diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2020-03-31 20:10:23 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2020-03-31 20:10:23 +0000 |
| commit | fbb4d138a08c2d67139594fe7bdc0362de8e7c72 (patch) | |
| tree | e74560d59144cd48d9446c90c790efa26733a39b /data/CVE/2019.list | |
| parent | a15a483f83b420b1eba54226686dc3c0d22b6c59 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2019.list')
| -rw-r--r-- | data/CVE/2019.list | 19 |
1 files changed, 8 insertions, 11 deletions
diff --git a/data/CVE/2019.list b/data/CVE/2019.list index ffa155f248..83c8a6791f 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -14288,8 +14288,7 @@ CVE-2019-14907 (All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 an NOTE: https://www.samba.org/samba/security/CVE-2019-14907.html CVE-2019-14906 (A flaw was found with the RHSA-2019:3950 erratum, where it did not fix ...) NOT-FOR-US: Specific CVE assignment for incorrect/incomplete fix of CVE-2019-13616 in RHEL 7 -CVE-2019-14905 [malicious code could craft filename in nxos_file_copy module] - RESERVED +CVE-2019-14905 (A vulnerability was found in Ansible Engine versions 2.9.x before 2.9. ...) - ansible 2.9.4+dfsg-1 (low) [buster] - ansible <no-dsa> (Minor issue) [stretch] - ansible <no-dsa> (Minor issue) @@ -14390,10 +14389,9 @@ CVE-2019-14882 (A vulnerability was found in Moodle 3.7 to 3.7.3, 3.6 to 3.6.7, - moodle <removed> CVE-2019-14881 (A vulnerability was found in moodle 3.7 to 3.7.2 and before 3.7.3, whe ...) - moodle <removed> -CVE-2019-14880 - RESERVED +CVE-2019-14880 (A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 bef ...) - moodle <removed> -CVE-2019-14879 (moodle before versions 3.7.3, 3.6.7, 3.5.9 is vulnerable to a None. ...) +CVE-2019-14879 (A vulnerability was found in Moodle versions 3.7.x before 3.7.3, 3.6.x ...) - moodle <removed> CVE-2019-14878 (In the __d2b function of the newlib libc library, all versions prior t ...) - newlib 3.3.0-1 @@ -18273,8 +18271,8 @@ CVE-2019-13497 (One Identity Cloud Access Manager before 8.1.4 Hotfix 1 allows C NOT-FOR-US: One Identity Cloud Access Manager CVE-2019-13496 (One Identity Cloud Access Manager before 8.1.4 Hotfix 1 allows OTP byp ...) NOT-FOR-US: One Identity Cloud Access Manager -CVE-2019-13495 - RESERVED +CVE-2019-13495 (In firmware version 4.50 of Zyxel XGS2210-52HP, multiple stored cross- ...) + TODO: check CVE-2019-13494 (nodeimp.exe in Castle Rock SNMPc before 9.0.12.1 and 10.x before 10.0. ...) NOT-FOR-US: Castle Rock SNMPc CVE-2019-13493 (In Sitecore 9.0 rev 171002, Persistent XSS exists in the Media Library ...) @@ -27269,8 +27267,7 @@ CVE-2019-10181 (It was found that in icedtea-web up to and including 1.7.2 and 1 NOTE: https://www.openwall.com/lists/oss-security/2019/07/31/2 NOTE: https://github.com/AdoptOpenJDK/IcedTea-Web/commit/32d174def953d801eb1cfc9d989bff5e80aac3cd (1.7) NOTE: https://github.com/AdoptOpenJDK/IcedTea-Web/commit/528cb8163b7053576a658b9602b5694b21957b0e (1.8) -CVE-2019-10180 - RESERVED +CVE-2019-10180 (A vulnerability was found in all pki-core 10.x.x version, where the To ...) - dogtag-pki <unfixed> NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1721137 CVE-2019-10179 (A vulnerability was found in all pki-core 10.x.x versions, where the K ...) @@ -47185,8 +47182,8 @@ CVE-2019-2393 RESERVED CVE-2019-2392 RESERVED -CVE-2019-2391 - RESERVED +CVE-2019-2391 (Incorrect parsing of certain JSON input may result in js-bson not corr ...) + TODO: check CVE-2019-2390 (An unprivileged user or program on Microsoft Windows which can create ...) NOT-FOR-US: Microsoft CVE-2019-2389 (Incorrect scoping of kill operations in MongoDB Server's packaged SysV ...) |