diff options
author | security tracker role <sectracker@soriano.debian.org> | 2019-11-21 20:10:30 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2019-11-21 20:10:30 +0000 |
commit | 0b10e9c5c72e4b990ab897d3efc6e908881dee28 (patch) | |
tree | 4bec06605daf29784c5d92d0b829b66042f6f212 /data/CVE | |
parent | 378e080e55724f6489b2d72d99606c24eb6ad183 (diff) |
automatic update
Diffstat (limited to 'data/CVE')
-rw-r--r-- | data/CVE/2009.list | 5 | ||||
-rw-r--r-- | data/CVE/2012.list | 15 | ||||
-rw-r--r-- | data/CVE/2013.list | 6 | ||||
-rw-r--r-- | data/CVE/2014.list | 21 | ||||
-rw-r--r-- | data/CVE/2018.list | 12 | ||||
-rw-r--r-- | data/CVE/2019.list | 309 |
6 files changed, 222 insertions, 146 deletions
diff --git a/data/CVE/2009.list b/data/CVE/2009.list index 4c87550204..80be21c706 100644 --- a/data/CVE/2009.list +++ b/data/CVE/2009.list @@ -1238,7 +1238,7 @@ CVE-2009-4613 (SQL injection vulnerability in realestate20/loginaction.php in Ne NOT-FOR-US: NetArt Media Real Estate Portal CVE-2009-4612 (Multiple cross-site scripting (XSS) vulnerabilities in the WebApp JSP ...) - jetty 6.1.22-1 (bug #575789) -CVE-2009-4611 (Mort Bay Jetty 6.x and 7.0.0 writes backtrace data without sanitizing ...) +CVE-2009-4611 (Mort Bay Jetty 6.x through 6.1.22 and 7.0.0 writes backtrace data with ...) - jetty 6.1.22-1 CVE-2009-4610 (Multiple cross-site scripting (XSS) vulnerabilities in Mort Bay Jetty ...) - jetty <not-affected> (low; bug #575790) @@ -3385,7 +3385,8 @@ CVE-2009-5046 (JSP Dump and Session Dump Servlet XSS in jetty before 6.1.22. ... - jetty 6.1.22-1 (unimportant; bug #553644) NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt NOTE: The affected apps are not shipped in the package, see #553644 -CVE-2009-5047 (Jetty 6.x before 6.1.22 suffers from an escape sequence injection vuln ...) +CVE-2009-5047 + REJECTED - jetty 6.1.22-1 (unimportant; bug #553644) NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt NOTE: The affected apps are not shipped in the package, see #553644 diff --git a/data/CVE/2012.list b/data/CVE/2012.list index 7900eb7a49..28e497138d 100644 --- a/data/CVE/2012.list +++ b/data/CVE/2012.list @@ -5356,8 +5356,7 @@ CVE-2012-4525 [XSS in password.php] RESERVED - piwigo <removed> [squeeze] - piwigo <not-affected> (vulnerable code not present) -CVE-2012-4524 [xlockmore bypass] - RESERVED +CVE-2012-4524 (xlockmore before 5.43 'dclock' security bypass vulnerability ...) - xlockmore <removed> (low) CVE-2012-4523 (radsecproxy before 1.6.1 does not properly verify certificates when th ...) {DSA-2573-1} @@ -7844,8 +7843,7 @@ CVE-2012-3544 (Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not pr {DSA-2897-1 DSA-2725-1} - tomcat6 6.0.37 - tomcat7 7.0.30 -CVE-2012-3543 - RESERVED +CVE-2012-3543 (mono 2.10.x ASP.NET Web Form Hash collision DoS ...) - mono 2.10.8.1-7 (bug #686562) [squeeze] - mono <no-dsa> (Minor issue) CVE-2012-3542 (OpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and ...) @@ -8098,8 +8096,7 @@ CVE-2012-3462 CVE-2012-3461 (The (1) otrl_base64_otr_decode function in src/b64.c; (2) otrl_proto_d ...) {DSA-2526-1} - libotr 3.2.1-1 (medium; bug #684121) -CVE-2012-3460 - RESERVED +CVE-2012-3460 (cumin: At installation postgresql database user created without passwo ...) NOT-FOR-US: Cumin CVE-2012-3459 (Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realti ...) NOT-FOR-US: Cumin @@ -10860,8 +10857,7 @@ CVE-2012-2352 (The archive management (arc_manage) page in wwsympa/wwsympa.fcgi. CVE-2012-2351 (The default configuration of the auth/saml plugin in Mahara before 1.4 ...) {DSA-2467-1} - mahara 1.4.2-1 -CVE-2012-2350 [pam_shield default configuration does not take any action] - RESERVED +CVE-2012-2350 (pam_shield before 0.9.4: Default configuration does not perform protec ...) - pam-shield 0.9.2-3.3 (low; bug #658830) [squeeze] - pam-shield 0.9.2-3.3~squeeze1 CVE-2012-2349 @@ -11164,8 +11160,7 @@ CVE-2012-2240 (scripts/dscverify.pl in devscripts before 2.12.3 allows remote at CVE-2012-2239 (Mahara 1.4.x before 1.4.4 and 1.5.x before 1.5.3 allows remote attacke ...) {DSA-2591-1} - mahara 1.5.1-3 -CVE-2012-2238 - RESERVED +CVE-2012-2238 (trytond 2.4: ModelView.button fails to validate authorization ...) - tryton-server <not-affected> (only affected 2.4, in experimental) CVE-2012-2237 (Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x be ...) {DSA-2540-1} diff --git a/data/CVE/2013.list b/data/CVE/2013.list index 9ef71272ab..e189299238 100644 --- a/data/CVE/2013.list +++ b/data/CVE/2013.list @@ -919,11 +919,9 @@ CVE-2013-7174 (Absolute path traversal vulnerability in cgi-bin/jc.cgi in QNAP Q NOT-FOR-US: QNAP QTS CVE-2013-7173 RESERVED -CVE-2013-7172 - RESERVED +CVE-2013-7172 (Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permission ...) - libiodbc2 <not-affected> (RPATH issue slackware specific) -CVE-2013-7171 - RESERVED +CVE-2013-7171 (Slackware 14.0 and 14.1, and Slackware LLVM 3.0-i486-2 and 3.3-i486-2, ...) - llvm-2.9 <not-affected> (RPATH issue slackware specific) - llvm-3.0 <not-affected> (RPATH issue slackware specific) - llvm-3.1 <not-affected> (RPATH issue slackware specific) diff --git a/data/CVE/2014.list b/data/CVE/2014.list index efe3886c2f..78e2bcff0a 100644 --- a/data/CVE/2014.list +++ b/data/CVE/2014.list @@ -17144,8 +17144,7 @@ CVE-2014-3702 (Directory traversal vulnerability in eNovance eDeploy allows remo CVE-2014-3701 RESERVED - edeploy <itp> (bug #717664) -CVE-2014-3700 - RESERVED +CVE-2014-3700 (eDeploy through at least 2014-10-14 has remote code execution due to e ...) - edeploy <itp> (bug #717664) CVE-2014-3699 RESERVED @@ -22171,23 +22170,19 @@ CVE-2014-1869 (Multiple cross-site scripting (XSS) vulnerabilities in ZeroClipbo NOTE: in -doc package CVE-2014-1939 (java/android/webkit/BrowserFrame.java in Android before 4.4 uses the a ...) NOT-FOR-US: Android Jelly Bean -CVE-2014-1938 [insecure use of /tmp] - RESERVED +CVE-2014-1938 (python-rply before 0.7.4 insecurely creates temporary files. ...) - python-rply 0.7.4-1 (unimportant; bug #737627) NOTE: this CVE is for the insecure use of /tmp as followup for CVE-2014-1604 NOTE: https://github.com/alex/rply/issues/42 NOTE: Not exploitable with kernel hardening since wheezy -CVE-2014-1937 [insecure use of /tmp] - RESERVED +CVE-2014-1937 (Gamera before 3.4.1 insecurely creates temporary files. ...) - gamera 3.4.1-1 (low; bug #737324) [squeeze] - gamera <no-dsa> (Minor issue) [wheezy] - gamera 3.3.3-2+deb7u1 -CVE-2014-1936 [insecure use of /tmp] - RESERVED +CVE-2014-1936 (rc before 1.7.1-5 insecurely creates temporary files. ...) - rc 1.7.1-5 (unimportant; bug #737125) NOTE: Only in the test suite, not part of the standard package -CVE-2014-1935 [insecure use of /tmp] - RESERVED +CVE-2014-1935 (9base 1:6-6 and 1:6-7 insecurely creates temporary files which results ...) - 9base <unfixed> (unimportant; bug #737206) [squeeze] - 9base <no-dsa> (Minor issue) NOTE: Not exploitable with kernel hardening since wheezy @@ -26597,11 +26592,9 @@ CVE-2014-0086 (The doFilter function in webapp/PushHandlerFilter.java in JBoss R NOTE: https://issues.jboss.org/browse/RF-13250 CVE-2014-0085 (JBoss Fuse did not enable encrypted passwords by default in its usage ...) NOT-FOR-US: Fuse Fabric -CVE-2014-0084 - RESERVED +CVE-2014-0084 (Ruby gem openshift-origin-node before 2014-02-14 does not contain a cr ...) NOT-FOR-US: rubygem-openshift-origin-node -CVE-2014-0083 [SSHA passwords generated by the net-ldap Ruby gem use a weak salt] - RESERVED +CVE-2014-0083 (The Ruby net-ldap gem before 0.16.2 uses a weak salt when generating S ...) - ruby-net-ldap <not-affected> (SSHA support not present) NOTE: SSHA support only from version v0.5.0, see #742706 CVE-2014-0082 (actionpack/lib/action_view/template/text.rb in Action View in Ruby on ...) diff --git a/data/CVE/2018.list b/data/CVE/2018.list index 839e10f3ad..a735201a45 100644 --- a/data/CVE/2018.list +++ b/data/CVE/2018.list @@ -19076,8 +19076,8 @@ CVE-2018-13918 (kernel could return a received message length higher than expect CVE-2018-13917 RESERVED NOT-FOR-US: Qualcomm components for Android -CVE-2018-13916 - RESERVED +CVE-2018-13916 (Out-of-bounds memory access in Qurt kernel function when using the ide ...) + TODO: check CVE-2018-13915 RESERVED CVE-2018-13914 (Lack of input validation for data received from user space can lead to ...) @@ -31394,8 +31394,8 @@ CVE-2018-9197 RESERVED CVE-2018-9196 RESERVED -CVE-2018-9195 - RESERVED +CVE-2018-9195 (Use of a hardcoded cryptographic key in the FortiGuard services commun ...) + TODO: check CVE-2018-9194 (A plaintext recovery of encrypted messages or a Man-in-the-middle (MiT ...) NOT-FOR-US: Fortinet FortiOS CVE-2018-9193 (A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 ...) @@ -32147,8 +32147,8 @@ CVE-2018-8881 (Netwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over- NOTE: http://repo.or.cz/nasm.git/commit/3144e84add8b152cc7a71e44617ce6f21daa4ba3 (nasm-2.13.02rc3) CVE-2018-8880 (Lutron Quantum BACnet Integration 2.0 (firmware 3.2.243) doesn't check ...) NOT-FOR-US: Lutron Quantum BACnet Integration -CVE-2018-8879 - RESERVED +CVE-2018-8879 (Stack-based buffer overflow in Asuswrt-Merlin firmware for ASUS device ...) + TODO: check CVE-2018-8878 RESERVED CVE-2018-8877 diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 76d7a206af..a25670aee8 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -1,3 +1,105 @@ +CVE-2019-19197 (IOCTL Handling in the kyrld.sys driver in Kyrol Internet Security 9.0. ...) + TODO: check +CVE-2019-19196 + RESERVED +CVE-2019-19195 + RESERVED +CVE-2019-19194 + RESERVED +CVE-2019-19193 + RESERVED +CVE-2019-19192 + RESERVED +CVE-2019-19191 (Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file ...) + TODO: check +CVE-2019-19190 + RESERVED +CVE-2019-19189 + RESERVED +CVE-2019-19188 + RESERVED +CVE-2019-19187 + RESERVED +CVE-2019-19186 + RESERVED +CVE-2019-19185 + RESERVED +CVE-2019-19184 + RESERVED +CVE-2019-19183 + RESERVED +CVE-2019-19182 + RESERVED +CVE-2019-19181 + RESERVED +CVE-2019-19180 + RESERVED +CVE-2019-19179 + RESERVED +CVE-2019-19178 + RESERVED +CVE-2019-19177 + RESERVED +CVE-2019-19176 + RESERVED +CVE-2019-19175 + RESERVED +CVE-2019-19174 + RESERVED +CVE-2019-19173 + RESERVED +CVE-2019-19172 + RESERVED +CVE-2019-19171 + RESERVED +CVE-2019-19170 + RESERVED +CVE-2019-19169 + RESERVED +CVE-2019-19168 + RESERVED +CVE-2019-19167 + RESERVED +CVE-2019-19166 + RESERVED +CVE-2019-19165 + RESERVED +CVE-2019-19164 + RESERVED +CVE-2019-19163 + RESERVED +CVE-2019-19162 + RESERVED +CVE-2019-19161 + RESERVED +CVE-2019-19160 + RESERVED +CVE-2019-19159 + RESERVED +CVE-2019-19158 + RESERVED +CVE-2019-19157 + RESERVED +CVE-2019-19156 + RESERVED +CVE-2019-19155 + RESERVED +CVE-2019-19154 + RESERVED +CVE-2019-19153 + RESERVED +CVE-2019-19152 + RESERVED +CVE-2019-19151 + RESERVED +CVE-2019-19150 + RESERVED +CVE-2019-19149 + RESERVED +CVE-2019-19148 + RESERVED +CVE-2019-19147 + RESERVED CVE-2019-19146 RESERVED CVE-2019-19145 @@ -258,8 +360,8 @@ CVE-2019-19035 (jhead 3.03 is affected by: heap-based buffer over-read. The impa NOTE: Crash in CLI tool, no security impact CVE-2019-19034 RESERVED -CVE-2019-19033 - RESERVED +CVE-2019-19033 (Jalios JCMS 10 allows attackers to access any part of the website and ...) + TODO: check CVE-2019-19032 RESERVED CVE-2019-19031 @@ -317,8 +419,8 @@ CVE-2019-19008 RESERVED CVE-2019-19007 RESERVED -CVE-2019-19006 - RESERVED +CVE-2019-19006 (Sangoma FreePBX 115.0.16.26 and below, 14.0.13.11 and below, 13.0.197. ...) + TODO: check CVE-2019-19005 RESERVED CVE-2019-19004 @@ -415,8 +517,8 @@ CVE-2019-18960 RESERVED CVE-2019-18959 RESERVED -CVE-2019-18958 - RESERVED +CVE-2019-18958 (Nitro Pro before 13.2 creates a debug.log file in the directory where ...) + TODO: check CVE-2019-18957 (Microstrategy Library in MicroStrategy before 2019 before 11.1.3 has r ...) NOT-FOR-US: Microstrategy Library CVE-2019-18956 @@ -559,8 +661,7 @@ CVE-2019-18892 RESERVED CVE-2019-18891 RESERVED -CVE-2019-18890 [SQL injection] - RESERVED +CVE-2019-18890 (A SQL injection vulnerability in Redmine through 3.2.9 and 3.3.x befor ...) {DSA-4574-1} - redmine 3.4.2-1 NOTE: https://www.redmine.org/news/125 @@ -588,8 +689,7 @@ CVE-2019-18887 [Use constant time comparison in UriSigner] - symfony 4.3.8+dfsg-1 NOTE: https://symfony.com/blog/cve-2019-18887-use-constant-time-comparison-in-urisigner NOTE: https://github.com/symfony/symfony/commit/cccefe6a7f12e776df0665aeb77fe9294c285fbb -CVE-2019-18886 [Prevent user enumeration using switch user functionality] - RESERVED +CVE-2019-18886 (An issue was discovered in Symfony 4.2.0 to 4.2.11 and 4.3.0 to 4.3.7. ...) {DLA-1999-1} - symfony 4.3.8+dfsg-1 [buster] - symfony <not-affected> (Vulnerability introduced in 4.1.0) @@ -1823,8 +1923,8 @@ CVE-2019-18351 RESERVED CVE-2019-18350 (In Ant Design Pro 4.0.0, reflected XSS in the user/login redirect GET ...) NOT-FOR-US: Ant Design Pro -CVE-2019-18349 - RESERVED +CVE-2019-18349 (HotkeyP through 4.9 r96 allows privilege escalation in the privilege f ...) + TODO: check CVE-2019-18348 (An issue was discovered in urllib2 in Python 2.x through 2.7.17 and ur ...) - python3.8 <unfixed> (unimportant) - python3.7 <unfixed> (unimportant) @@ -3254,8 +3354,8 @@ CVE-2019-17652 RESERVED CVE-2019-17651 RESERVED -CVE-2019-17650 - RESERVED +CVE-2019-17650 (An Improper Neutralization of Special Elements used in a Command vulne ...) + TODO: check CVE-2019-17649 RESERVED CVE-2019-17648 @@ -3859,8 +3959,8 @@ CVE-2019-17423 RESERVED CVE-2019-17422 RESERVED -CVE-2019-17421 - RESERVED +CVE-2019-17421 (Incorrect file permissions on the packaged Nipper executable file in Z ...) + TODO: check CVE-2019-17420 (In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other prod ...) - libhtp 1:0.5.31-1 NOTE: https://github.com/OISF/libhtp/pull/213 @@ -4163,8 +4263,8 @@ CVE-2019-17274 RESERVED CVE-2019-17273 RESERVED -CVE-2019-17272 - RESERVED +CVE-2019-17272 (All versions of ONTAP Select Deploy administration utility are suscept ...) + TODO: check CVE-2019-17271 (vBulletin 5.5.4 allows SQL Injection via the ajax/api/hook/getHookList ...) NOT-FOR-US: vBulletin CVE-2019-17270 @@ -5331,8 +5431,8 @@ CVE-2019-16760 (Cargo prior to Rust 1.26.0 may download the wrong dependency if NOTE: https://rustsec.org/advisories/CVE-2019-16760.html CVE-2019-16759 (vBulletin 5.x through 5.5.4 allows remote command execution via the wi ...) NOT-FOR-US: vBulletin -CVE-2019-16758 - RESERVED +CVE-2019-16758 (In Lexmark Services Monitor 2.27.4.0.39 (running