[Git][security-tracker-team/security-tracker][master] 2 commits: Add temporary descriptions for xorg-server issues

Salvatore Bonaccorso carnil at debian.org
Tue Dec 1 17:08:58 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3989fc0b by Salvatore Bonaccorso at 2020-12-01T17:56:08+01:00
Add temporary descriptions for xorg-server issues

- - - - -
6f0078be by Salvatore Bonaccorso at 2020-12-01T18:08:25+01:00
Add Debian bug reference for new xorg-server issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11584,9 +11584,9 @@ CVE-2020-25713 [Out of bounds read leads to segfault in raptor_xml_writer_start_
 	[buster] - raptor2 <no-dsa> (Minor issue)
 	[stretch] - raptor2 <postponed> (Minor issue; reconsider when fixed upstream.)
 	NOTE: https://bugs.librdf.org/mantis/view.php?id=650
-CVE-2020-25712
+CVE-2020-25712 [Fix XkbSetDeviceInfo() and SetDeviceIndicators() heap overflows]
 	RESERVED
-	- xorg-server <unfixed>
+	- xorg-server <unfixed> (bug #976216)
 	NOTE: https://gitlab.freedesktop.org/xorg/xserver/-/commit/87c64fc5b0db9f62f4e361444f4b60501ebf67b9
 CVE-2020-25711
 	RESERVED
@@ -36307,9 +36307,9 @@ CVE-2020-14361 (A flaw was found in X.Org Server before xorg-x11-server 1.20.9.
 	- xorg-server 2:1.20.9-1
 	NOTE: https://lists.x.org/archives/xorg-announce/2020-August/003058.html
 	NOTE: https://gitlab.freedesktop.org/xorg/xserver/-/commit/144849ea27230962227e62a943b399e2ab304787
-CVE-2020-14360
+CVE-2020-14360 [Check SetMap request length carefully]
 	RESERVED
-	- xorg-server <unfixed>
+	- xorg-server <unfixed> (bug #976216)
 	NOTE: https://gitlab.freedesktop.org/xorg/xserver/-/commit/446ff2d3177087b8173fa779fa5b77a2a128988b
 CVE-2020-14359
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2755335bb41dd9923d7f5ea1c94164b379e9e5c6...6f0078bece636de855ee2e8ce4f9f1d50cbdbc6b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2755335bb41dd9923d7f5ea1c94164b379e9e5c6...6f0078bece636de855ee2e8ce4f9f1d50cbdbc6b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201201/9b443dea/attachment.html>

More information about the debian-security-tracker-commits mailing list