoff at 2018-09-10T12:32:37Z zutils spu - - - - - 1 changed file: - data/next-point-update.txt Changes: = data/next-point-update.txt = @@ -50,3 +50,5 @@ CVE-2018-14622 [stretch] - libtirpc 0.2.5-1.2+deb9u1 CVE-2018-13796 [stretch] - mailman 1:2.1.23-1+deb9u4 +CVE-2018-1000637 + [stretch] - zutils 1.5-5+deb9u1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ceeea9281a787e0f746f219d87c6fc5840ce7d8f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ceeea9281a787e0f746f219d87c6fc5840ce7d8f You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add note for mbedtls
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 87efd979 by Salvatore Bonaccorso at 2018-09-10T11:05:02Z Add note for mbedtls - - - - - 1 changed file: - data/dsa-needed.txt Changes: = data/dsa-needed.txt = @@ -59,6 +59,7 @@ mariadb-10.1/stable security upload or need an SRM ack first. -- mbedtls + Maintainer proposing an update for CVE-2018-0497 and CVE-2018-0498 -- mercurial -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/87efd979603afbcec3c90d5715505ae7451680f7 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/87efd979603afbcec3c90d5715505ae7451680f7 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 5bd75f8b by Salvatore Bonaccorso at 2018-09-10T10:42:33Z Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -20,25 +20,25 @@ CVE-2018-16784 CVE-2018-16783 RESERVED CVE-2018-16782 (libimageworsener.a in ImageWorsener 1.3.2 has a buffer overflow in the ...) - TODO: check + NOT-FOR-US: ImageWorsener CVE-2018-16781 (ffjpeg.dll in ffjpeg before 2018-08-22 allows remote attackers to cause ...) TODO: check CVE-2018-16780 (Complete Responsive CMS Blog through 2018-05-20 has XSS via a comment. ...) - TODO: check + NOT-FOR-US: Complete Responsive CMS Blog CVE-2018-16779 (BlogCMS through 2016-10-25 has XSS via a comment. ...) - TODO: check + NOT-FOR-US: BlogCMS CVE-2018-16778 RESERVED CVE-2018-16777 RESERVED CVE-2018-16776 (wityCMS 0.6.2 has XSS via the Site Name field found in the Contact ...) - TODO: check + NOT-FOR-US: wityCMS CVE-2018-16775 (An issue was discovered in Victor CMS through 2018-05-10. There is XSS ...) - TODO: check + NOT-FOR-US: Victor CMS CVE-2018-16774 (HongCMS 3.0.0 allows arbitrary file deletion via a ../ in the file ...) - TODO: check + NOT-FOR-US: HongCMS CVE-2018-16773 (EasyCMS 1.5 allows XSS via the ...) - TODO: check + NOT-FOR-US: EasyCMS CVE-2018-16772 (Hoosk v1.7.0 allows XSS via the Navigation Title of a new page entered ...) TODO: check CVE-2018-16771 (Hoosk v1.7.0 allows PHP code execution via a SiteUrl that is provided ...) @@ -58,15 +58,15 @@ CVE-2018-16765 (In WAVM through 2018-07-26, a crafted file sent to the WebAssemb CVE-2018-16764 (In WAVM through 2018-07-26, a crafted file sent to the WebAssembly ...) TODO: check CVE-2018-16763 (FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter ...) - TODO: check + NOT-FOR-US: FUEL CMS CVE-2018-16762 (FUEL CMS 1.4.1 allows SQL Injection via the layout, published, or ...) - TODO: check + NOT-FOR-US: FUEL CMS CVE-2018-16761 (Eventum before 3.4.0 has an open redirect vulnerability. ...) TODO: check CVE-2018-16760 RESERVED CVE-2018-16759 (The removeXSS function in App/Common/common.php (called from ...) - TODO: check + NOT-FOR-US: EasyCMS CVE-2018-16758 RESERVED CVE-2018-16757 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5bd75f8b9ada94c6b46cf23edbc2e3ec37b5cfa6 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5bd75f8b9ada94c6b46cf23edbc2e3ec37b5cfa6 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add CVE-2018-16790/libbson
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: aeabb6b4 by Salvatore Bonaccorso at 2018-09-10T08:37:57Z Add CVE-2018-16790/libbson - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -3,7 +3,8 @@ CVE-2018-16792 CVE-2018-16791 RESERVED CVE-2018-16790 (_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as used in ...) - TODO: check + - libbson + NOTE: https://jira.mongodb.org/browse/CDRIVER-2819 CVE-2018-16789 RESERVED CVE-2018-16788 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aeabb6b49ad2e9d48f9920146b1e066409333ac0 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aeabb6b49ad2e9d48f9920146b1e066409333ac0 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4d1750ac by security tracker role at 2018-09-10T08:10:22Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
@@ -1,3 +1,71 @@
+CVE-2018-16792
+ RESERVED
+CVE-2018-16791
+ RESERVED
+CVE-2018-16790 (_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as
used in ...)
