Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9c81330c by security tracker role at 2018-02-19T21:10:20+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,7 +1,55 @@
-CVE-2018-7226 [VNConsole.c: vcSetXCutTextProc() integer overflow and unchecked
malloc()]
+CVE-2018-7248
+ RESERVED
+CVE-2018-7247 (An issue was discovered in pixHtmlViewer in prog/htmlviewer.c
in ...)
+ TODO: check
+CVE-2018-7246
+ RESERVED
+CVE-2018-7245
+ RESERVED
+CVE-2018-7244
+ RESERVED
+CVE-2018-7243
+ RESERVED
+CVE-2018-7242
+ RESERVED
+CVE-2018-7241
+ RESERVED
+CVE-2018-7240
+ RESERVED
+CVE-2018-7239
+ RESERVED
+CVE-2018-7238
+ RESERVED
+CVE-2018-7237
+ RESERVED
+CVE-2018-7236
+ RESERVED
+CVE-2018-7235
+ RESERVED
+CVE-2018-7234
+ RESERVED
+CVE-2018-7233
+ RESERVED
+CVE-2018-7232
+ RESERVED
+CVE-2018-7231
+ RESERVED
+CVE-2018-7230
+ RESERVED
+CVE-2018-7229
+ RESERVED
+CVE-2018-7228
+ RESERVED
+CVE-2018-7227
+ RESERVED
+CVE-2017-18191 (An issue was discovered in OpenStack Nova 15.x through 15.1.0
and 16.x ...)
+ TODO: check
+CVE-2015-9253 (An issue was discovered in PHP through 7.2.2. The php-fpm
master ...)
+ TODO: check
+CVE-2018-7226 (An issue was discovered in vcSetXCutTextProc() in VNConsole.c
in ...)
- vncterm <unfixed>
NOTE: https://github.com/LibVNC/vncterm/issues/6
-CVE-2018-7225 [libvncserver/rfbserver.c: rfbProcessClientNormalMessage() case
rfbClientCutText doesn't sanitize msg.cct.length]
+CVE-2018-7225 (An issue was discovered in LibVNCServer through 0.9.11. ...)
- libvncserver <unfixed>
NOTE: https://github.com/LibVNC/libvncserver/issues/218
CVE-2018-7224
@@ -14,8 +62,8 @@ CVE-2018-7221
RESERVED
CVE-2018-7220
RESERVED
-CVE-2018-7219
- RESERVED
+CVE-2018-7219 (application/admin/controller/Admin.php in NoneCms 1.3.0 has
CSRF, as ...)
+ TODO: check
CVE-2018-7218
RESERVED
CVE-2018-7217 (In Bravo Tejari Procurement Portal, uploaded files are not
properly ...)
@@ -1660,10 +1708,10 @@ CVE-2018-6594 (lib/Crypto/PublicKey/ElGamal.py in
PyCrypto through 2.6.1 generat
NOTE: PyCrytpodome:
https://github.com/Legrandin/pycryptodome/commit/99c27a3b9e8a884bbde0e88c63234b669d4398d8
(3.4.10)
CVE-2018-6593 (An issue was discovered in MalwareFox AntiMalware 2.74.0.150.
Improper ...)
NOT-FOR-US: MalwareFox AntiMalware
-CVE-2018-6592
- RESERVED
-CVE-2018-6591
- RESERVED
+CVE-2018-6592 (Unisys Stealth Windows endpoints before 3.3.016.1 allow local
users to ...)
+ TODO: check
+CVE-2018-6591 (Converse.js and Inverse.js through 3.3 allow remote attackers
to obtain ...)
+ TODO: check
CVE-2018-6590
RESERVED
CVE-2018-6589
@@ -2043,14 +2091,14 @@ CVE-2017-18097
RESERVED
CVE-2017-18096
RESERVED
-CVE-2017-18095
- RESERVED
+CVE-2017-18095 (The SnippetRPCServiceImpl class in Atlassian Crucible before
version ...)
