Index: security/vuxml/vuln.xml =================================================================== --- security/vuxml/vuln.xml +++ security/vuxml/vuln.xml @@ -58,6 +58,39 @@ * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> + + couchdb -- multiple vulnerabilities + + + databases/couchdb + 1.7.2 + + + + +

Apache CouchDB PMC reports:

+
Database Administrator could achieve privilege escalation to + the account that CouchDB runs under, by abusing insufficient validation + in the HTTP API, escaping security controls implemented in previous + releases.
+

+ + + + https://blog.couchdb.org/2018/07/10/cve-2018-8007/ + CVE-2018-8007 + https://blog.couchdb.org/2017/11/14/apache-couchdb-cve-2017-12635-and-cve-2017-12636/ + CVE-2017-12636 + CVE-2017-12635 + https://lists.apache.org/thread.html/6fa798e96686b7b0013ec2088140d00aeb7d34487d3f5ad032af6934@%3Cdev.couchdb.apache.org%3E + + + 2017-11-14 + 2018-07-10 + + + clamav -- multiple vulnerabilities