[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Fri Feb 28 08:16:25 GMT 2020



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
466610d7 by Moritz Muehlenhoff at 2020-02-28T09:15:58+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13370,25 +13370,25 @@ CVE-2020-3880
 CVE-2020-3879
 	RESERVED
 CVE-2020-3878 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3877 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3876
 	RESERVED
 CVE-2020-3875 (A validation issue was addressed with improved input sanitization. Thi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3874 (An issued existed in the naming of screenshots. The issue was correcte ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3873 (This issue was addressed with improved setting propagation. This issue ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3872 (A memory initialization issue was addressed with improved memory handl ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3871 (A memory corruption issue was addressed with improved memory handling. ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3870 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3869 (An issue existed in the handling of the local user's self-view. The is ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3868 (Multiple memory corruption issues were addressed with improved memory  ...)
 	{DSA-4627-1}
 	- webkit2gtk 2.26.4-1
@@ -13404,7 +13404,7 @@ CVE-2020-3867 (A logic issue was addressed with improved state management. This
 	- wpewebkit 2.26.4-1
 	NOTE: https://webkitgtk.org/security/WSA-2020-0002.html
 CVE-2020-3866 (This was addressed with additional checks by Gatekeeper on files mount ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3865 (Multiple memory corruption issues were addressed with improved memory  ...)
 	{DSA-4627-1}
 	- webkit2gtk 2.26.4-1
@@ -13430,23 +13430,23 @@ CVE-2020-3862 (A denial of service issue was addressed with improved memory hand
 	- wpewebkit 2.26.4-1
 	NOTE: https://webkitgtk.org/security/WSA-2020-0002.html
 CVE-2020-3861 (The issue was addressed with improved permissions logic. This issue is ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3860 (A memory corruption issue was addressed with improved input validation ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3859 (An inconsistent user interface issue was addressed with improved state ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3858 (A memory corruption issue was addressed with improved memory handling. ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3857 (A memory corruption issue was addressed with improved memory handling. ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3856 (A memory corruption issue was addressed with improved input validation ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3855
 	RESERVED
 CVE-2020-3854 (A memory corruption issue was addressed with improved memory handling. ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3853 (A type confusion issue was addressed with improved memory handling. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3852
 	RESERVED
 CVE-2020-3851
@@ -13460,49 +13460,49 @@ CVE-2020-3848
 CVE-2020-3847
 	RESERVED
 CVE-2020-3846 (A buffer overflow was addressed with improved size validation. This is ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3845 (A memory corruption issue was addressed with improved memory handling. ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3844 (This issue was addressed with improved checks. This issue is fixed in  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3843 (A memory corruption issue was addressed with improved input validation ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3842 (A memory corruption issue was addressed with improved memory handling. ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3841 (The issue was addressed with improved UI handling. This issue is fixed ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3840 (An off by one issue existed in the handling of racoon configuration fi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3839 (A validation issue was addressed with improved input sanitization. Thi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3838 (The issue was addressed with improved permissions logic. This issue is ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3837 (A memory corruption issue was addressed with improved memory handling. ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3836 (An access issue was addressed with improved memory management. This is ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3835 (A validation issue existed in the handling of symlinks. This issue was ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3834 (A memory corruption issue was addressed with improved state management ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3833 (An inconsistent user interface issue was addressed with improved state ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3832
 	RESERVED
 CVE-2020-3831 (A race condition was addressed with improved locking. This issue is fi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3830 (A validation issue existed in the handling of symlinks. This issue was ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3829 (An out-of-bounds read was addressed with improved bounds checking. Thi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3828 (A lock screen issue allowed access to contacts on a locked device. Thi ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3827 (A memory corruption issue was addressed with improved input validation ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3826 (An out-of-bounds read was addressed with improved input validation. Th ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2020-3825 (Multiple memory corruption issues were addressed with improved memory  ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2019-19890 (An issue was discovered on Humax Wireless Voice Gateway HGB10R-2 20160 ...)
 	NOT-FOR-US: Humax Wireless Voice Gateway HGB10R-2 20160817_1855 devices
 CVE-2019-19889 (An issue was discovered on Humax Wireless Voice Gateway HGB10R-2 20160 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/466610d794f3d359d0327c4542e0b4d430b6bc32

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/466610d794f3d359d0327c4542e0b4d430b6bc32
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200228/a2e42994/attachment.html>


More information about the debian-security-tracker-commits mailing list