+ TODO: check
+CVE-2018-16789
+ RESERVED
+CVE-2018-16788
+ RESERVED
+CVE-2018-16787
+ RESERVED
+CVE-2018-16786
+ RESERVED
+CVE-2018-16785
+ RESERVED
+CVE-2018-16784
+ RESERVED
+CVE-2018-16783
+ RESERVED
+CVE-2018-16782 (libimageworsener.a in ImageWorsener 1.3.2 has a buffer
overflow in the ...)
+ TODO: check
+CVE-2018-16781 (ffjpeg.dll in ffjpeg before 2018-08-22 allows remote attackers
to cause ...)
+ TODO: check
+CVE-2018-16780 (Complete Responsive CMS Blog through 2018-05-20 has XSS via a
comment. ...)
+ TODO: check
+CVE-2018-16779 (BlogCMS through 2016-10-25 has XSS via a comment. ...)
+ TODO: check
+CVE-2018-16778
+ RESERVED
+CVE-2018-16777
+ RESERVED
+CVE-2018-16776 (wityCMS 0.6.2 has XSS via the Site Name field
found in the Contact ...)
+ TODO: check
+CVE-2018-16775 (An issue was discovered in Victor CMS through 2018-05-10.
There is XSS ...)
+ TODO: check
+CVE-2018-16774 (HongCMS 3.0.0 allows arbitrary file deletion via a ../ in the
file ...)
+ TODO: check
+CVE-2018-16773 (EasyCMS 1.5 allows XSS via the ...)
+ TODO: check
+CVE-2018-16772 (Hoosk v1.7.0 allows XSS via the Navigation Title of a new page
entered ...)
+ TODO: check
+CVE-2018-16771 (Hoosk v1.7.0 allows PHP code execution via a SiteUrl that is
provided ...)
+ TODO: check
+CVE-2018-16770 (In WAVM through 2018-07-26, a crafted file sent to the
WebAssembly ...)
+ TODO: check
+CVE-2018-16769 (In WAVM through 2018-07-26, a crafted file sent to the
WebAssembly ...)
+ TODO: check
+CVE-2018-16768 (In WAVM through 2018-07-26, a crafted file sent to the
WebAssembly ...)
+ TODO: check
+CVE-2018-16767 (In WAVM through 2018-07-26, a crafted file sent to the
WebAssembly ...)
+ TODO: check
+CVE-2018-16766 (In WAVM through 2018-07-26, a crafted file sent to the
WebAssembly ...)
+ TODO: check
+CVE-2018-16765 (In WAVM through 2018-07-26, a crafted file sent to the
WebAssembly ...)
+ TODO: check
+CVE-2018-16764 (In WAVM through 2018-07-26, a crafted file sent to the
WebAssembly ...)
+ TODO: check
+CVE-2018-16763 (FUEL CMS 1.4.1 allows PHP Code Evaluation via the
pages/select/ filter ...)
+ TODO: check
+CVE-2018-16762 (FUEL CMS 1.4.1 allows SQL Injection via the layout, published,
or ...)
+ TODO: check
+CVE-2018-16761 (Eventum before 3.4.0 has an open redirect vulnerability. ...)
+ TODO: check
+CVE-2018-16760
+ RESERVED
+CVE-2018-16759 (The removeXSS function in App/Common/common.php (called from
...)
+ TODO: check
CVE-2018-16758
RESERVED
CVE-2018-16757
@@ -29050,7 +29118,7 @@ CVE-2017-18046 (Buffer overflow on Dasan GPON ONT WiFi
Router H640X 12.02-01121
CVE-2016-10709 (pfSense before 2.3 allows remote authenticated users to
execute ...)