+ TODO: check
CVE-2017-18094
RESERVED
-CVE-2017-18093
- RESERVED
-CVE-2017-18092
- RESERVED
+CVE-2017-18093 (Various resources in Atlassian Fisheye and Crucible before
version ...)
+ TODO: check
+CVE-2017-18092 (The print snippet resource in Atlassian Crucible before
version 4.4.3 ...)
+ TODO: check
CVE-2017-18091 (The admin backupprogress action in Atlassian Fisheye and
Crucible ...)
NOT-FOR-US: Atlassian Fisheye and Crucible
CVE-2017-18090 (Various resources in Atlassian Fisheye before version 4.5.1
(the fixed ...)
@@ -4697,12 +4745,12 @@ CVE-2018-5477
RESERVED
CVE-2018-5476
RESERVED
-CVE-2018-5475
- RESERVED
+CVE-2018-5475 (A Stack-based Buffer Overflow issue was discovered in GE D60
Line ...)
+ TODO: check
CVE-2018-5474
RESERVED
-CVE-2018-5473
- RESERVED
+CVE-2018-5473 (An Improper Restriction of Operations within the Bounds of a
Memory ...)
+ TODO: check
CVE-2018-5472
RESERVED
CVE-2018-5471
@@ -4769,8 +4817,8 @@ CVE-2018-5441 (An Improper Validation of Integrity Check
Value issue was discove
NOT-FOR-US: PHOENIX CONTACT mGuard firmware
CVE-2018-5440 (A Stack-based Buffer Overflow issue was discovered in 3S-Smart
CODESYS ...)
NOT-FOR-US: 3S-Smart
-CVE-2018-5439
- RESERVED
+CVE-2018-5439 (A Command Injection issue was discovered in Nortek Linear
eMerge E3 ...)
+ TODO: check
CVE-2018-5438
RESERVED
CVE-2018-5437
@@ -4885,26 +4933,22 @@ CVE-2018-5383
RESERVED
CVE-2018-5382
RESERVED
-CVE-2018-5381 [fix infinite loop on certain invalid OPEN messages]
- RESERVED
+CVE-2018-5381 (The Quagga BGP daemon (bgpd) prior to version 1.2.3 has a bug
in its ...)
{DSA-4115-1 DLA-1286-1}
- quagga <unfixed> (bug #890563)
NOTE: https://www.quagga.net/security/Quagga-2018-1975.txt
NOTE:
https://git.savannah.gnu.org/cgit/quagga.git/commit/?id=ce07207c50a3d1f05d6dd49b5294282e59749787
-CVE-2018-5380 [debug print of received NOTIFY data can over-read msg array]
- RESERVED
+CVE-2018-5380 (The Quagga BGP daemon (bgpd) prior to version 1.2.3 can overrun
...)
{DSA-4115-1 DLA-1286-1}
- quagga <unfixed> (bug #890563)
NOTE: https://www.quagga.net/security/Quagga-2018-1550.txt
NOTE:
https://git.savannah.gnu.org/cgit/quagga.git/commit/?id=9e5251151894aefdf8e9392a2371615222119ad8
-CVE-2018-5379 [Fix double free of unknown attribute]
- RESERVED
+CVE-2018-5379 (The Quagga BGP daemon (bgpd) prior to version 1.2.3 can
double-free ...)
{DSA-4115-1 DLA-1286-1}
- quagga <unfixed> (bug #890563)
NOTE: https://www.quagga.net/security/Quagga-2018-1114.txt
NOTE:
https://git.savannah.gnu.org/cgit/quagga.git/commit/?id=e69b535f92eafb599329bf725d9b4c6fd5d7fded
-CVE-2018-5378 [invalid attr length sends NOTIFY with data overrun]
- RESERVED
+CVE-2018-5378 (The Quagga BGP daemon (bgpd) prior to version 1.2.3 does not
properly ...)
