[Git][security-tracker-team/security-tracker][master] pixel advisory, potential linux, aom issues
Moritz Muehlenhoff
jmm at debian.org
Tue Dec 15 20:27:48 GMT 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d6bb872c by Moritz Muehlenhoff at 2020-12-15T21:27:12+01:00
pixel advisory, potential linux, aom issues
new flac issues
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -29,10 +29,10 @@ CVE-2020-35459
CVE-2020-35458
RESERVED
CVE-2020-35457 (** DISPUTED ** GNOME GLib before 2.65.3 has an integer overflow, that ...)
- - glib2.0 2.66.0-1 (unimportant)
- NOTE: https://gitlab.gnome.org/GNOME/glib/-/commit/63c5b62f0a984fac9a9700b12f54fe878e016a5d
- NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2197
- NOTE: Upstream position is that it is not realistically a security issue.
+ - glib2.0 2.66.0-1 (unimportant)
+ NOTE: https://gitlab.gnome.org/GNOME/glib/-/commit/63c5b62f0a984fac9a9700b12f54fe878e016a5d
+ NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2197
+ NOTE: Upstream position is that it is not realistically a security issue.
CVE-2020-35456
RESERVED
CVE-2020-35455
@@ -11662,7 +11662,8 @@ CVE-2020-27067 (In the l2tp subsystem, there is a possible use after free due to
- linux 4.15.4-1
[stretch] - linux 4.9.228-1
CVE-2020-27066 (In xfrm6_tunnel_free_spi of net/ipv6/xfrm6_tunnel.c, there is a possib ...)
- TODO: check
+ - linux <undetermined>
+ NOTE: https://source.android.com/security/bulletin/pixel/2020-12-01
CVE-2020-27065
RESERVED
CVE-2020-27064
@@ -11680,79 +11681,79 @@ CVE-2020-27059
CVE-2020-27058
RESERVED
CVE-2020-27057 (In getGpuStatsGlobalInfo and getGpuStatsAppInfo of GpuService.cpp, the ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-27056 (In SELinux policies of mls, there is a missing permission check. This ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27055 (In isSubmittable and showWarningMessagesIfAppropriate of WifiConfigCon ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27054 (In onFactoryReset of BluetoothManagerService.java, there is a missing ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27053 (In broadcastWifiCredentialChanged of ClientModeImpl.java, there is a p ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27052 (In getLockTaskLaunchMode of ActivityRecord.java, there is a possible w ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27051 (In NFA_RwI93WriteMultipleBlocks of nfa_rw_api.cc, there is a possible ...)
TODO: check
CVE-2020-27050 (In rw_i93_send_cmd_write_multi_blocks of rw_i93.cc, there is a possibl ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27049 (In rw_t3t_send_raw_frame of rw_t3t.cc, there is a possible out of boun ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27048 (In RW_SendRawFrame of rw_main.cc, there is a possible out of bounds wr ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27047 (In ce_t4t_update_binary of ce_t4t.cc, there is a possible out of bound ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27046 (In nfc_ncif_proc_ee_action of nfc_ncif.cc, there is a possible out of ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27045 (In CE_SendRawFrame of ce_main.cc, there is a possible out of bounds wr ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27044 (In restartWrite of Parcel.cpp, there is a possible memory corruption d ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27043 (In nfc_enabled of nfc_main.cc, there is a possible out of bounds read ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27042
RESERVED
CVE-2020-27041 (In showProvisioningNotification of ConnectivityService.java, there is ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27040 (In phNxpNciHal_core_initialized of phNxpNciHal.cc, there is a possible ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27039 (In postNotification of ServiceRecord.java, there is a possible permiss ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27038 (In process of C2SoftVorbisDec.cpp, there is a possible resource exhaus ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-27037 (In phNxpNciHal_core_initialized of phNxpNciHal.cc, there is a possible ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27036 (In phNxpNciHal_send_ext_cmd of phNxpNciHal_ext.cc, there is a possible ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27035 (In priorLinearAllocation of C2AllocatorIon.cpp, there is a possible us ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-27034 (In createSimSelectNotification of SimSelectNotification.java, there is ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27033 (In nfc_ncif_proc_get_routing of nfc_ncif.cc, there is a possible out o ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27032 (In getRadioAccessFamily of PhoneInterfaceManager.java, there is a poss ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27031 (In nfc_data_event of nfc_ncif.cc, there is a possible out of bounds re ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27030 (In onCreate of HandleApiCalls.java, there is a possible permission byp ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27029 (In TextView of TextView.java, there is a possible app hang due to impr ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27028 (In filter_incoming_event of hci_layer.cc, there is a possible out of b ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27027 (In nfc_ncif_proc_get_routing of nfc_ncif.cc, there is a possible out o ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27026 (During boot, the device unlock interface behaves differently depending ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27025 (In EapFailureNotifier.java and SimRequiredNotifier.java, there is a po ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27024 (In smp_br_state_machine_event of smp_br_main.cc, there is a possible o ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27023 (In setErrorPlaybackState of BluetoothMediaBrowserService.java, there i ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27022
RESERVED
CVE-2020-27021 (In avrc_ctrl_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible o ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-27020
RESERVED
CVE-2020-27019 (Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) 9.1 ...)