NOT-FOR-US: pfSense
CVE-2016-10708 (sshd in OpenSSH before 7.4 allows remote attackers to cause a
denial of ...)
- {DLA-1257-1}
+ {DLA-1500-1 DLA-1257-1}
- openssh 1:7.4p1-1
NOTE:
https://anongit.mindrot.org/openssh.git/commit/?id=28652bca29046f62c7045e933e6b931de1d16737
NOTE: http://blog.swiecki.net/2018/01/fuzzing-tcp-servers.html
@@ -49750,6 +49818,7 @@ CVE-2017-15909 (D-Link DGS-1500 Ax devices before
2.51B021 have a hardcoded pass
CVE-2017-15907 (SQL injection vulnerability in phpCollab 2.5.1 and earlier
allows ...)
NOT-FOR-US: phpCollab
CVE-2017-15906 (The process_open function in sftp-server.c in OpenSSH before
7.6 does ...)
+ {DLA-1500-1}
- openssh 1:7.6p1-1 (low)
[stretch] - openssh 1:7.4p1-10+deb9u3
[wheezy] - openssh (Minor issue)
@@ -86954,12 +87023,14 @@ CVE-2016-10013 (Xen through 4.8.x allows local 64-bit
x86 HVM guest OS users to
- xen 4.8.0-1 (bug #848713)
NOTE: https://xenbits.xen.org/xsa/advisory-204.html
CVE-2016-10012 (The shared memory manager (associated with pre-authentication
...)
+ {DLA-1500-1}
- openssh 1:7.4p1-1 (low; bug #848717)
[wheezy] - openssh (Minor issue)
NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4
NOTE:
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.c.diff?r1=1.165=1.166
NOTE:
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.h.diff?r1=1.19=1.20
CVE-2016-10011 (authfile.c in sshd in OpenSSH before 7.4 does not properly
consider ...)
+ {DLA-1500-1}
[Git][security-tracker-team/security-tracker][master] one gs issue n/a, drop one postponed, to be included in next update
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 7aee4843 by Moritz Muehlenhoff at 2018-09-10T07:59:06Z one gs issue n/a, drop one postponed, to be included in next update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -2138,6 +2138,7 @@ CVE-2018-16511 (An issue was discovered in Artifex Ghostscript before 9.24. A ty NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699659 CVE-2018-16510 (An issue was discovered in Artifex Ghostscript before 9.24. Incorrect ...) - ghostscript (bug #908304) + [stretch] - ghostscript (Introduced in 9.22) [jessie] - ghostscript (vulnerable code is not present) NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=ea735ba37dc0fd5f5622d031830b9a559dec1cc9 NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699671 @@ -12742,7 +12743,6 @@ CVE-2018-11646 (webkitFaviconDatabaseSetIconForPageURL and ...) NOTE: https://webkitgtk.org/security/WSA-2018-0005.html CVE-2018-11645 (psi/zfile.c in Artifex Ghostscript before 9.21rc1 permits the status ...) - ghostscript 9.21~dfsg-1 (low) - [stretch] - ghostscript (Be be fixed along in future update) NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697193 NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=b60d50b7567369ad856cebe1efb6cd7dd2284219 (9.21rc1) CVE-2018-11644 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7aee4843962c121d9fcf08e6ded678b42203a334 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7aee4843962c121d9fcf08e6ded678b42203a334 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Drop postponed tags
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e74c3720 by Salvatore Bonaccorso at 2018-09-10T07:43:56Z
Drop postponed tags
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
@@ -29052,7 +29052,6 @@ CVE-2016-10709 (pfSense before 2.3 allows remote
authenticated users to execute
CVE-2016-10708 (sshd in OpenSSH before 7.4 allows remote attackers to cause a
denial of ...)
{DLA-1257-1}
- openssh 1:7.4p1-1
- [jessie] - openssh (Minor issue)
NOTE:
https://anongit.mindrot.org/openssh.git/commit/?id=28652bca29046f62c7045e933e6b931de1d16737
NOTE: http://blog.swiecki.net/2018/01/fuzzing-tcp-servers.html
NOTE: Flaw is not crashing the whole sshd daemon, rather the privsep
process
@@ -49753,7 +49752,6 @@ CVE-2017-15907 (SQL injection vulnerability in
phpCollab 2.5.1 and earlier allow
CVE-2017-15906 (The process_open function in sftp-server.c in OpenSSH before
7.6 does ...)
