[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat Feb 1 20:10:41 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
82413c1a by security tracker role at 2020-02-01T20:10:34+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2020-8515 (DrayTek Vigor2960 1.3.1_Beta; Vigor3900 1.4.4_Beta; and Vigor300B 1.3. ...)
+	TODO: check
+CVE-2020-8514
+	RESERVED
+CVE-2020-8513
+	RESERVED
 CVE-2020-8512 (In IceWarp Webmail Server through 11.4.4.1, there is XSS in the /webma ...)
 	NOT-FOR-US: IceWarp Webmail Server
 CVE-2020-8511
@@ -15926,11 +15932,13 @@ CVE-2020-1933 (A XSS vulnerability was found in Apache NiFi 1.0.0 to 1.10.0. Mal
 CVE-2020-1932 (An information disclosure issue was found in Apache Superset 0.34.0, 0 ...)
 	NOT-FOR-US: Apache Superset
 CVE-2020-1931 (A command execution issue was found in Apache SpamAssassin prior to 3. ...)
+	{DSA-4615-1}
 	- spamassassin 3.4.4~rc1-1 (bug #950258)
 	NOTE: https://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.4.txt
 	NOTE: https://www.openwall.com/lists/oss-security/2020/01/30/2
 	NOTE: https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7784 (restricted)
 CVE-2020-1930 (A command execution issue was found in Apache SpamAssassin prior to 3. ...)
+	{DSA-4615-1}
 	- spamassassin 3.4.4~rc1-1 (bug #950258)
 	NOTE: https://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.4.txt
 	NOTE: https://www.openwall.com/lists/oss-security/2020/01/30/3
@@ -20878,6 +20886,7 @@ CVE-2019-18636 (A cross-site scripting (XSS) vulnerability in Jitbit .NET Forum
 CVE-2019-18635 (An issue was discovered in Mooltipass Moolticute through v0.42.1 and v ...)
 	NOT-FOR-US: Mooltipass Moolticute
 CVE-2019-18634 (In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users ...)
+	{DSA-4614-1}
 	- sudo <unfixed> (bug #950371)
 	[buster] - sudo <no-dsa> (EOF handling introduced in 1.8.26 prevents exploitation of bug)
 	NOTE: https://www.sudo.ws/alerts/pwfeedback.html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/82413c1a50947f2cf8ee767895b043fb0f4419ba

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/82413c1a50947f2cf8ee767895b043fb0f4419ba
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200201/5bc3eda2/attachment.html>

More information about the debian-security-tracker-commits mailing list