[Git][security-tracker-team/security-tracker][master] add various bugs

Moritz Muehlenhoff jmm at debian.org
Fri Jul 3 14:55:41 BST 2020



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b578a698 by Moritz Muehlenhoff at 2020-07-03T15:55:22+02:00
add various bugs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1226,14 +1226,14 @@ CVE-2020-14940 (An issue was discovered in io/gpx/GPXDocumentReader.java in TuxG
 	NOTE: https://logicaltrust.net/blog/2020/06/tuxguitar.html
 	NOTE: https://sourceforge.net/p/tuxguitar/bugs/126/
 CVE-2020-14939 (An issue was discovered in savestruct_internal.c in FreedroidRPG 1.0rc ...)
-	- freedroidrpg <unfixed> (low)
+	- freedroidrpg <unfixed> (low; bug #964197)
 	[buster] - freedroidrpg <no-dsa> (Minor issue)
 	[stretch] - freedroidrpg <no-dsa> (Minor issue)
 	[jessie] - freedroidrpg <end-of-life> (games are not supported)
 	NOTE: https://bugs.freedroid.org/b/issue953
 	NOTE: https://logicaltrust.net/blog/2020/02/freedroid.html
 CVE-2020-14938 (An issue was discovered in map.c in FreedroidRPG 1.0rc2. It assumes le ...)
-	- freedroidrpg <unfixed> (low)
+	- freedroidrpg <unfixed> (low; bug #964197)
 	[buster] - freedroidrpg <no-dsa> (Minor issue)
 	[stretch] - freedroidrpg <no-dsa> (Minor issue)
 	[jessie] - freedroidrpg <end-of-life> (games are not supported)
@@ -3115,7 +3115,7 @@ CVE-2020-14198
 CVE-2020-14197
 	RESERVED
 CVE-2020-14196 (In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1 ...)
-	- pdns-recursor <unfixed> (low)
+	- pdns-recursor <unfixed> (low; bug #964103)
 	[buster] - pdns-recursor <postponed> (Minor issue, fix along in next DSA)
 	[stretch] - pdns-recursor <postponed> (Minor issue, fix along in next DSA)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/07/01/1
@@ -16191,10 +16191,10 @@ CVE-2020-9500 (Some products of Dahua have Denial of Service vulnerabilities. Af
 CVE-2020-9499 (Some Dahua products have buffer overflow vulnerabilities. After the su ...)
 	NOT-FOR-US: Dahua
 CVE-2020-9498 (Apache Guacamole 1.1.0 and older may mishandle pointers involved inpro ...)
-	- guacamole-client <unfixed>
+	- guacamole-client <unfixed> (bug #964195)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/07/02/3
 CVE-2020-9497 (Apache Guacamole 1.1.0 and older do not properly validate datareceived ...)
-	- guacamole-client <unfixed>
+	- guacamole-client <unfixed> (bug #964195)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/07/02/2
 CVE-2020-9496
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b578a69856af8eb79c25a478f7febbf03a50de57

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b578a69856af8eb79c25a478f7febbf03a50de57
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200703/834b4aab/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list