[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Fri Aug 28 21:10:28 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
08ea8b40 by security tracker role at 2020-08-28T20:10:20+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,309 @@
+CVE-2020-25014
+	RESERVED
+CVE-2020-25013
+	RESERVED
+CVE-2020-25012
+	RESERVED
+CVE-2020-25011
+	RESERVED
+CVE-2020-25010
+	RESERVED
+CVE-2020-25009
+	RESERVED
+CVE-2020-25008
+	RESERVED
+CVE-2020-25007
+	RESERVED
+CVE-2020-25006
+	RESERVED
+CVE-2020-25005
+	RESERVED
+CVE-2020-25004
+	RESERVED
+CVE-2020-25003
+	RESERVED
+CVE-2020-25002
+	RESERVED
+CVE-2020-25001
+	RESERVED
+CVE-2020-25000
+	RESERVED
+CVE-2020-24999
+	RESERVED
+CVE-2020-24998
+	RESERVED
+CVE-2020-24997
+	RESERVED
+CVE-2020-24996
+	RESERVED
+CVE-2020-24995
+	RESERVED
+CVE-2020-24994
+	RESERVED
+CVE-2020-24993
+	RESERVED
+CVE-2020-24992
+	RESERVED
+CVE-2020-24991
+	RESERVED
+CVE-2020-24990
+	RESERVED
+CVE-2020-24989
+	RESERVED
+CVE-2020-24988
+	RESERVED
+CVE-2020-24987
+	RESERVED
+CVE-2020-24986
+	RESERVED
+CVE-2020-24985
+	RESERVED
+CVE-2020-24984
+	RESERVED
+CVE-2020-24983
+	RESERVED
+CVE-2020-24982
+	RESERVED
+CVE-2020-24981
+	RESERVED
+CVE-2020-24980
+	RESERVED
+CVE-2020-24979
+	RESERVED
+CVE-2020-24978
+	RESERVED
+CVE-2020-24977
+	RESERVED
+CVE-2020-24976
+	RESERVED
+CVE-2020-24975
+	RESERVED
+CVE-2020-24974
+	RESERVED
+CVE-2020-24973
+	RESERVED
+CVE-2020-24972
+	RESERVED
+CVE-2020-24971
+	RESERVED
+CVE-2020-24970
+	RESERVED
+CVE-2020-24969
+	RESERVED
+CVE-2020-24968
+	RESERVED
+CVE-2020-24967
+	RESERVED
+CVE-2020-24966
+	RESERVED
+CVE-2020-24965
+	RESERVED
+CVE-2020-24964
+	RESERVED
+CVE-2020-24963
+	RESERVED
+CVE-2020-24962
+	RESERVED
+CVE-2020-24961
+	RESERVED
+CVE-2020-24960
+	RESERVED
+CVE-2020-24959
+	RESERVED
+CVE-2020-24958
+	RESERVED
+CVE-2020-24957
+	RESERVED
+CVE-2020-24956
+	RESERVED
+CVE-2020-24955
+	RESERVED
+CVE-2020-24954
+	RESERVED
+CVE-2020-24953
+	RESERVED
+CVE-2020-24952
+	RESERVED
+CVE-2020-24951
+	RESERVED
+CVE-2020-24950
+	RESERVED
+CVE-2020-24949
+	RESERVED
+CVE-2020-24948
+	RESERVED
+CVE-2020-24947
+	RESERVED
+CVE-2020-24946
+	RESERVED
+CVE-2020-24945
+	RESERVED
+CVE-2020-24944
+	RESERVED
+CVE-2020-24943
+	RESERVED
+CVE-2020-24942
+	RESERVED
+CVE-2020-24941
+	RESERVED
+CVE-2020-24940
+	RESERVED
+CVE-2020-24939
+	RESERVED
+CVE-2020-24938
+	RESERVED
+CVE-2020-24937
+	RESERVED
+CVE-2020-24936
+	RESERVED
+CVE-2020-24935
+	RESERVED
+CVE-2020-24934
+	RESERVED
+CVE-2020-24933
+	RESERVED
+CVE-2020-24932
+	RESERVED
+CVE-2020-24931
+	RESERVED
+CVE-2020-24930
+	RESERVED
+CVE-2020-24929
+	RESERVED
