[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Mon Feb 3 08:10:24 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2706349b by security tracker role at 2020-02-03T08:10:16+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20,8 +20,8 @@ CVE-2020-8510
 	RESERVED
 CVE-2020-8509
 	RESERVED
-CVE-2020-8508
-	RESERVED
+CVE-2020-8508 (nsak64.sys in Norman Malware Cleaner 2.08.08 allows users to call arbi ...)
+	TODO: check
 CVE-2020-8507
 	RESERVED
 CVE-2020-8506
@@ -3234,7 +3234,7 @@ CVE-2020-7040 (storeBackup.pl in storeBackup through 3.5 relies on the /tmp/stor
 	NOTE: https://www.openwall.com/lists/oss-security/2020/01/20/3
 	NOTE: SuSE provided patch: https://www.openwall.com/lists/oss-security/2020/01/20/3/1
 CVE-2020-7039 (tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, misman ...)
-	{DLA-2090-1 DLA-2076-1}
+	{DSA-4616-1 DLA-2090-1 DLA-2076-1}
 	- libslirp 4.1.0-2 (bug #949084)
 	- qemu 1:4.1-2
 	- qemu-kvm <removed>
@@ -29282,7 +29282,7 @@ CVE-2019-15893 (Sonatype Nexus Repository Manager 2.x before 2.14.15 allows Remo
 CVE-2019-15891 (An issue was discovered in CKFinder through 2.6.2.1 and 3.x through 3. ...)
 	NOT-FOR-US: CKFinder
 CVE-2019-15890 (libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reas ...)
-	{DLA-1927-1}
+	{DSA-4616-1 DLA-1927-1}
 	- slirp4netns 0.4.1-1 (bug #939868)
 	[buster] - slirp4netns <no-dsa> (Minor issue)
 	- qemu 1:4.1-2 (bug #939869)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2706349b007d548db217e54faab8aa60fadf5dd7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2706349b007d548db217e54faab8aa60fadf5dd7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200203/8caf8d7e/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list