@@ -49024,6 +49025,7 @@ CVE-2020-11184 (u'Possible buffer overflow will occur in video while parsing mp4
NOT-FOR-US: Qualcomm components for Android
CVE-2020-11183
RESERVED
+ NOT-FOR-US: Qualcomm components for Android
CVE-2020-11182
RESERVED
CVE-2020-11181
@@ -49088,14 +49090,19 @@ CVE-2020-11153 (u'Out of bound memory access while processing GATT data received
NOT-FOR-US: Qualcomm components for Android
CVE-2020-11152
RESERVED
+ NOT-FOR-US: Qualcomm components for Android
CVE-2020-11151
RESERVED
+ NOT-FOR-US: Qualcomm components for Android
CVE-2020-11150
RESERVED
+ NOT-FOR-US: Qualcomm components for Android
CVE-2020-11149
RESERVED
+ NOT-FOR-US: Qualcomm components for Android
CVE-2020-11148
RESERVED
+ NOT-FOR-US: Qualcomm components for Android
CVE-2020-11147
RESERVED
CVE-2020-11146
@@ -65704,7 +65711,7 @@ CVE-2020-4851
CVE-2020-4850
RESERVED
CVE-2020-4849 (IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.19 Interim Fix 7 could ...)
- NOT-FOR-US: IBM
+ TODO: check
CVE-2020-4848
RESERVED
CVE-2020-4847
@@ -65911,7 +65918,7 @@ CVE-2020-4749 (IBM Spectrum Scale 5.0.0 through 5.0.5.2 does not set the secure
CVE-2020-4748 (IBM Spectrum Scale 5.0.0 through 5.0.5.2 is vulnerable to cross-site s ...)
NOT-FOR-US: IBM
CVE-2020-4747 (IBM Connect:Direct for UNIX 6.1.0, 6.0.0, 4.3.0, and 4.2.0 can allow a ...)
- NOT-FOR-US: IBM
+ TODO: check
CVE-2020-4746
RESERVED
CVE-2020-4745
@@ -80379,61 +80386,67 @@ CVE-2019-18194 (TotalAV 2020 4.14.31 has a quarantine flaw that allows privilege
CVE-2019-18193 (In Unisys Stealth (core) 3.4.108.0, 3.4.209.x, 4.0.027.x and 4.0.114, ...)
NOT-FOR-US: Unisys Stealth
CVE-2020-0500 (In startInputUncheckedLocked of InputMethodManager.java, there is a po ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0499 (In FLAC__bitreader_read_rice_signed_block of bitreader.c, there is a p ...)
- TODO: check
+ - flac <unfixed>
+ NOTE: https://android.googlesource.com/platform/external/flac/+/029048f823ced50f63a92e25073427ec3a9bd909%5E%21/#F0
+ NOTE: https://source.android.com/security/bulletin/pixel/2020-12-01
CVE-2020-0498 (In decode_packed_entry_number of codebook.c, there is a possible out o ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0497 (In canUseBiometric of BiometricServiceBase, there is a missing permiss ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0496 (In CPDF_RenderStatus::LoadSMask of cpdf_renderstatus.cpp, there is a p ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0495 (In decode_Huffman of JBig2_SddProc.cpp, there is a possible out of bou ...)