+CVE-2020-24928
+	RESERVED
+CVE-2020-24927
+	RESERVED
+CVE-2020-24926
+	RESERVED
+CVE-2020-24925
+	RESERVED
+CVE-2020-24924
+	RESERVED
+CVE-2020-24923
+	RESERVED
+CVE-2020-24922
+	RESERVED
+CVE-2020-24921
+	RESERVED
+CVE-2020-24920
+	RESERVED
+CVE-2020-24919
+	RESERVED
+CVE-2020-24918
+	RESERVED
+CVE-2020-24917
+	RESERVED
+CVE-2020-24916
+	RESERVED
+CVE-2020-24915
+	RESERVED
+CVE-2020-24914
+	RESERVED
+CVE-2020-24913
+	RESERVED
+CVE-2020-24912
+	RESERVED
+CVE-2020-24911
+	RESERVED
+CVE-2020-24910
+	RESERVED
+CVE-2020-24909
+	RESERVED
+CVE-2020-24908
+	RESERVED
+CVE-2020-24907
+	RESERVED
+CVE-2020-24906
+	RESERVED
+CVE-2020-24905
+	RESERVED
+CVE-2020-24904
+	RESERVED
+CVE-2020-24903
+	RESERVED
+CVE-2020-24902
+	RESERVED
+CVE-2020-24901
+	RESERVED
+CVE-2020-24900
+	RESERVED
+CVE-2020-24899
+	RESERVED
+CVE-2020-24898
+	RESERVED
+CVE-2020-24897
+	RESERVED
+CVE-2020-24896
+	RESERVED
+CVE-2020-24895
+	RESERVED
+CVE-2020-24894
+	RESERVED
+CVE-2020-24893
+	RESERVED
+CVE-2020-24892
+	RESERVED
+CVE-2020-24891
+	RESERVED
+CVE-2020-24890
+	RESERVED
+CVE-2020-24889
+	RESERVED
+CVE-2020-24888
+	RESERVED
+CVE-2020-24887
+	RESERVED
+CVE-2020-24886
+	RESERVED
+CVE-2020-24885
+	RESERVED
+CVE-2020-24884
+	RESERVED
+CVE-2020-24883
+	RESERVED
+CVE-2020-24882
+	RESERVED
+CVE-2020-24881
+	RESERVED
+CVE-2020-24880
+	RESERVED
+CVE-2020-24879
+	RESERVED
+CVE-2020-24878
+	RESERVED
+CVE-2020-24877
+	RESERVED
+CVE-2020-24876
+	RESERVED
+CVE-2020-24875
+	RESERVED
+CVE-2020-24874
+	RESERVED
+CVE-2020-24873
+	RESERVED
+CVE-2020-24872
+	RESERVED
+CVE-2020-24871
+	RESERVED
+CVE-2020-24870
+	RESERVED
+CVE-2020-24869
+	RESERVED
+CVE-2020-24868
+	RESERVED
+CVE-2020-24867
+	RESERVED
+CVE-2020-24866
+	RESERVED
+CVE-2020-24865
+	RESERVED
+CVE-2020-24864
+	RESERVED
+CVE-2020-24863
+	RESERVED
+CVE-2020-24862
+	RESERVED
 CVE-2020-XXXX [RUSTSEC-2020-0029: rgb: Allows viewing and modifying arbitrary structs as bytes]
 	- rust-rgb <unfixed>
 	NOTE: https://rustsec.org/advisories/RUSTSEC-2020-0029.html
@@ -16619,8 +16925,8 @@ CVE-2020-16612
 	RESERVED
 CVE-2020-16611
 	RESERVED
-CVE-2020-16610
-	RESERVED
+CVE-2020-16610 (Hoosk Codeigniter CMS before 1.7.2 is affected by a Cross Site Request ...)
+	TODO: check
 CVE-2020-16609
 	RESERVED
 CVE-2020-16608
@@ -20039,10 +20345,10 @@ CVE-2020-15167
 	RESERVED
 CVE-2020-15166
 	RESERVED
-CVE-2020-15165
-	RESERVED
-CVE-2020-15164
-	RESERVED
+CVE-2020-15165 (Version 1.1.6-free of Chameleon Mini Live Debugger on Google Play Stor ...)
+	TODO: check
+CVE-2020-15164 (in Scratch Login (MediaWiki extension) before version 1.1, any account ...)
