automatic update

5 files changed, 20 insertions, 18 deletions

diff --git a/data/CVE/2004.list b/data/CVE/2004.list
index 82e8f4ffec..aa0b151954 100644
--- a/data/CVE/2004.list
+++ b/data/CVE/2004.list
@@ -9,8 +9,7 @@ CVE-2004-2777 (GE Healthcare Centricity Image Vault 3.x has a password of (1) ge
 CVE-2004-XXXX [base-passwd: sets valid shells for system services]
 	- base-passwd 3.5.30 (unimportant; bug #274229)
 	NOTE: Hardening, not a direct vulnerability
-CVE-2004-2776
-	RESERVED
+CVE-2004-2776 (go.cgi in GoScript 2.0 allows remote attackers to execute arbitrary co ...)
 	NOT-FOR-US: Montitorix
 CVE-2004-2775
 	RESERVED
diff --git a/data/CVE/2011.list b/data/CVE/2011.list
index d2f103e37e..47d4dbd325 100644
--- a/data/CVE/2011.list
+++ b/data/CVE/2011.list
@@ -4320,8 +4320,7 @@ CVE-2011-3587 (Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in P
 	- zope2.12 2.12.20-2
 CVE-2011-3586
 	REJECTED
-CVE-2011-3585
-	RESERVED
+CVE-2011-3585 (Multiple race conditions in the (1) mount.cifs and (2) umount.cifs pro ...)
 	- samba 2:3.4.7~dfsg-2 (low)
 	- cifs-utils 2:4.5-1 (low)
 	NOTE: cifs-utils was split off from the samba source package with 2:3.4.7~dfsg-2, so marking it as fixed
diff --git a/data/CVE/2013.list b/data/CVE/2013.list
index 7a480ec569..18d13e1fb1 100644
--- a/data/CVE/2013.list
+++ b/data/CVE/2013.list
@@ -1329,11 +1329,9 @@ CVE-2013-7073 (The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.
 	NOTE: https://review.typo3.org/#/c/26180/
 CVE-2013-7072
 	REJECTED
-CVE-2013-7071
-	RESERVED
+CVE-2013-7071 (Cross-site scripting (XSS) vulnerability in the handle_request functio ...)
 	NOT-FOR-US: Monitorix
-CVE-2013-7070
-	RESERVED
+CVE-2013-7070 (The handle_request function in lib/HTTPServer.pm in Monitorix before 3 ...)
 	NOT-FOR-US: Monitorix
 CVE-2013-7062 [XSS]
 	RESERVED
diff --git a/data/CVE/2015.list b/data/CVE/2015.list
index c60fbcf268..509a382c1f 100644
--- a/data/CVE/2015.list
+++ b/data/CVE/2015.list
@@ -11286,19 +11286,15 @@ CVE-2015-5597
 	RESERVED
 CVE-2015-5596
 	RESERVED
-CVE-2015-5595
-	RESERVED
+CVE-2015-5595 (Cross-site request forgery (CSRF) vulnerability in admin.php in Zenpho ...)
 	NOT-FOR-US: Zenphoto
 CVE-2015-5594 (The sanitize_string function in ZenPhoto before 1.4.9 utilized the htm ...)
 	NOT-FOR-US: Zenphoto
-CVE-2015-5593
-	RESERVED
+CVE-2015-5593 (The sanitize_string function in Zenphoto before 1.4.9 does not properl ...)
 	NOT-FOR-US: Zenphoto
-CVE-2015-5592
-	RESERVED
+CVE-2015-5592 (Incomplete blacklist in sanitize_string in Zenphoto before 1.4.9 allow ...)
 	NOT-FOR-US: Zenphoto
-CVE-2015-5591
-	RESERVED
+CVE-2015-5591 (SQL injection vulnerability in Zenphoto before 1.4.9 allow remote admi ...)
 	NOT-FOR-US: Zenphoto
 CVE-2015-5588 (Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Win ...)
 	NOT-FOR-US: Adobe Flash Player
diff --git a/data/CVE/2019.list b/data/CVE/2019.list
index 74e8a0360e..f0eff8e18a 100644
--- a/data/CVE/2019.list
+++ b/data/CVE/2019.list
@@ -1,3 +1,13 @@
+CVE-2019-20202 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...)
+	TODO: check
+CVE-2019-20201 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The ezxml_parse_ ...)
+	TODO: check
+CVE-2019-20200 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...)
+	TODO: check
+CVE-2019-20199 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...)
+	TODO: check
+CVE-2019-20198 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...)
+	TODO: check
 CVE-2019-20197 (In Nagios XI 5.6.9, an authenticated user is able to execute arbitrary ...)
 	NOT-FOR-US: Nagios XI
 CVE-2019-20196
@@ -4079,8 +4089,8 @@ CVE-2019-18570
 	RESERVED
 CVE-2019-18569
 	RESERVED
-CVE-2019-18568
-	RESERVED
+CVE-2019-18568 (Avira Free Antivirus 15.0.1907.1514 is prone to a local privilege esca ...)
+	TODO: check
 CVE-2019-18567
 	RESERVED
 CVE-2019-18566