[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Fri Aug 14 09:10:25 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1648d365 by security tracker role at 2020-08-14T08:10:17+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,15 @@
+CVE-2020-24355
+	RESERVED
+CVE-2020-24354
+	RESERVED
+CVE-2020-24353
+	RESERVED
+CVE-2020-24352
+	RESERVED
+CVE-2020-24351
+	RESERVED
+CVE-2020-24350
+	RESERVED
 CVE-2020-24349 (njs through 0.4.3, used in NGINX, allows control-flow hijack in njs_va ...)
 	TODO: check
 CVE-2020-24348 (njs through 0.4.3, used in NGINX, has an out-of-bounds read in njs_jso ...)
@@ -17225,7 +17237,7 @@ CVE-2020-15826 (In JetBrains TeamCity before 2020.1, users are able to assign mo
 	NOT-FOR-US: JetBrains TeamCity
 CVE-2020-15825 (In JetBrains TeamCity before 2020.1, users with the Modify Group permi ...)
 	NOT-FOR-US: JetBrains TeamCity
-CVE-2020-15824 (In JetBrains Kotlin before 1.4.0, there is a script-cache privilege es ...)
+CVE-2020-15824 (In JetBrains Kotlin from 1.4-M1 to 1.4-RC (as Kotlin 1.3.70 is not aff ...)
 	- kotlin <itp> (bug #892842)
 CVE-2020-15823 (JetBrains YouTrack before 2020.2.8873 is vulnerable to SSRF in the Wor ...)
 	NOT-FOR-US: JetBrains YouTrack
@@ -40162,8 +40174,8 @@ CVE-2019-20385 (The CSV upload feature in /supervisor/procesa_carga.php on Logar
 	NOT-FOR-US: Logaritmo Aware CallManager 2012 devices
 CVE-2019-20384 (Gentoo Portage through 2.3.84 allows local users to place a Trojan hor ...)
 	NOT-FOR-US: Portage
-CVE-2019-20383
-	RESERVED
+CVE-2019-20383 (ABBYY network license server in ABBYY FineReader 15 before Release 4 ( ...)
+	TODO: check
 CVE-2019-20382 (QEMU 4.1.0 has a memory leak in zrle_compress_data in ui/vnc-enc-zrle. ...)
 	{DSA-4665-1 DLA-2288-1}
 	- qemu 1:4.2-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1648d365035fc7dd3ce67ab723c736207c224297

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1648d365035fc7dd3ce67ab723c736207c224297
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200814/63a14510/attachment.html>

More information about the debian-security-tracker-commits mailing list