+	TODO: check
 CVE-2020-15163
 	RESERVED
 CVE-2020-15162
@@ -36574,8 +36880,8 @@ CVE-2020-9300
 	RESERVED
 CVE-2020-9299
 	RESERVED
-CVE-2020-9298
-	RESERVED
+CVE-2020-9298 (The Spinnaker template resolution functionality is vulnerable to Serve ...)
+	TODO: check
 CVE-2020-9297 (Netflix Titus, all versions prior to version v0.1.1-rc.274, uses Java  ...)
 	NOT-FOR-US: Netflix Titus
 CVE-2020-9296 (Netflix Titus uses Java Bean Validation (JSR 380) custom constraint va ...)
@@ -48393,8 +48699,8 @@ CVE-2020-4593 (IBM Security Guardium Insights 2.0.1 stores user credentials in p
 	NOT-FOR-US: IBM
 CVE-2020-4592
 	RESERVED
-CVE-2020-4591
-	RESERVED
+CVE-2020-4591 (IBM Spectrum Protect Server 8.1.0.000 through 8.1.10.000 could disclos ...)
+	TODO: check
 CVE-2020-4590
 	RESERVED
 CVE-2020-4589 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a  ...)
@@ -48457,8 +48763,8 @@ CVE-2020-4561
 	RESERVED
 CVE-2020-4560 (IBM Financial Transaction Manager 3.2.4 is vulnerable to cross-site sc ...)
 	NOT-FOR-US: IBM
-CVE-2020-4559
-	RESERVED
+CVE-2020-4559 (IBM Spectrum Protect 7.1 and 8.1 could allow an attacker to cause a de ...)
+	TODO: check
 CVE-2020-4558
 	RESERVED
 CVE-2020-4557 (IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business ...)
@@ -56089,8 +56395,8 @@ CVE-2019-19501 (VeraCrypt 1.24 allows Local Privilege Escalation during executio
 	NOT-FOR-US: VeraCrypt
 CVE-2019-19500 (Matrix42 Workspace Management 9.1.2.2765 and below allows stored XSS v ...)
 	NOT-FOR-US: Matrix42 Workspace Management
-CVE-2019-19499
-	RESERVED
+CVE-2019-19499 (Grafana <= 6.4.3 has an Arbitrary File Read vulnerability, which co ...)
+	TODO: check
 CVE-2019-19498
 	RESERVED
 CVE-2019-19497 (MDaemon Email Server 17.5.1 allows XSS via the filename of an attachme ...)
@@ -62023,7 +62329,7 @@ CVE-2019-18394 (A Server Side Request Forgery (SSRF) vulnerability in FaviconSer
 CVE-2019-18393 (PluginServlet.java in Ignite Realtime Openfire through 4.4.2 does not  ...)
 	NOT-FOR-US: Ignite Realtime Openfire
 CVE-2019-18392
-	RESERVED
+	REJECTED
 CVE-2019-18391 (A heap-based buffer overflow in the vrend_renderer_transfer_write_iov  ...)
 	- virglrenderer 0.8.1-1 (bug #946942)
 	[buster] - virglrenderer <no-dsa> (Minor issue)
@@ -103671,8 +103977,8 @@ CVE-2019-4581 (IBM QRadar 7.3.0 to 7.3.2 Patch 4 is vulnerable to cross-site scr
 	NOT-FOR-US: IBM
 CVE-2019-4580
 	RESERVED
-CVE-2019-4579
-	RESERVED
+CVE-2019-4579 (IBM Resilient SOAR 38 uses incomplete blacklisting for input validatio ...)
+	TODO: check
 CVE-2019-4578
 	RESERVED
 CVE-2019-4577
@@ -103763,8 +104069,8 @@ CVE-2019-4535
 	RESERVED
 CVE-2019-4534
 	RESERVED
-CVE-2019-4533
-	RESERVED
+CVE-2019-4533 (IBM Resilient SOAR V38.0 users may experience a denial of service of t ...)
+	TODO: check
 CVE-2019-4532
 	RESERVED
 CVE-2019-4531



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08ea8b40f384ca8e484161b0fe3ac32c866c6e25

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08ea8b40f384ca8e484161b0fe3ac32c866c6e25
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200828/92aa5fd7/attachment.html>


More information about the debian-security-tracker-commits mailing list