[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Thu Jun 25 09:10:31 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
08b38d99 by security tracker role at 2020-06-25T08:10:22+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,41 @@
+CVE-2020-15046 (The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a  ...)
+	TODO: check
+CVE-2020-15045
+	RESERVED
+CVE-2020-15044
+	RESERVED
+CVE-2020-15043
+	RESERVED
+CVE-2020-15042
+	RESERVED
+CVE-2020-15041 (PHP-Fusion 9.03.60 allows XSS via the administration/site_links.php Ad ...)
+	TODO: check
+CVE-2020-15040
+	RESERVED
+CVE-2020-15039
+	RESERVED
+CVE-2020-15038 (The SeedProd coming-soon plugin before 5.1.1 for WordPress allows XSS. ...)
+	TODO: check
+CVE-2020-15037
+	RESERVED
+CVE-2020-15036
+	RESERVED
+CVE-2020-15035
+	RESERVED
+CVE-2020-15034
+	RESERVED
+CVE-2020-15033
+	RESERVED
+CVE-2020-15032
+	RESERVED
+CVE-2020-15031
+	RESERVED
+CVE-2020-15030
+	RESERVED
+CVE-2020-15029
+	RESERVED
+CVE-2020-15028
+	RESERVED
 CVE-2020-15027
 	RESERVED
 CVE-2020-15026 (Bludit 3.12.0 allows admins to use a /plugin-backup-download?file=../  ...)
@@ -46,8 +84,7 @@ CVE-2020-15007 (A buffer overflow in the M_LoadDefaults function in m_misc.c in
 	TODO: check
 CVE-2020-15006 (Bludit 3.12.0 allows stored XSS via JavaScript code in an SVG document ...)
 	NOT-FOR-US: Bludit
-CVE-2020-15005
-	RESERVED
+CVE-2020-15005 (In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34. ...)
 	- mediawiki 1:1.31.8-1
 	[buster] - mediawiki <postponed> (Minor issue)
 	[stretch] - mediawiki <postponed> (Minor issue)
@@ -4382,8 +4419,8 @@ CVE-2020-13249 (libmariadb/mariadb_lib.c in MariaDB Connector/C before 3.1.8 doe
 	NOTE: Introduced around: https://github.com/mariadb-corporation/mariadb-connector-c/commit/b4efe73c9e725f97b3550371f8a78a10a20bf2fd (v3.0-cc-server-integ-0)
 CVE-2020-13248 (BooleBox Secure File Sharing Utility (potentially all versions) allows ...)
 	NOT-FOR-US: BooleBox Secure File Sharing Utility
-CVE-2020-13247
-	RESERVED
+CVE-2020-13247 (BooleBox Secure File Sharing Utility (potentially all versions) allows ...)
+	TODO: check
 CVE-2020-13246 (An issue was discovered in Gitea through 1.11.5. An attacker can trigg ...)
 	- gitea <removed>
 CVE-2020-13245 (Certain NETGEAR devices are affected by Missing SSL Certificate Valida ...)
@@ -23554,14 +23591,14 @@ CVE-2020-5967
 	RESERVED
 CVE-2020-5966
 	RESERVED
-CVE-2020-5965
-	RESERVED
-CVE-2020-5964
-	RESERVED
-CVE-2020-5963
-	RESERVED
-CVE-2020-5962
-	RESERVED
+CVE-2020-5965 (NVIDIA Windows GPU Display Driver, all versions, contains a vulnerabil ...)
+	TODO: check
+CVE-2020-5964 (NVIDIA Windows GPU Display Driver, all versions, contains a vulnerabil ...)
+	TODO: check
+CVE-2020-5963 (NVIDIA Windows GPU Display Driver, all versions, contains a vulnerabil ...)
+	TODO: check
+CVE-2020-5962 (NVIDIA Windows GPU Display Driver, all versions, contains a vulnerabil ...)
+	TODO: check
 CVE-2020-5961 (NVIDIA vGPU graphics driver for guest OS contains a vulnerability in w ...)
 	NOT-FOR-US: NVIDIA vGPU graphics driver for guest OS
 CVE-2020-5960 (NVIDIA Virtual GPU Manager contains a vulnerability in the kernel modu ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08b38d991f0f463c186c1c7346c4295a2069a21c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08b38d991f0f463c186c1c7346c4295a2069a21c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200625/a3d6f707/attachment.html>

More information about the debian-security-tracker-commits mailing list