Security Advisory PAN-SA-2019-0015 is for MineMeld
Palo Alto Networks has published three Security Advisories https://securityadvisories.paloaltonetworks.com/.
PAN-SA-2019-00013– Information about TCP SACK Panic Findings in PAN-OS
• Severity = High
• Fixed in PAN-OS 7.1.24, PAN-OS 8.0.19, PAN-OS 8.1.8-h5 and PAN-OS 9.0.2-h4
• Affected Versions: PAN-OS 7.1.23 and earlier, PAN-OS 8.0.18 and earlier, PAN-OS 8.1.8-h4 and earlier and PAN-OS 9.0.2-h3 and earlier
• CVE-2019-5599, CVE-2019-11477, CVE-2019-11478 and CVE-2019-11479
PAN-SA-2019-00014– Code Injection Vulnerability in Traps
• Severity = Low
• Fixed in Traps 5.0.6 and later
• Affected Versions: Traps 5.0.5 and earlier, and all Traps 4.x releases
• CVE-2019-1577
PAN-SA-2019-00015– Cross Site Scripting (XSS) in MineMeld
• Severity = Low
• Fixed in Open Source Community Supported MineMeld version 0.9.62
• Affected Versions: Open Source Community Supported MineMeld version 0.9.61 and earlier
• CVE-2019-1578
Details of the issues, affected versions, and any mitigation information can be found in the Security Advisories at https://securityadvisories.paloaltonetworks.com/
.
If you have questions, please contact support https://www.paloaltonetworks.com/company/contact-support
.
Regards
,
Product Security Incident Response Team
Palo Alto Networks