- quagga <unfixed> (bug #890563)
[stretch] - quagga 1.1.1-3+deb9u2
[jessie] - quagga <not-affected> (Vulnerable code not present)
@@ -14586,12 +14630,12 @@ CVE-2018-1413
RESERVED
CVE-2018-1412
RESERVED
-CVE-2018-1411
- RESERVED
-CVE-2018-1410
- RESERVED
-CVE-2018-1409
- RESERVED
+CVE-2018-1411 (IBM Notes Diagnostics (IBM Client Application Access and IBM
Notes) ...)
+ TODO: check
+CVE-2018-1410 (IBM Notes Diagnostics (IBM Client Application Access and IBM
Notes) ...)
+ TODO: check
+CVE-2018-1409 (IBM Notes Diagnostics (IBM Client Application Access and IBM
Notes) ...)
+ TODO: check
CVE-2018-1408
RESERVED
CVE-2018-1407
@@ -16878,8 +16922,8 @@ CVE-2017-17103 (Fiyo CMS 2.0.7 has SQL injection in
/apps/app_user/sys_user.php
NOT-FOR-US: Fiyo CMS
CVE-2017-17102 (Fiyo CMS 2.0.7 has SQL injection in /system/site.php via ...)
NOT-FOR-US: Fiyo CMS
-CVE-2017-17101
- RESERVED
+CVE-2017-17101 (An issue was discovered in Apexis APM-H803-MPC software, as
used with ...)
+ TODO: check
CVE-2017-17100
RESERVED
CVE-2017-17099 (There exists an unauthenticated SEH based Buffer Overflow
vulnerability ...)
@@ -20255,10 +20299,10 @@ CVE-2017-16758 (Cross-site scripting (XSS)
vulnerability in ...)
NOT-FOR-US: Wordpress plugin
CVE-2017-16757 (Hola VPN 1.34 has weak permissions (Everyone:F) under
%PROGRAMFILES%, ...)
NOT-FOR-US: Hola VPN
-CVE-2017-16756
- RESERVED
-CVE-2017-16755
- RESERVED
+CVE-2017-16756 (An issue was discovered in Userscape HelpSpot before 4.7.2. A
...)
+ TODO: check
+CVE-2017-16755 (An issue was discovered in Userscape HelpSpot before 4.7.2. A
reflected ...)
+ TODO: check
CVE-2017-16754 (Bolt before 3.3.6 does not properly restrict access to
_profiler ...)
NOT-FOR-US: Bolt CMS
CVE-2017-16753 (An Improper Input Validation issue was discovered in Advantech
...)
@@ -20441,8 +20485,8 @@ CVE-2017-16671 (A Buffer Overflow issue was discovered
in Asterisk Open Source 1
NOTE: http://downloads.digium.com/pub/security/AST-2017-010.html
NOTE: http://downloads.asterisk.org/pub/security/AST-2017-010-13.diff
NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-27337
-CVE-2017-16670
- RESERVED
+CVE-2017-16670 (The project import functionality in SoapUI 5.3.0 allows remote
...)
+ TODO: check
CVE-2017-16669 (coders/wpg.c in GraphicsMagick 1.3.26 allows remote attackers
to cause ...)
{DLA-1168-1}
- graphicsmagick 1.3.26-19 (bug #881391)
@@ -23206,8 +23250,7 @@ CVE-2017-15714 (The BIRT plugin in Apache OFBiz
16.11.01 to 16.11.03 does not es
NOT-FOR-US: BIRT plugin in Apache OFBiz
CVE-2017-15713 (Vulnerability in Apache Hadoop 0.23.x, 2.x before 2.7.5, 2.8.x
before ...)
- hadoop <itp> (bug #793644)
-CVE-2017-15712
- RESERVED
+CVE-2017-15712 (Vulnerability allows a user of Apache Oozie 3.1.3-incubating
to 4.3.0 ...)
