[Git][security-tracker-team/security-tracker][master] buster/stretch triage

Moritz Muehlenhoff jmm at debian.org
Wed Jun 24 17:02:11 BST 2020 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
18cea0cc by Moritz Muehlenhoff at 2020-06-24T18:01:48+02:00
buster/stretch triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -120,6 +120,8 @@ CVE-2020-14941
 	RESERVED
 CVE-2020-14940 (An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar  ...)
 	- tuxguitar <unfixed>
+	[buster] - tuxguitar <no-dsa> (Minor issue)
+	[stretch] - tuxguitar <no-dsa> (Minor issue)
 	[jessie] - tuxguitar <no-dsa> (Minor issue)
 	NOTE: https://logicaltrust.net/blog/2020/06/tuxguitar.html
 	NOTE: https://sourceforge.net/p/tuxguitar/bugs/126/
@@ -10633,19 +10635,31 @@ CVE-2020-11099 (In FreeRDP before version 2.1.2, there is an out of bounds read
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-977w-866x-4v5h
 CVE-2020-11098 (In FreeRDP before version 2.1.2, there is an out-of-bound read in glyp ...)
 	- freerdp2 <unfixed>
+	[buster] - freerdp2 <no-dsa> (Minor issue)
 	- freerdp <removed>
+	[buster] - freerdp <no-dsa> (Minor issue)
+	[stretch] - freerdp <no-dsa> (Minor issue)
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jr57-f58x-hjmv
 CVE-2020-11097 (In FreeRDP before version 2.1.2, an out of bounds read occurs resultin ...)
 	- freerdp2 <unfixed>
+	[buster] - freerdp2 <no-dsa> (Minor issue)
 	- freerdp <removed>
+	[buster] - freerdp <no-dsa> (Minor issue)
+	[stretch] - freerdp <no-dsa> (Minor issue)
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-c8x2-c3c9-9r3f
 CVE-2020-11096 (In FreeRDP before version 2.1.2, there is a global OOB read in update_ ...)
 	- freerdp2 <unfixed>
+	[buster] - freerdp2 <no-dsa> (Minor issue)
 	- freerdp <removed>
+	[buster] - freerdp <no-dsa> (Minor issue)
+	[stretch] - freerdp <no-dsa> (Minor issue)
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mjw7-3mq2-996x
 CVE-2020-11095 (In FreeRDP before version 2.1.2, an out of bound reads occurs resultin ...)
 	- freerdp2 <unfixed>
+	[buster] - freerdp2 <no-dsa> (Minor issue)
 	- freerdp <removed>
+	[buster] - freerdp <no-dsa> (Minor issue)
+	[stretch] - freerdp <no-dsa> (Minor issue)
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-563r-pvh7-4fw2
 CVE-2020-11094 (The October CMS debugbar plugin before version 3.1.0 contains a featur ...)
 	NOT-FOR-US: October CMS
@@ -28006,19 +28020,31 @@ CVE-2020-4034
 	RESERVED
 CVE-2020-4033 (In FreeRDP before version 2.1.2, there is an out of bounds read in RLE ...)
 	- freerdp2 <unfixed>
+	[buster] - freerdp2 <no-dsa> (Minor issue)
 	- freerdp <removed>
+	[buster] - freerdp <no-dsa> (Minor issue)
+	[stretch] - freerdp <no-dsa> (Minor issue)
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-7rhj-856w-82p8
 CVE-2020-4032 (In FreeRDP before version 2.1.2, there is an integer casting vulnerabi ...)
 	- freerdp2 <unfixed>
+	[buster] - freerdp2 <no-dsa> (Minor issue)
 	- freerdp <removed>
+	[buster] - freerdp <no-dsa> (Minor issue)
+	[stretch] - freerdp <no-dsa> (Minor issue)
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-3898-mc89-x2vc
 CVE-2020-4031 (In FreeRDP before version 2.1.2, there is a use-after-free in gdi_Sele ...)
 	- freerdp2 <unfixed>
+	[buster] - freerdp2 <no-dsa> (Minor issue)
 	- freerdp <removed>
+	[buster] - freerdp <no-dsa> (Minor issue)
+	[stretch] - freerdp <no-dsa> (Minor issue)
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-gwcq-hpq2-m74g
 CVE-2020-4030 (In FreeRDP before version 2.1.2, there is an out of bounds read in Tri ...)
 	- freerdp2 <unfixed>
+	[buster] - freerdp2 <no-dsa> (Minor issue)
 	- freerdp <removed>
+	[buster] - freerdp <no-dsa> (Minor issue)
+	[stretch] - freerdp <no-dsa> (Minor issue)
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-fjr5-97f5-qq98
 CVE-2020-4029
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18cea0ccab7f707d3a0f6af4d08d92f76d5e94a2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/18cea0ccab7f707d3a0f6af4d08d92f76d5e94a2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200624/992c69ba/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list