From 16db53fd9d0ff17b10ba01905503882052d61558 Mon Sep 17 00:00:00 2001 From: security tracker role Date: Sun, 31 Oct 2021 08:10:18 +0000 Subject: automatic update --- data/CVE/2017.list | 1 + data/CVE/2018.list | 9 +++++---- data/CVE/2019.list | 4 ++-- 3 files changed, 8 insertions(+), 6 deletions(-) diff --git a/data/CVE/2017.list b/data/CVE/2017.list index 89acfdb445..15d9ba2657 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -45511,6 +45511,7 @@ CVE-2017-2890 (An exploitable vulnerability exists in the /api/CONFIG/restore fu CVE-2017-2889 (An exploitable Denial of Service vulnerability exists in the API daemo ...) NOT-FOR-US: Circle with Disney CVE-2017-2888 (An exploitable integer overflow vulnerability exists when creating a n ...) + {DLA-1714-2} - libsdl2 2.0.6+dfsg1-4 (bug #878264) [stretch] - libsdl2 (Minor issue) [jessie] - libsdl2 (Minor issue) diff --git a/data/CVE/2018.list b/data/CVE/2018.list index e4e1a02c18..95a80e17a1 100644 --- a/data/CVE/2018.list +++ b/data/CVE/2018.list @@ -7667,13 +7667,13 @@ CVE-2018-18523 CVE-2018-18522 RESERVED CVE-2018-18521 (Divide-by-zero vulnerabilities in the function arlib_add_symbols() in ...) - {DLA-1689-1} + {DLA-2802-1 DLA-1689-1} - elfutils 0.175-1 (low; bug #911413) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=23786 NOTE: https://sourceware.org/ml/elfutils-devel/2018-q4/msg00055.html NOTE: https://sourceware.org/git/?p=elfutils.git;a=commit;h=2b16a9be69939822dcafe075413468daac98b327 CVE-2018-18520 (An Invalid Memory Address Dereference exists in the function elf_end i ...) - {DLA-1689-1} + {DLA-2802-1 DLA-1689-1} - elfutils 0.175-1 (low; bug #911414) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=23787 NOTE: https://sourceware.org/ml/elfutils-devel/2018-q4/msg00057.html @@ -8317,7 +8317,7 @@ CVE-2018-18311 (Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflo NOTE: Introduced by: https://perl5.git.perl.org/perl.git/commitdiff/e658793210bbe632a5e80a876acfcd0984c46b87 NOTE: maint-5.28: https://perl5.git.perl.org/perl.git/commitdiff/0589f071dc6836de80b24fd798c3336c72ead850 CVE-2018-18310 (An invalid memory address dereference was discovered in dwfl_segment_r ...) - {DLA-1689-1} + {DLA-2802-1 DLA-1689-1} - elfutils 0.175-1 (bug #911083) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=23752 NOTE: https://sourceware.org/ml/elfutils-devel/2018-q4/msg00022.html @@ -13271,6 +13271,7 @@ CVE-2018-16403 (libdw in elfutils 0.173 checks the end of the attributes list in NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=23529 NOTE: https://sourceware.org/git/?p=elfutils.git;a=commit;h=6983e59b727458a6c64d9659c85f08218bc4fcda CVE-2018-16402 (libelf/elf_end.c in elfutils 0.173 allows remote attackers to cause a ...) + {DLA-2802-1} - elfutils 0.175-1 (low) [jessie] - elfutils (vulnerable code introduced later) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=23528 @@ -14110,7 +14111,7 @@ CVE-2018-16064 (Insufficient data validation in Extensions API in Google Chrome CVE-2018-16063 RESERVED CVE-2018-16062 (dwarf_getaranges in dwarf_getaranges.c in libdw in elfutils before 201 ...) - {DLA-1689-1} + {DLA-2802-1 DLA-1689-1} - elfutils 0.175-1 (bug #907562) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=23541 NOTE: https://sourceware.org/git/?p=elfutils.git;a=commit;h=29e31978ba51c1051743a503ee325b5ebc03d7e9 diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 3c9b2cbc2e..07593a23dc 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -36301,7 +36301,7 @@ CVE-2019-7667 (Prima Systems FlexAir, Versions 2.3.38 and prior. The application CVE-2019-7666 (Prima Systems FlexAir, Versions 2.3.38 and prior. The application allo ...) NOT-FOR-US: Prima Systems FlexAir devices CVE-2019-7665 (In elfutils 0.175, a heap-based buffer over-read was discovered in the ...) - {DLA-1689-1} + {DLA-2802-1 DLA-1689-1} - elfutils 0.176-1 (low; bug #921880) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=24089 NOTE: https://sourceware.org/ml/elfutils-devel/2019-q1/msg00049.html @@ -37797,7 +37797,7 @@ CVE-2019-7151 (A NULL pointer dereference was discovered in wasm::Module::getFun NOTE: https://github.com/WebAssembly/binaryen/commit/2127e64f42da55bb5b9b0ab1995b3ca7fc4e0d0b NOTE: https://github.com/WebAssembly/binaryen/commit/85e95e315a8023c46eb804fe80ebc244bcfdae3e CVE-2019-7150 (An issue was discovered in elfutils 0.175. A segmentation fault can oc ...) - {DLA-1689-1} + {DLA-2802-1 DLA-1689-1} - elfutils 0.176-1 (low; bug #920909) NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=24103 NOTE: https://sourceware.org/ml/elfutils-devel/2019-q1/msg00070.html -- cgit v1.2.3