- openssh 1:7.6p1-1 (low)
[stretch] - openssh 1:7.4p1-10+deb9u3
- [jessie] - openssh (Minor issue)
[wheezy] - openssh (Minor issue)
NOTE:
https://github.com/openbsd/src/commit/a6981567e8e215acc1ef690c8dbb30f2d9b00a19
CVE-2017-15905
@@ -86957,14 +86955,12 @@ CVE-2016-10013 (Xen through 4.8.x allows local 64-bit
x86 HVM guest OS users to
NOTE: https://xenbits.xen.org/xsa/advisory-204.html
CVE-2016-10012 (The shared memory manager (associated with pre-authentication
...)
- openssh 1:7.4p1-1 (low; bug #848717)
- [jessie] - openssh (Minor issue)
[wheezy] - openssh (Minor issue)
NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4
NOTE:
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.c.diff?r1=1.165=1.166
NOTE:
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.h.diff?r1=1.19=1.20
CVE-2016-10011 (authfile.c in sshd in OpenSSH before 7.4 does not properly
consider ...)
- openssh 1:7.4p1-1 (low; bug #848716)
- [jessie] - openssh (Minor issue)
[wheezy] - openssh (Minor issue)
NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4
NOTE:
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/authfile.c.diff?r1=1.121=1.122
@@ -86975,7 +86971,6 @@ CVE-2016-10010 (sshd in OpenSSH before 7.4, when
privilege separation is not use
NOTE: Privilege separation is enabled in the Debian package
CVE-2016-10009 (Untrusted search path vulnerability in ssh-agent.c in
ssh-agent in ...)
- openssh 1:7.4p1-1 (low; bug #848714)
- [jessie] - openssh (Minor issue)
[wheezy] - openssh (Minor issue)
NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4
NOTE:
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/ssh-agent.c.diff?r1=1.214=1.215
@@ -106240,7 +106235,6 @@ CVE-2016-6517 (Directory traversal vulnerability in
Liferay 5.1.0 allows remote
CVE-2016-6515 (The auth_password function in auth-passwd.c in sshd in OpenSSH
before ...)
{DLA-594-1}
- openssh 1:7.3p1-1 (bug #833823)
- [jessie] - openssh (Minor issue; can be included in future
DSA or via point release)
NOTE: Fixed by:
https://anongit.mindrot.org/openssh.git/commit/?id=fcd135c9df440bcd2d5870405ad3311743d78d97
CVE-2016-6514
RESERVED
@@ -117919,7 +117913,6 @@ CVE-2016-3116 (CRLF injection vulnerability in
Dropbear SSH before 2016.72 allow
NOTE: Fixed in 2016.72 upstream
CVE-2016-3115 (Multiple CRLF injection vulnerabilities in session.c in sshd in
...)
- openssh 1:7.2p2-1
- [jessie] - openssh (Minor issue)
[wheezy] - openssh (Minor issue)
NOTE: http://www.openssh.com/txt/x11fwd.adv
NOTE: Portable OpenSSH 7.2p2 contains a fix for this vulnerability.
@@ -122262,7 +122255,6 @@ CVE-2016-1716 (AppleGraphicsPowerManagement in Apple
OS X before 10.11.3 allows
NOT-FOR-US: Apple
CVE-2016-1908 (The client in OpenSSH before 7.2 mishandles failed cookie
generation ...)
- openssh 1:7.2p1-1
- [jessie] - openssh (Minor issue)
[wheezy] - openssh (Minor issue)
[squeeze] - openssh (Minor issue)
NOTE: Upstream commit:
https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c
@@ -134915,14 +134907,12 @@ CVE-2015-6565 (sshd in OpenSSH 6.8 and 6.9 uses
world-writable permissions for T
NOTE: http://www.openwall.com/lists/oss-security/2015/08/12/1
CVE-2015-6563 (The monitor component in sshd in OpenSSH before 7.0 on
non-OpenBSD ...)
