[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Wed Apr 1 09:10:27 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
91b2e7f1 by security tracker role at 2020-04-01T08:10:20+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2020-11445 (TP-Link cloud cameras through 2020-02-09 allow remote attackers to byp ...)
+	TODO: check
+CVE-2020-11444
+	RESERVED
+CVE-2020-11443
+	RESERVED
 CVE-2020-11442
 	RESERVED
 CVE-2020-11441 (phpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astrin ...)
@@ -1789,8 +1795,7 @@ CVE-2020-10698
 CVE-2020-10697
 	RESERVED
 	NOT-FOR-US: Ansible Tower
-CVE-2020-10696
-	RESERVED
+CVE-2020-10696 (A path traversal flaw was found in Buildah in versions before 1.14.5.  ...)
 	- golang-github-containers-buildah <unfixed>
 	NOTE: https://github.com/containers/buildah/commit/c61925b8936e93a5e900f91b653a846f7ea3a9ed
 CVE-2020-10695
@@ -9599,8 +9604,8 @@ CVE-2020-7265
 	RESERVED
 CVE-2020-7264
 	RESERVED
-CVE-2020-7263
-	RESERVED
+CVE-2020-7263 (Improper access control vulnerability in ESConfigTool.exe in ENS for W ...)
+	TODO: check
 CVE-2020-7262
 	RESERVED
 CVE-2020-7261
@@ -10064,24 +10069,21 @@ CVE-2020-7068
 	RESERVED
 CVE-2020-7067
 	RESERVED
-CVE-2020-7066
-	RESERVED
+CVE-2020-7066 (In PHP versions 7.2.x below 7.2.9, 7.3.x below 7.3.16 and 7.4.x below  ...)
 	- php7.4 <unfixed>
 	- php7.3 <removed>
 	- php7.0 <removed>
 	- php5 <removed>
 	NOTE: Fixed in PHP 7.4.4, 7.3.16, 7.2.29
 	NOTE: PHP Bug: https://bugs.php.net/79329
-CVE-2020-7065
-	RESERVED
+CVE-2020-7065 (In PHP versions 7.3.x below 7.3.16 and 7.4.x below 7.4.34, while using ...)
 	- php7.4 <unfixed>
 	- php7.3 <removed>
 	- php7.0 <removed>
 	- php5 <removed>
 	NOTE: Fixed in PHP 7.4.4, 7.3.16
 	NOTE: PHP Bug: https://bugs.php.net/79371
-CVE-2020-7064
-	RESERVED
+CVE-2020-7064 (In PHP versions 7.2.x below 7.2.9, 7.3.x below 7.3.16 and 7.4.x below  ...)
 	- php7.4 <unfixed>
 	- php7.3 <removed>
 	- php7.0 <removed>
@@ -14020,8 +14022,8 @@ CVE-2020-5346
 	RESERVED
 CVE-2020-5345
 	RESERVED
-CVE-2020-5344
-	RESERVED
+CVE-2020-5344 (Dell EMC iDRAC7, iDRAC8 and iDRAC9 versions prior to 2.65.65.65, 2.70. ...)
+	TODO: check
 CVE-2020-5343
 	RESERVED
 CVE-2020-5342 (Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91b2e7f17fa3b521e1985323cc0ddee42eb2c4f8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91b2e7f17fa3b521e1985323cc0ddee42eb2c4f8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200401/d30ef765/attachment.html>


More information about the debian-security-tracker-commits mailing list