» 2019 » 10월

CVE-2016-8381

Posted on 2019년 10월 31일2019년 10월 31일 by admin

CVE-2016-8381

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2016. Notes: none.

Source: CVE-2016-8381

CVE-2017-16350

Posted on 2019년 10월 31일2019년 10월 31일 by admin

CVE-2017-16350

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none.

Source: CVE-2017-16350

CVE-2016-9047

Posted on 2019년 10월 31일2019년 10월 31일 by admin

CVE-2016-9047

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2016. Notes: none.

Source: CVE-2016-9047

CVE-2016-9046

Posted on 2019년 10월 31일2019년 10월 31일 by admin

CVE-2016-9046

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2016. Notes: none.

Source: CVE-2016-9046

CVE-2011-2186

Posted on 2019년 10월 31일2019년 10월 31일 by admin

CVE-2011-2186

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

Source: CVE-2011-2186

CVE-2017-14456

Posted on 2019년 10월 31일2019년 10월 31일 by admin

CVE-2017-14456

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none.

Source: CVE-2017-14456

CVE-2018-5742

Posted on 2019년 10월 30일2019년 10월 31일 by admin

CVE-2018-5742

While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 -> bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also be affected.

Source: CVE-2018-5742

CVE-2019-7620

Posted on 2019년 10월 30일2019년 10월 31일 by admin

CVE-2019-7620

Logstash versions before 7.4.1 and 6.8.4 contain a denial of service flaw in the Logstash Beats input plugin. An unauthenticated user who is able to connect to the port the Logstash beats input could send a specially crafted network packet that would cause Logstash to stop responding.

Source: CVE-2019-7620

CVE-2018-5735

Posted on 2019년 10월 30일2019년 10월 31일 by admin

CVE-2018-5735

The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858; Affects Debian versions 9.9.5.dfsg-9+deb8u15; 9.9.5.dfsg-9+deb8u18; 9.10.3.dfsg.P4-12.3+deb9u5; 9.11.5.P4+dfsg-5.1 No ISC releases are affected. Other packages from other distributions who did similar backports for the fix for 2017-3137 may also be affected.

Source: CVE-2018-5735

CVE-2019-7619

Posted on 2019년 10월 30일2019년 10월 31일 by admin

CVE-2019-7619

Elasticsearch versions 7.0.0-7.3.2 and 6.7.0-6.8.3 contain a username disclosure flaw was found in the API Key service. An unauthenticated attacker could send a specially crafted request and determine if a username exists in the Elasticsearch native realm.

Source: CVE-2019-7619