Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
84398225 by security tracker role at 2018-01-05T09:10:14+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,29 @@
+CVE-2018-5233
+ RESERVED
+CVE-2018-5232
+ RESERVED
+CVE-2018-5231
+ RESERVED
+CVE-2018-5230
+ RESERVED
+CVE-2018-5229
+ RESERVED
+CVE-2018-5228
+ RESERVED
+CVE-2018-5227
+ RESERVED
+CVE-2018-5226
+ RESERVED
+CVE-2018-5225
+ RESERVED
+CVE-2018-5224
+ RESERVED
+CVE-2018-5223
+ RESERVED
+CVE-2018-5222
+ RESERVED
+CVE-2018-5221
+ RESERVED
CVE-2018-5220 (In K7 Antivirus 15.1.0306, the driver file (K7Sentry.sys)
allows local ...)
NOT-FOR-US: K7 Antivirus
CVE-2018-5219 (In K7 Antivirus 15.1.0306, the driver file (K7FWHlpr.sys)
allows local ...)
@@ -13517,8 +13543,8 @@ CVE-2017-16906 (In Horde Groupware 5.2.19, there is XSS
via the URL field in a .
- php-horde <undetermined>
NOTE: http://code610.blogspot.com/2017/11/rce-via-xss-horde-5219.html
TODO: check
-CVE-2017-16905
- RESERVED
+CVE-2017-16905 (The DuoLingo TinyCards application before 1.0 for Android has
one use ...)
+ TODO: check
CVE-2017-16904 (The Public tologin feature in admin.php in LvyeCMS through 3.1
allows ...)
NOT-FOR-US: LvyeCMS
CVE-2017-16903 (LvyeCMS through 3.1 allows remote attackers to upload and
execute ...)
@@ -14398,8 +14424,8 @@ CVE-2017-16755
RESERVED
CVE-2017-16754 (Bolt before 3.3.6 does not properly restrict access to
_profiler ...)
NOT-FOR-US: Bolt CMS
-CVE-2017-16753
- RESERVED
+CVE-2017-16753 (An Improper Input Validation issue was discovered in Advantech
...)
+ TODO: check
CVE-2017-16752
RESERVED
CVE-2017-16751
@@ -14448,32 +14474,32 @@ CVE-2017-16730
RESERVED
CVE-2017-16729
RESERVED
-CVE-2017-16728
- RESERVED
+CVE-2017-16728 (An Untrusted Pointer Dereference issue was discovered in
Advantech ...)
+ TODO: check
CVE-2017-16727 (A Credentials Management issue was discovered in Moxa NPort
W2150A ...)
NOT-FOR-US: Moxa
CVE-2017-16726
RESERVED
CVE-2017-16725 (A Stack-based Buffer Overflow issue was discovered in Xiongmai
...)
NOT-FOR-US: Xiongmai Technology IP Cameras and DVRs
-CVE-2017-16724
- RESERVED
+CVE-2017-16724 (A Stack-based Buffer Overflow issue was discovered in
Advantech ...)
+ TODO: check
CVE-2017-16723 (A Cross-site Scripting issue was discovered in PHOENIX CONTACT
FL ...)
NOT-FOR-US: PHOENIX
CVE-2017-16722
RESERVED
CVE-2017-16721 (A Cross-site Scripting issue was discovered in Geovap Reliance
SCADA ...)
NOT-FOR-US: Geovap Reliance SCADA
-CVE-2017-16720
- RESERVED
+CVE-2017-16720 (A Path Traversal issue was discovered in WebAccess versions
prior to ...)
+ TODO: check
CVE-2017-16719 (An Injection issue was discovered in Moxa NPort 5110 Version
2.2, NPort ...)
NOT-FOR-US: Moxa
CVE-2017-16718
RESERVED
CVE-2017-16717 (A Heap-based Buffer Overflow issue was discovered in WECON
LeviStudio ...)
NOT-FOR-US: WECON LeviStudio HMI
-CVE-2017-16716
- RESERVED
+CVE-2017-16716 (A SQL Injection issue was discovered in WebAccess versions
prior to ...)
+ TODO: check
CVE-2017-16715 (An Information Exposure issue was discovered in Moxa NPort
5110 Version ...)
NOT-FOR-US: Moxa
CVE-2017-16714
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/843982251b8036aa9407b6b725f00274bd066ebf
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/843982251b8036aa9407b6b725f00274bd066ebf
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