TODO: check
CVE-2020-0494 (In ih264d_parse_ave of ih264d_sei.c, there is a possible out of bounds ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0493 (In CPDF_SampledFunc::v_Call of cpdf_sampledfunc.cpp, there is a possib ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0492 (In BitstreamFillCache of bitstream.cpp, there is a possible out of bou ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0491 (In readBlock of MatroskaExtractor.cpp, there is a possible denial of s ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0490 (In floor1_info_unpack of floor1.c, there is a possible out of bounds r ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0489 (In Parse_data of eas_mdls.c, there is a possible out of bounds write d ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0488 (In ihevc_inter_pred_chroma_copy_ssse3 of ihevc_inter_pred_filters_ssse ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0487 (In read_metadata_vorbiscomment_ of stream_decoder.c, there is possible ...)
- TODO: check
+ - flac <unfixed>
+ NOTE: https://android.googlesource.com/platform/external/flac/+/706c378d541b5e54b108e06a863065d603433b54
+ NOTE: https://source.android.com/security/bulletin/pixel/2020-12-01
CVE-2020-0486 (In openAssetFileListener of ContactsProvider2.java, there is a possibl ...)
TODO: check
CVE-2020-0485 (In areFunctionsSupported of UsbBackend.java, there is a possible acces ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0484 (In destroyResources of ComposerClient.h, there is possible memory corr ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0483 (In DrmManagerService::~DrmManagerService() of DrmManagerService.cpp, t ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0482 (In command of IncidentService.cpp, there is a possible out of bounds r ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0481 (In AndroidManifest.xml, there is a possible permissions bypass. This c ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0480 (In callUnchecked of DocumentsProvider.java, there is a possible permis ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0479 (In callUnchecked of DocumentsProvider.java, there is a possible permis ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0478 (In extend_frame_lowbd of restoration.c, there is a possible out of bou ...)
- TODO: check
+ - libaom <undetermined>
+ NOTE: https://android.googlesource.com/platform/external/libaom/+/816f15265cb89a02d7ce4b657de277828e71a4b1
+ NOTE: https://source.android.com/security/bulletin/pixel/2020-12-01
CVE-2020-0477 (In sendLinkConfigurationChangedBroadcast of ClientModeImpl.java, there ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0476 (In onNotificationRemoved of Assistant.java, there is a possible leak o ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0475 (In createInputConsumer of WindowManagerService.java, there is a possib ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0474 (In HalCamera::requestNewFrame of HalCamera.cpp, there is a possible us ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0473 (In updateIncomingFileConfirmNotification of BluetoothOppNotification.j ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0472
RESERVED
CVE-2020-0471
@@ -80683,7 +80696,7 @@ CVE-2020-0370 (In libAACdec, there is a possible out of bounds read due to missi
CVE-2020-0369 (In libavb, there is a possible out of bounds write due to an integer o ...)
NOT-FOR-US: Android
CVE-2020-0368 (In queryInternal of CallLogProvider.java, there is a possible permissi ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0367 (There is a possible out of bounds write due to a missing bounds check. ...)
NOT-FOR-US: MediaTek components for Android
CVE-2020-0366 (In PackageInstaller, there is a possible permissions bypass due to a t ...)
@@ -80866,7 +80879,7 @@ CVE-2020-0282 (In NFC, there is a possible out of bounds read due to a missing b
CVE-2020-0281 (In NFC, there is a possible out of bounds read due to a missing bounds ...)
NOT-FOR-US: Android
CVE-2020-0280 (In nci_proc_ee_management_rsp of nci_hrcv.cc, there is a possible out ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2020-0279 (In the AAC parser, there is a possible out of bounds read due to a mis ...)
NOT-FOR-US: Android Media Framework
CVE-2020-0278 (There is a possible out of bounds write due to an incorrect bounds che ...)
@@ -80938,7 +80951,7 @@ CVE-2020-0246 (In getCarrierPrivilegeStatus of UiccAccessRule.java, there is a m
CVE-2020-0245 (In DecodeFrameCombinedMode of combined_decode.cpp, there is a possible ...)
NOT-FOR-US: Android Media framework
CVE-2020-0244 (In writeBurstBufferBytes of SPDIFEncoder.cpp, there is a possible out ...)
- TODO: check
+ NOT-FOR-US: Android media framework
CVE-2020-0243 (In clearPropValue of MediaAnalyticsItem.cpp, there is a possible use-a ...)
NOT-FOR-US: Android media framework
CVE-2020-0242 (In reset of NuPlayerDriver.cpp, there is a possible use-after-free due ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6bb872c975d8606bbbaccdcddf620cf0cce525d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6bb872c975d8606bbbaccdcddf620cf0cce525d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201215/e495778b/attachment.html>
More information about the debian-security-tracker-commits
mailing list