NOT-FOR-US: Oozie
CVE-2017-15711
REJECTED
@@ -32761,7 +32804,7 @@ CVE-2017-12611 (In Apache Struts 2.0.1 through 2.3.33
and 2.5 through 2.5.10, us
CVE-2017-12610
RESERVED
CVE-2017-12609
- RESERVED
+ REJECTED
CVE-2017-12608 (A vulnerability in Apache OpenOffice Writer DOC file parser
before ...)
{DSA-4022-1 DLA-1214-1}
- libreoffice 1:5.0.2-1
@@ -48748,8 +48791,7 @@ CVE-2017-7377 (The (1) v9fs_create and (2) v9fs_lcreate
functions in hw/9pfs/9p.
NOTE:
http://git.qemu-project.org/?p=qemu.git;a=commitdiff;h=d63fb193e71644a073b77ff5ac6f1216f2f6cf6e
NOTE: http://www.openwall.com/lists/oss-security/2017/04/03/2
NOTE: For older releases affected code is in hw/9pfs/virtio-9p.c
-CVE-2017-7376 [Incorrect limit used for port values]
- RESERVED
+CVE-2017-7376 (Buffer overflow in libxml2 allows remote attackers to execute
...)
{DSA-3952-1 DLA-1060-1}
- libxml2 2.9.4+dfsg1-3.1 (bug #870865)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=780690 (not yet public)
@@ -48759,8 +48801,7 @@ CVE-2017-7376 [Incorrect limit used for port values]
NOTE: negative when cast to a 32-bit int. A negative port though in the
URL would
NOTE: make the URL invalid. It is discussed if instead it would be best
to prevent
NOTE: the port from ever being negative. Upstream decided to leave the
above patch.
-CVE-2017-7375 [Missing validation for external entities in xmlParsePEReference]
- RESERVED
+CVE-2017-7375 (A flaw in libxml2 allows remote XML entity inclusion with
default ...)
{DSA-3952-1 DLA-1008-1}
- libxml2 2.9.4+dfsg1-3.1 (bug #870867)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=780691 (not yet public)
@@ -69204,8 +69245,8 @@ CVE-2016-9570 (cb.exe in Carbon Black 5.1.1.60603
allows attackers to cause a de
TODO: check
CVE-2016-9569 (The cbstream.sys driver in Carbon Black 5.1.1.60603 allows
local users ...)
TODO: check
-CVE-2016-9568
- RESERVED
+CVE-2016-9568 (A security design issue can allow an unprivileged user to
interact ...)
+ TODO: check
CVE-2016-9567 (The mDNIe system service on Samsung Mobile S7 devices with
M(6.0) ...)
NOT-FOR-US: Samsung
CVE-2016-9566 (base/logging.c in Nagios Core before 4.2.4 allows local users
with ...)
@@ -71886,8 +71927,7 @@ CVE-2016-8752 (Apache Atlas versions 0.6.0
(incubating), 0.7.0 (incubating), and
NOT-FOR-US: Apache Atlas
CVE-2016-8751 (Apache Ranger before 0.6.is vulnerable to a Stored Cross-Site
...)
NOT-FOR-US: Apache Ranger
-CVE-2016-8750
- RESERVED
+CVE-2016-8750 (Apache Karaf prior to 4.0.8 used the LDAPLoginModule to
authenticate ...)
- apache-karaf <itp> (bug #881297)
CVE-2016-8749 (Apache Camel's Jackson and JacksonXML unmarshalling operation
are ...)
NOT-FOR-US: Apache Camel
@@ -118781,8 +118821,8 @@ CVE-2015-2325 [heap buffer overflow in
compile_branch()]
NOTE: http://bugs.exim.org/show_bug.cgi?id=1591#c1
NOTE: Comment from upstream: Probably every version since the support
for forward referencing
NOTE: was introduced is affected.
-CVE-2015-2324
- RESERVED
+CVE-2015-2324 (Cross-site scripting (XSS) vulnerability in the filemanager in
the ...)
+ TODO: check
CVE-2015-2323 (FortiOS 5.0.x before 5.0.12 and 5.2.x before 5.2.4 supports
anonymous, ...)
