diff options
author | security tracker role <sectracker@soriano.debian.org> | 2020-01-01 08:10:14 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2020-01-01 08:10:14 +0000 |
commit | 8a288807c43948231da53c69456d0daecdde6a0b (patch) | |
tree | 08a2d00a2e72713ec2ed997e61167407d7c3a1e2 /data | |
parent | 3e0b1a1f00706ddb1993a8a881b8afda344fa49e (diff) |
automatic update
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/2004.list | 3 | ||||
-rw-r--r-- | data/CVE/2011.list | 3 | ||||
-rw-r--r-- | data/CVE/2013.list | 6 | ||||
-rw-r--r-- | data/CVE/2015.list | 12 | ||||
-rw-r--r-- | data/CVE/2019.list | 14 |
5 files changed, 20 insertions, 18 deletions
diff --git a/data/CVE/2004.list b/data/CVE/2004.list index 82e8f4ffec..aa0b151954 100644 --- a/data/CVE/2004.list +++ b/data/CVE/2004.list @@ -9,8 +9,7 @@ CVE-2004-2777 (GE Healthcare Centricity Image Vault 3.x has a password of (1) ge CVE-2004-XXXX [base-passwd: sets valid shells for system services] - base-passwd 3.5.30 (unimportant; bug #274229) NOTE: Hardening, not a direct vulnerability -CVE-2004-2776 - RESERVED +CVE-2004-2776 (go.cgi in GoScript 2.0 allows remote attackers to execute arbitrary co ...) NOT-FOR-US: Montitorix CVE-2004-2775 RESERVED diff --git a/data/CVE/2011.list b/data/CVE/2011.list index d2f103e37e..47d4dbd325 100644 --- a/data/CVE/2011.list +++ b/data/CVE/2011.list @@ -4320,8 +4320,7 @@ CVE-2011-3587 (Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in P - zope2.12 2.12.20-2 CVE-2011-3586 REJECTED -CVE-2011-3585 - RESERVED +CVE-2011-3585 (Multiple race conditions in the (1) mount.cifs and (2) umount.cifs pro ...) - samba 2:3.4.7~dfsg-2 (low) - cifs-utils 2:4.5-1 (low) NOTE: cifs-utils was split off from the samba source package with 2:3.4.7~dfsg-2, so marking it as fixed diff --git a/data/CVE/2013.list b/data/CVE/2013.list index 7a480ec569..18d13e1fb1 100644 --- a/data/CVE/2013.list +++ b/data/CVE/2013.list @@ -1329,11 +1329,9 @@ CVE-2013-7073 (The Content Editing Wizards component in TYPO3 4.5.0 through 4.5. NOTE: https://review.typo3.org/#/c/26180/ CVE-2013-7072 REJECTED -CVE-2013-7071 - RESERVED +CVE-2013-7071 (Cross-site scripting (XSS) vulnerability in the handle_request functio ...) NOT-FOR-US: Monitorix -CVE-2013-7070 - RESERVED +CVE-2013-7070 (The handle_request function in lib/HTTPServer.pm in Monitorix before 3 ...) NOT-FOR-US: Monitorix CVE-2013-7062 [XSS] RESERVED diff --git a/data/CVE/2015.list b/data/CVE/2015.list index c60fbcf268..509a382c1f 100644 --- a/data/CVE/2015.list +++ b/data/CVE/2015.list @@ -11286,19 +11286,15 @@ CVE-2015-5597 RESERVED CVE-2015-5596 RESERVED -CVE-2015-5595 - RESERVED +CVE-2015-5595 (Cross-site request forgery (CSRF) vulnerability in admin.php in Zenpho ...) NOT-FOR-US: Zenphoto CVE-2015-5594 (The sanitize_string function in ZenPhoto before 1.4.9 utilized the htm ...) NOT-FOR-US: Zenphoto -CVE-2015-5593 - RESERVED +CVE-2015-5593 (The sanitize_string function in Zenphoto before 1.4.9 does not properl ...) NOT-FOR-US: Zenphoto -CVE-2015-5592 - RESERVED +CVE-2015-5592 (Incomplete blacklist in sanitize_string in Zenphoto before 1.4.9 allow ...) NOT-FOR-US: Zenphoto -CVE-2015-5591 - RESERVED +CVE-2015-5591 (SQL injection vulnerability in Zenphoto before 1.4.9 allow remote admi ...) NOT-FOR-US: Zenphoto CVE-2015-5588 (Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Win ...) NOT-FOR-US: Adobe Flash Player diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 74e8a0360e..f0eff8e18a 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -1,3 +1,13 @@ +CVE-2019-20202 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...) + TODO: check +CVE-2019-20201 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The ezxml_parse_ ...) + TODO: check +CVE-2019-20200 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...) + TODO: check +CVE-2019-20199 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...) + TODO: check +CVE-2019-20198 (An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...) + TODO: check CVE-2019-20197 (In Nagios XI 5.6.9, an authenticated user is able to execute arbitrary ...) NOT-FOR-US: Nagios XI CVE-2019-20196 @@ -4079,8 +4089,8 @@ CVE-2019-18570 RESERVED CVE-2019-18569 RESERVED -CVE-2019-18568 - RESERVED +CVE-2019-18568 (Avira Free Antivirus 15.0.1907.1514 is prone to a local privilege esca ...) + TODO: check CVE-2019-18567 RESERVED CVE-2019-18566 |