diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2021-01-15 20:10:21 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2021-01-15 20:10:21 +0000 |
| commit | 56537d734b4292b74776471e8e79ee109eb0b0aa (patch) | |
| tree | 6f4e2dc100f90cbd16bd4de79e9a182a9aaf594d /data/CVE/2019.list | |
| parent | fa810d5ef55db02a14fb9e08cabdac2abbfd5915 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2019.list')
| -rw-r--r-- | data/CVE/2019.list | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 942c7b23a0..30723f3324 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -10146,8 +10146,8 @@ CVE-2019-16963 RESERVED CVE-2019-16962 (Zoho ManageEngine Desktop Central 10.0.430 allows HTML injection via a ...) NOT-FOR-US: Zoho ManageEngine Desktop Central -CVE-2019-16961 - RESERVED +CVE-2019-16961 (SolarWinds Web Help Desk 12.7.0 allows XSS via a Schedule Name. ...) + TODO: check CVE-2019-16960 (SolarWinds Web Help Desk 12.7.0 allows XSS via a CSV template file wit ...) NOT-FOR-US: SolarWinds CVE-2019-16959 (SolarWinds Web Help Desk 12.7.0 allows CSV Injection, also known as Fo ...) @@ -24794,6 +24794,7 @@ CVE-2019-11499 (In the IMAP Server in Dovecot 2.3.3 through 2.3.5.2, the submiss [jessie] - dovecot <not-affected> (Vulnerable code not present, introduced in 2.3) NOTE: https://dovecot.org/pipermail/dovecot/2019-April/115758.html CVE-2019-11498 (WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack t ...) + {DLA-2525-1} - wavpack 5.1.0-6 (low; bug #927903) [jessie] - wavpack <not-affected> (Vulnerable code not present, introduced in 5.0.0) NOTE: https://github.com/dbry/WavPack/issues/67 @@ -29282,6 +29283,7 @@ CVE-2019-9889 (In Vanilla before 2.6.4, a flaw exists within the getSingleIndex CVE-2019-9888 RESERVED CVE-2019-1010319 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialize ...) + {DLA-2525-1} - wavpack 5.1.0-7 (low; bug #932061) [buster] - wavpack <no-dsa> (Minor issue) NOTE: https://github.com/dbry/WavPack/commit/33a0025d1d63ccd05d9dbaa6923d52b1446a62fe @@ -29289,6 +29291,7 @@ CVE-2019-1010319 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Unin CVE-2019-1010318 REJECTED CVE-2019-1010317 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialize ...) + {DLA-2525-1} - wavpack 5.1.0-7 (low; bug #932060) [buster] - wavpack <no-dsa> (Minor issue) NOTE: https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b @@ -29296,6 +29299,7 @@ CVE-2019-1010317 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Unin CVE-2019-1010316 (pyxtrlock 0.3 and earlier is affected by: Incorrect Access Control. Th ...) NOT-FOR-US: pyxtrlock CVE-2019-1010315 (WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The i ...) + {DLA-2525-1} - wavpack 5.1.0-6 (low) NOTE: https://github.com/dbry/WavPack/commit/4c0faba32fddbd0745cbfaf1e1aeb3da5d35b9fc NOTE: https://github.com/dbry/WavPack/issues/65 |