on TCP port 2070), a ...) + TODO: check CVE-2019-16757 RESERVED CVE-2019-16756 @@ -5793,38 +5893,27 @@ CVE-2019-16550 RESERVED CVE-2019-16549 RESERVED -CVE-2019-16548 - RESERVED +CVE-2019-16548 (A cross-site request forgery vulnerability in Jenkins Google Compute E ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16547 - RESERVED +CVE-2019-16547 (Missing permission checks in various API endpoints in Jenkins Google C ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16546 - RESERVED +CVE-2019-16546 (Jenkins Google Compute Engine Plugin 4.1.1 and earlier does not verify ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16545 - RESERVED +CVE-2019-16545 (Jenkins QMetry for JIRA - Test Management Plugin transmits credentials ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16544 - RESERVED +CVE-2019-16544 (Jenkins QMetry for JIRA - Test Management Plugin 1.12 and earlier stor ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16543 - RESERVED +CVE-2019-16543 (Jenkins Spira Importer Plugin 3.2.2 and earlier stores credentials une ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16542 - RESERVED +CVE-2019-16542 (Jenkins Anchore Container Image Scanner Plugin 1.0.19 and earlier stor ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16541 - RESERVED +CVE-2019-16541 (Jenkins JIRA Plugin 3.0.10 and earlier does not declare the correct (f ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16540 - RESERVED +CVE-2019-16540 (A path traversal vulnerability in Jenkins Support Core Plugin 2.63 and ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16539 - RESERVED +CVE-2019-16539 (A missing permission check in Jenkins Support Core Plugin 2.63 and ear ...) NOT-FOR-US: Jenkins plugin -CVE-2019-16538 - RESERVED +CVE-2019-16538 (A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.67 ...) NOT-FOR-US: Jenkins plugin CVE-2019-16537 RESERVED @@ -6101,10 +6190,10 @@ CVE-2019-16408 RESERVED CVE-2019-16407 (JetBrains ReSharper installers for versions before 2019.2 had a DLL Hi ...) NOT-FOR-US: JetBrains ReSharper installer -CVE-2019-16406 - RESERVED -CVE-2019-16405 - RESERVED +CVE-2019-16406 (Centreon Web 19.04.4 has weak permissions within the OVA (aka VMware v ...) + TODO: check +CVE-2019-16405 (Centreon Web 19.04.4 allows Remote Code Execution by an administrator ...) + TODO: check CVE-2019-16404 (Authenticated SQL Injection in interface/forms/eye_mag/js/eye_base.php ...) NOT-FOR-US: OpenEMR CVE-2019-16403 (In Webkul Bagisto before 0.1.5, the functionalities for customers to c ...) @@ -6262,8 +6351,8 @@ CVE-2019-16342 RESERVED CVE-2019-16341 RESERVED -CVE-2019-16340 - RESERVED +CVE-2019-16340 (Belkin Linksys Velop 1.1.8.192419 devices allows remote attackers to d ...) + TODO: check CVE-2019-16339 RESERVED CVE-2019-16338 @@ -7880,8 +7969,8 @@ CVE-2019-15706 RESERVED CVE-2019-15705 RESERVED -CVE-2019-15704 - RESERVED +CVE-2019-15704 (A clear text storage of sensitive information vulnerability in FortiCl ...) + TODO: check CVE-2019-15703 (An Insufficient Entropy in PRNG vulnerability in Fortinet FortiOS 6.2. ...) NOT-FOR-US: Fortinet CVE-2019-15702 (In the TCP implementation (gnrc_tcp) in RIOT through 2019.07, the pars ...) @@ -8312,8 +8401,8 @@ CVE-2019-15513 (An issue was discovered in OpenWrt libuci (aka Library for the U NOT-FOR-US: OpenWrt libuci CVE-2019-15512 RESERVED -CVE-2019-15511 - RESERVED +CVE-2019-15511 (An exploitable local privilege escalation vulnerability exists in the ...) + TODO: check CVE-2019-15510 RESERVED CVE-2019-15509 @@ -20775,8 +20864,8 @@ CVE-2019-10768 (In AngularJS before 1.7.9 the function `merge()` could be tricke [jessie] - angular.js <not-affected> (vulnerable code is not present, deep merging introduced later) NOTE: https://github.com/angular/angular.js/commit/add78e62004e80bb1e16ab2dfe224afa8e513bc3 NOTE: https://snyk.io/vuln/SNYK-JS-ANGULAR-534884 -CVE-2019-10767 - RESERVED +CVE-2019-10767 (An attacker can include file contents from outside the `/adapter/xxx/` ...) + TODO: check CVE-2019-10766 (Pixie versions 1.0.x before 1.0.3, and 2.0.x before 2.0.2 allow SQL In ...) TODO: check CVE-2019-10765 (iobroker.admin before 3.6.12 allows attacker to include file contents ...) @@ -21228,8 +21317,8 @@ CVE-2019-10629 RESERVED CVE-2019-10628 RESERVED -CVE-2019-10627 - RESERVED +CVE-2019-10627 (Integer overflow to buffer overflow vulnerability in PostScript image ...) + TODO: check CVE-2019-10626 RESERVED CVE-2019-10625 @@ -21248,8 +21337,8 @@ CVE-2019-10619 RESERVED CVE-2019-10618 RESERVED -CVE-2019-10617 - RESERVED +CVE-2019-10617 (Low privilege users can access service configuration which contains re ...) + TODO: check CVE-2019-10616 RESERVED CVE-2019-10615 @@ -21351,14 +21440,14 @@ CVE-2019-10568 RESERVED CVE-2019-10567 RESERVED -CVE-2019-10566 - RESERVED +CVE-2019-10566 (Buffer overflow can occur in wlan module if supported rates or extende ...) + TODO: check CVE-2019-10565 (Double free issue can happen when sensor power settings is freed by so ...) NOT-FOR-US: Snapdragon CVE-2019-10564 RESERVED -CVE-2019-10563 - RESERVED +CVE-2019-10563 (Buffer over-read can occur in fast message handler due to improper inp ...) + TODO: check CVE-2019-10562 RESERVED CVE-2019-10561 @@ -21416,8 +21505,8 @@ CVE-2019-10537 RESERVED CVE-2019-10536 RESERVED -CVE-2019-10535 - RESERVED +CVE-2019-10535 (Improper validation for loop variable received from firmware can lead ...) + TODO: check CVE-2019-10534 (Null-pointer dereference can occur while accessing the super index ent ...) NOT-FOR-US: Snapdragon CVE-2019-10533 (Out of bound access due to improper validation of array index cause th ...) @@ -21483,8 +21572,8 @@ CVE-2019-10505 (Out of bound access while processing a non-standard IE measureme NOT-FOR-US: Snapdragon CVE-2019-10504 (Firmware not able to send EXT scan response to host within 1 sec due t ...) NOT-FOR-US: Snapdragon -CVE-2019-10503 - RESERVED +CVE-2019-10503 (Out-of-bounds access can occur in camera driver due to improper valida ...) + TODO: check CVE-2019-10502 (Possible stack overflow when an index equal to io buffer size is acces ...) NOT-FOR-US: Snapdragon CVE-2019-10501 (Possible use after free issue due to improper input validation in volu ...) @@ -21510,16 +21599,16 @@ CVE-2019-10492 (Boot image not getting verified by AVB in Snapdragon Auto, Snapd NOT-FOR-US: Snapdragon CVE-2019-10491 (ADSP can be compromised since it`s a general-purpose CPU processing un ...) NOT-FOR-US: Snapdragon -CVE-2019-10490 - RESERVED +CVE-2019-10490 (Use after free issue in Xtra daemon shutdown due to static object inst ...) + TODO: check CVE-2019-10489 (Possible null-pointer dereference can occur while parsing avi clip dur ...) NOT-FOR-US: Snapdragon CVE-2019-10488 (Null pointer dereference can occur while parsing invalid chunks while ...) NOT-FOR-US: Snapdragon CVE-2019-10487 RESERVED -CVE-2019-10486 - RESERVED +CVE-2019-10486 (Race condition due to the lack of resource lock which will be concurre ...) + TODO: check CVE-2019-10485 RESERVED NOT-FOR-US: Qualcomm components for Android @@ -32371,8 +32460,8 @@ CVE-2019-6695 (Lack of root file system integrity checking in Fortinet FortiMana NOT-FOR-US: Fortinet CVE-2019-6694 RESERVED -CVE-2019-6693 - RESERVED +CVE-2019-6693 (Use of a