[Git][security-tracker-team/security-tracker][master] automatic update

Thu Dec 10 20:10:43 GMT 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
84cf3720 by security tracker role at 2020-12-10T20:10:27+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2020-29670
+	RESERVED
+CVE-2020-29669
+	RESERVED
+CVE-2020-29668 (Sympa before 6.2.59b.2 allows remote attackers to obtain full SOAP API ...)
+	TODO: check
 CVE-2021-2485
 	RESERVED
 CVE-2021-2484
@@ -998,10 +1004,10 @@ CVE-2021-1987
 	RESERVED
 CVE-2021-1986
 	RESERVED
-CVE-2020-29667
-	RESERVED
-CVE-2020-29666
-	RESERVED
+CVE-2020-29667 (In Lan ATMService M3 ATM Monitoring System 6.1.0, a remote attacker ab ...)
+	TODO: check
+CVE-2020-29666 (In Lan ATMService M3 ATM Monitoring System 6.1.0, due to a directory-l ...)
+	TODO: check
 CVE-2020-29665
 	RESERVED
 CVE-2020-29664
@@ -54190,10 +54196,10 @@ CVE-2020-8922
 	RESERVED
 CVE-2020-8921
 	RESERVED
-CVE-2020-8920
-	RESERVED
-CVE-2020-8919
-	RESERVED
+CVE-2020-8920 (An information leak vulnerability exists in Gerrit versions prior to 2 ...)
+	TODO: check
+CVE-2020-8919 (An information leak vulnerability exists in Gerrit versions prior to 2 ...)
+	TODO: check
 CVE-2020-8918 (An improperly initialized 'migrationAuth' value in Google's go-tpm TPM ...)
 	NOT-FOR-US: go-tpm TPM1.2 library
 CVE-2020-8917
@@ -97393,7 +97399,7 @@ CVE-2019-12906
 	RESERVED
 CVE-2019-12905 (FileRun 2019.05.21 allows XSS via the filename to the ?module=fileman& ...)
 	NOT-FOR-US: FileRun
-CVE-2019-12904 (In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flu ...)
+CVE-2019-12904 (** DISPUTED ** In Libgcrypt 1.8.4, the C implementation of AES is vuln ...)
 	NOTE: Issue disputed by libgcrypt upstream, see https://dev.gnupg.org/T4541
 CVE-2019-12903 (Pydio Cells before 1.5.0, when supplied with a Name field in an unexpe ...)
 	NOT-FOR-US: Pydio Cells (relates to Pydio product)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/84cf37208cac5c6325b02d69b5291398bf82ac00

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/84cf37208cac5c6325b02d69b5291398bf82ac00
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201210/46aaabe3/attachment.html>