- openssh 1:6.9p1-1 (bug #795711)
- [jessie] - openssh (Minor issue)
[wheezy] - openssh (Minor issue)
[squeeze] - openssh (Minor issue)
NOTE:
[Git][security-tracker-team/security-tracker][master] Reserve DLA-1500-1 for openssh
Santiago R.R. pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f2c0843c by Santiago Ruano Rincón at 2018-09-10T07:30:29Z
Reserve DLA-1500-1 for openssh
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=
data/DLA/list
=
@@ -1,3 +1,6 @@
+[10 Sep 2018] DLA-1500-1 openssh - security update
+ {CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-1908
CVE-2016-3115 CVE-2016-6515 CVE-2016-10009 CVE-2016-10011 CVE-2016-10012
CVE-2016-10708 CVE-2017-15906}
+ [jessie] - openssh 1:6.7p1-5+deb8u6
[08 Sep 2018] DLA-1499-1 discount - security update
{CVE-2018-11468 CVE-2018-11503 CVE-2018-11504 CVE-2018-12495}
[jessie] - discount 2.1.7-1+deb8u1
=
data/dla-needed.txt
=
@@ -64,11 +64,6 @@ openjdk-7 (Emilio Pozuelo)
openjpeg2
NOTE: 20180719: there is no patch available for the remaining CVEs
--
-openssh (Santiago)
- NOTE: 20180830: only no-dsa issues remain. wait for an issue warranting
- NOTE: a DLA.
- NOTE: WIP package in https://salsa.debian.org/santiago/openssh/tree/jessie
---
phpldapadmin (Mike Gabriel)
NOTE: 20180731: See
https://lists.debian.org/debian-lts/2018/07/msg00123.html for research already
done
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2c0843c16cda301490ddd8ffd7dc300739b950d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2c0843c16cda301490ddd8ffd7dc300739b950d
You're receiving this email because of your account on salsa.debian.org.
___
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Update information on CVE-2017-14992/docker.io
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8b4a5292 by Salvatore Bonaccorso at 2018-09-10T06:18:37Z Update information on CVE-2017-14992/docker.io - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -52528,13 +52528,15 @@ CVE-2017-14994 (ReadDCMImage in coders/dcm.c in GraphicsMagick 1.3.26 allows rem CVE-2017-14993 (OXID eShop Community Edition before 6.0.0 RC3 (development), 4.10.x ...) NOT-FOR-US: OXID eShop Community Edition CVE-2017-14992 (Lack of content verification in Docker-CE (Also known as Moby) ...) - - docker.io (bug #908055) + - docker.io 18.03.1+dfsg1-2 (bug #908055) - golang-github-vbatts-tar-split 0.10.2-1 (bug #908056) [stretch] - golang-github-vbatts-tar-split (Minor issue) NOTE: Issue needs to be fixed in src:golang-github-vbatts-tar-split first NOTE: https://github.com/vbatts/tar-split/issues/41 NOTE: docker.io needs then a rebuild with a fixed golang-github-vbatts-tar-split NOTE: version. + NOTE: 17.12.1+dfsg-1 was the first upload (to experimental) using the fixed version + NOTE: golang-github-vbatts-tar-split. CVE-2017-14991 (The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel before ...) - linux 4.13.4-1 [stretch] - linux (Vulnerable code introduced later) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b4a5292a3d5e3238971d9b1a1c8c316e57081be -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8b4a5292a3d5e3238971d9b1a1c8c316e57081be You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-10892 via experimental upload
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8ee139d7 by Salvatore Bonaccorso at 2018-09-10T06:16:57Z
Add fixed version for CVE-2018-10892 via experimental upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
@@ -14829,6 +14829,7 @@ CVE-2018-10893 [Insufficient encoding checks for LZ can
cause different integer/
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1598234
NOTE: Ongoing patch review:
https://lists.freedesktop.org/archives/spice-devel/2018-July/044489.html
CVE-2018-10892 (The default OCI linux spec in oci/defaults{_linux}.go in
Docker/Moby ...)
+ [experimental] - docker.io 18.06.0+dfsg1-1
- docker.io (bug #908057)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1598581
NOTE: https://github.com/moby/moby/pull/37404
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8ee139d7a762db5dd6dc4ecead60dd7a385b873b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/8ee139d7a762db5dd6dc4ecead60dd7a385b873b
You're receiving this email because of your account on salsa.debian.org.
___
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