hard-coded cryptographic key to cipher sensitive data in Fort ...) + TODO: check CVE-2019-6692 (A malicious DLL preload vulnerability in Fortinet FortiClient for Wind ...) NOT-FOR-US: Fortinet CVE-2019-6691 (phpwind 9.0.2.170426 UTF8 allows SQL Injection via the admin.php?m=bac ...) @@ -35207,8 +35296,8 @@ CVE-2019-5511 (VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) runni NOT-FOR-US: VMware CVE-2019-5510 RESERVED -CVE-2019-5509 - RESERVED +CVE-2019-5509 (ONTAP Select Deploy administration utility versions 2.11.2 through 2.1 ...) + TODO: check CVE-2019-5508 (Clustered Data ONTAP versions 9.2 through 9.6 are susceptible to a vul ...) NOT-FOR-US: Clustered Data ONTAP CVE-2019-5507 (SnapManager for Oracle prior to version 3.4.2P1 are susceptible to a v ...) @@ -36150,10 +36239,10 @@ CVE-2019-5089 (An exploitable memory corruption vulnerability exists in Investin NOT-FOR-US: Investintech CVE-2019-5088 (An exploitable memory corruption vulnerability exists in Investintech ...) NOT-FOR-US: Investintech -CVE-2019-5087 - RESERVED -CVE-2019-5086 - RESERVED +CVE-2019-5087 (An exploitable integer overflow vulnerability exists in the flattenInc ...) + TODO: check +CVE-2019-5086 (An exploitable integer overflow vulnerability exists in the flattenInc ...) + TODO: check CVE-2019-5085 RESERVED CVE-2019-5084 (An exploitable heap out-of-bounds write vulnerability exists in the TI ...) @@ -36180,10 +36269,10 @@ CVE-2019-5074 RESERVED CVE-2019-5073 RESERVED -CVE-2019-5072 - RESERVED -CVE-2019-5071 - RESERVED +CVE-2019-5072 (An exploitable command injection vulnerability exists in the /goform/W ...) + TODO: check +CVE-2019-5071 (An exploitable command injection vulnerability exists in the /goform/W ...) + TODO: check CVE-2019-5070 (An exploitable SQL injection vulnerability exists in the unauthenticat ...) NOT-FOR-US: eFront LMS CVE-2019-5069 (A code execution vulnerability exists in Epignosis eFront LMS v5.2.12. ...) @@ -42311,18 +42400,18 @@ CVE-2019-2341 (Buffer overflow when the audio buffer size provided by user is la NOT-FOR-US: Snapdragon CVE-2019-2340 RESERVED -CVE-2019-2339 - RESERVED +CVE-2019-2339 (Out of bound access due to lack of check of whiltelist array size whil ...) + TODO: check CVE-2019-2338 RESERVED NOT-FOR-US: Qualcomm components for Android CVE-2019-2337 RESERVED NOT-FOR-US: Qualcomm components for Android -CVE-2019-2336 - RESERVED -CVE-2019-2335 - RESERVED +CVE-2019-2336 (Subsequent use of the CBO listener may result in further memory corrup ...) + TODO: check +CVE-2019-2335 (While processing Attach Reject message, Valid exit condition is not me ...) + TODO: check CVE-2019-2334 (Null pointer dereferencing can happen when playing the clip with wrong ...) NOT-FOR-US: Qualcomm components for Android CVE-2019-2333 (Buffer overflow due to improper validation of buffer size while IPA dr ...) @@ -42333,8 +42422,8 @@ CVE-2019-2331 (Possible Integer overflow because of subtracting two integers wit NOT-FOR-US: Snapdragon CVE-2019-2330 (improper input validation in allocation request for secure allocations ...) NOT-FOR-US: Qualcomm components for Android -CVE-2019-2329 - RESERVED +CVE-2019-2329 (Use after free issue in cleanup routine due to missing pointer sanitiz ...) + TODO: check CVE-2019-2328 (Possible buffer overflow when number of channels passed is more than s ...) NOT-FOR-US: Qualcomm components for Android CVE-2019-2327 (Possible buffer overflow can occur when playing clip with incorrect el ...) @@ -42358,14 +42447,14 @@ CVE-2019-2320 CVE-2019-2319 RESERVED NOT-FOR-US: Qualcomm components for Android -CVE-2019-2318 - RESERVED +CVE-2019-2318 (Non