NOT-FOR-US: FortiOS
CVE-2015-2322
@@ -140395,8 +140435,8 @@ CVE-2014-3973 (Multiple SQL injection vulnerabilities
in FrontAccounting (FA) be
- frontaccounting 2.3.21-1 (bug #751867)
[squeeze] - frontaccounting <no-dsa> (Minor issue)
[wheezy] - frontaccounting <no-dsa> (Minor issue)
-CVE-2014-3972
- RESERVED
+CVE-2014-3972 (Directory traversal vulnerability in Apexis APM-J601-WS cameras
with ...)
+ TODO: check
CVE-2014-3971 (The CmdAuthenticate::_authenticateX509 function in ...)
- mongodb <not-affected> (X.509 certifictate authentication introduced
in 2.6.x)
NOTE: https://jira.mongodb.org/browse/SERVER-13753
@@ -186206,8 +186246,8 @@ CVE-2012-0773 (The NetStream class in Adobe Flash
Player before 10.3.183.18 and
NOT-FOR-US: Adobe Flash Player
CVE-2012-0772 (An unspecified ActiveX control in Adobe Flash Player before ...)
NOT-FOR-US: Adobe Flash Player
-CVE-2012-0771
- RESERVED
+CVE-2012-0771 (Adobe Shockwave Player before 11.6.4.634 allows attackers to
execute ...)
+ TODO: check
CVE-2012-0770 (Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 computes hash
values for ...)
NOT-FOR-US: Adobe ColdFusion
CVE-2012-0769 (Adobe Flash Player before 10.3.183.16 and 11.x before
11.1.102.63 on ...)
@@ -192916,8 +192956,8 @@ CVE-2011-3479 (Symantec pcAnywhere 12.5.x through
12.5.3, and IT Management Suit
NOT-FOR-US: Symantec pcAnywhere
CVE-2011-3478 (The host-services component in Symantec pcAnywhere 12.5.x
through ...)
NOT-FOR-US: Symantec pcAnywhere
-CVE-2011-3477
- RESERVED
+CVE-2011-3477 (GEAR Software CD DVD Filter driver (aka GEARAspiWDM.sys), as
used in ...)
+ TODO: check
CVE-2011-3476
REJECTED
CVE-2011-3475
@@ -216489,8 +216529,8 @@ CVE-2010-0111 (HDNLRSVC.EXE in the Intel Alert
Handler service (aka Symantec Int
NOT-FOR-US: Symantec Intel Alert Handler
CVE-2010-0110 (Multiple stack-based buffer overflows in Intel Alert Management
System ...)
NOT-FOR-US: Symantec Intel Alert Handler
-CVE-2010-0109
- RESERVED
+CVE-2010-0109 (DBManager in Symantec Altiris Deployment Solution 6.9.x before
DS 6.9 ...)
+ TODO: check
CVE-2010-0108 (Buffer overflow in the cliproxy.objects.1 ActiveX control in
the ...)
NOT-FOR-US: Symantec AntiVirus
CVE-2010-0107 (Buffer overflow in an ActiveX control (SYMLTCOM.dll) in
Symantec N360 ...)
@@ -217408,8 +217448,8 @@ CVE-2009-4269 (The password hash generation algorithm
in the BUILTIN authenticat
NOT-FOR-US: Apache Derby
CVE-2009-4268
REJECTED
-CVE-2009-4267
- RESERVED
+CVE-2009-4267 (The console in Apache jUDDI 3.0.0 does not properly escape line
feeds, ...)
+ TODO: check
CVE-2009-XXXX [gnome-screensaver inhibitor not removed when connection is
closed]
- gnome-screensaver 2.28.0-2 (low; bug #560895)
[etch] - gnome-screensaver <not-affected> (vulnerable code introduced
in 2.28)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/9c81330c1542fabc7269ca405eca1356f17d2546
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/9c81330c1542fabc7269ca405eca1356f17d2546
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