Secure Kernel can cause Trustzone to do an arbitrary memory read w ...) + TODO: check CVE-2019-2317 RESERVED CVE-2019-2316 (When computing the digest a local variable is used after going out of ...) NOT-FOR-US: Snapdragon -CVE-2019-2315 - RESERVED +CVE-2019-2315 (While invoking the API to copy from fd or local buffer to the secure b ...) + TODO: check CVE-2019-2314 (Possible race condition that will cause a use-after-free when writing ...) NOT-FOR-US: Snapdragon CVE-2019-2313 @@ -42389,8 +42478,8 @@ CVE-2019-2305 (Out of bound access when reason code is extracted from frame data NOT-FOR-US: Qualcomm components for Android CVE-2019-2304 RESERVED -CVE-2019-2303 - RESERVED +CVE-2019-2303 (SNDCP module may access array out side its boundary when it receives m ...) + TODO: check CVE-2019-2302 (While processing vendor command which contains corrupted channel count ...) NOT-FOR-US: Snapdragon CVE-2019-2301 (Possibility of out-of-bound read if id received from SPI is not in ran ...) @@ -42401,12 +42490,12 @@ CVE-2019-2299 (An out-of-bound write can be triggered by a specially-crafted com NOT-FOR-US: Snapdragon CVE-2019-2298 (Protection is missing while accessing md sessions info via macro which ...) NOT-FOR-US: Snapdragon -CVE-2019-2297 - RESERVED +CVE-2019-2297 (Buffer overflow can occur while processing non-standard NAN message fr ...) + TODO: check CVE-2019-2296 RESERVED -CVE-2019-2295 - RESERVED +CVE-2019-2295 (Information disclosure due to lack of address range check done on the ...) + TODO: check CVE-2019-2294 (Usage of hard-coded magic number for calculating heap guard bytes can ...) NOT-FOR-US: Snapdragon CVE-2019-2293 (Pointer dereference while freeing IFE resources due to lack of length ...) @@ -42417,8 +42506,8 @@ CVE-2019-2291 RESERVED CVE-2019-2290 (Multiple open and close from multiple threads will lead camera driver ...) NOT-FOR-US: Snapdragon -CVE-2019-2289 - RESERVED +CVE-2019-2289 (Lack of integrity check allows MODEM to accept any NAS messages which ...) + TODO: check CVE-2019-2288 RESERVED NOT-FOR-US: Qualcomm components for Android @@ -42454,18 +42543,18 @@ CVE-2019-2273 (IOMMU page fault while playing h265 video file leads to denial of NOT-FOR-US: Snapdragon CVE-2019-2272 (Buffer overflow can occur in display function due to lack of validatio ...) NOT-FOR-US: Snapdragon -CVE-2019-2271 - RESERVED +CVE-2019-2271 (Buffer over read can happen while parsing downlink session management ...) + TODO: check CVE-2019-2270 RESERVED CVE-2019-2269 (Possible buffer overflow while processing the high level lim process a ...) NOT-FOR-US: Snapdragon -CVE-2019-2268 - RESERVED +CVE-2019-2268 (Possible OOB read issue in P2P action frames while handling WLAN manag ...) + TODO: check CVE-2019-2267 RESERVED -CVE-2019-2266 - RESERVED +CVE-2019-2266 (Possible double free issue in kernel while handling the camera sensor ...) + TODO: check CVE-2019-2265 RESERVED CVE-2019-2264 (Null pointer dereference occurs for channel context while opening glin ...) @@ -42494,8 +42583,8 @@ CVE-2019-2253 (Buffer over-read can occur while parsing an ogg file with a corru NOT-FOR-US: Qualcomm components for Android CVE-2019-2252 (Classic buffer overflow vulnerability while playing the specific video ...) NOT-FOR-US: Snapdragon -CVE-2019-2251 - RESERVED +CVE-2019-2251 (If a bitmap file is loaded from any un-authenticated source, there is ...) + TODO: check CVE-2019-2250 (Kernel can write to arbitrary memory address passed by user while free ...) NOT-FOR-US: Qualcomm components for Android CVE-2019-2249 (Kernel can do a memory read from arbitrary address passed by user duri ...) |