[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Thu Mar 5 08:10:28 GMT 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b27343c4 by security tracker role at 2020-03-05T08:10:20+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,151 @@
+CVE-2020-10122
+	RESERVED
+CVE-2020-10121
+	RESERVED
+CVE-2020-10120
+	RESERVED
+CVE-2020-10119
+	RESERVED
+CVE-2020-10118
+	RESERVED
+CVE-2020-10117
+	RESERVED
+CVE-2020-10116
+	RESERVED
+CVE-2020-10115
+	RESERVED
+CVE-2020-10114
+	RESERVED
+CVE-2020-10113
+	RESERVED
+CVE-2020-10112
+	RESERVED
+CVE-2020-10111
+	RESERVED
+CVE-2020-10110
+	RESERVED
+CVE-2020-10109
+	RESERVED
+CVE-2020-10108
+	RESERVED
+CVE-2020-10107
+	RESERVED
+CVE-2020-10106
+	RESERVED
+CVE-2020-10105 (An issue was discovered in Zammad 3.0 through 3.2. It returns source c ...)
+	TODO: check
+CVE-2020-10104 (An issue was discovered in Zammad 3.0 through 3.2. After authenticatio ...)
+	TODO: check
+CVE-2020-10103 (An XSS issue was discovered in Zammad 3.0 through 3.2. Malicious code  ...)
+	TODO: check
+CVE-2020-10102 (An issue was discovered in Zammad 3.0 through 3.2. The Forgot Password ...)
+	TODO: check
+CVE-2020-10101 (An issue was discovered in Zammad 3.0 through 3.2. The WebSocket serve ...)
+	TODO: check
+CVE-2020-10100 (An issue was discovered in Zammad 3.0 through 3.2. It allows for users ...)
+	TODO: check
+CVE-2020-10099 (An XSS issue was discovered in Zammad 3.0 through 3.2. Malicious code  ...)
+	TODO: check
+CVE-2020-10098 (An XSS issue was discovered in Zammad 3.0 through 3.2. Malicious code  ...)
+	TODO: check
+CVE-2020-10097 (An issue was discovered in Zammad 3.0 through 3.2. It may respond with ...)
+	TODO: check
+CVE-2020-10096 (An issue was discovered in Zammad 3.0 through 3.2. It does not prevent ...)
+	TODO: check
+CVE-2020-10095
+	RESERVED
+CVE-2020-10094
+	RESERVED
+CVE-2020-10093
+	RESERVED
+CVE-2020-10092
+	RESERVED
+CVE-2020-10091
+	RESERVED
+CVE-2020-10090
+	RESERVED
+CVE-2020-10089
+	RESERVED
+CVE-2020-10088
+	RESERVED
+CVE-2020-10087
+	RESERVED
+CVE-2020-10086
+	RESERVED
+CVE-2020-10085
+	RESERVED
+CVE-2020-10084
+	RESERVED
+CVE-2020-10083
+	RESERVED
+CVE-2020-10082
+	RESERVED
+CVE-2020-10081
+	RESERVED
+CVE-2020-10080
+	RESERVED
+CVE-2020-10079
+	RESERVED
+CVE-2020-10078
+	RESERVED
+CVE-2020-10077
+	RESERVED
+CVE-2020-10076
+	RESERVED
+CVE-2020-10075
+	RESERVED
+CVE-2020-10074
+	RESERVED
+CVE-2020-10073
+	RESERVED
+CVE-2020-10072
+	RESERVED
+CVE-2020-10071
+	RESERVED
+CVE-2020-10070
+	RESERVED
+CVE-2020-10069
+	RESERVED
+CVE-2020-10068
+	RESERVED
+CVE-2020-10067
+	RESERVED
+CVE-2020-10066
+	RESERVED
+CVE-2020-10065
+	RESERVED
+CVE-2020-10064
+	RESERVED
+CVE-2020-10063
+	RESERVED
+CVE-2020-10062
+	RESERVED
+CVE-2020-10061
+	RESERVED
+CVE-2020-10060
+	RESERVED
+CVE-2020-10059
+	RESERVED
+CVE-2020-10058
+	RESERVED
+CVE-2019-20498
+	RESERVED
+CVE-2019-20497
+	RESERVED
+CVE-2019-20496
+	RESERVED
+CVE-2019-20495
+	RESERVED
+CVE-2019-20494
+	RESERVED
+CVE-2019-20493
+	RESERVED
+CVE-2019-20492
+	RESERVED
+CVE-2019-20491
+	RESERVED
+CVE-2019-20490
+	RESERVED
 CVE-2020-10057 (GeniXCMS 1.1.7 is vulnerable to user privilege escalation due to broke ...)
 	NOT-FOR-US: GeniXCMS
 CVE-2020-10056
@@ -2175,8 +2323,8 @@ CVE-2020-9056
 	RESERVED
 CVE-2020-9055
 	RESERVED
-CVE-2020-9054
-	RESERVED
+CVE-2020-9054 (Multiple ZyXEL network-attached storage (NAS) devices running firmware ...)
+	TODO: check
 CVE-2020-9053
 	RESERVED
 CVE-2020-9052
@@ -3082,21 +3230,17 @@ CVE-2020-8666
 	RESERVED
 CVE-2020-8665
 	RESERVED
-CVE-2020-8664
-	RESERVED
+CVE-2020-8664 (CNCF Envoy through 1.13.0 has incorrect Access Control when using SDS  ...)
 	NOT-FOR-US: envoy proxy (not the same as itp'ed envoy, #758651)
 CVE-2020-8663
 	RESERVED
 CVE-2020-8662
 	RESERVED
-CVE-2020-8661
-	RESERVED
+CVE-2020-8661 (CNCF Envoy through 1.13.0 may consume excessive amounts of memory when ...)
 	NOT-FOR-US: envoy proxy (not the same as itp'ed envoy, #758651)
-CVE-2020-8660
-	RESERVED
+CVE-2020-8660 (CNCF Envoy through 1.13.0 TLS inspector bypass. TLS inspector could ha ...)
 	NOT-FOR-US: envoy proxy (not the same as itp'ed envoy, #758651)
-CVE-2020-8659
-	RESERVED
+CVE-2020-8659 (CNCF Envoy through 1.13.0 may consume excessive amounts of memory when ...)
 	NOT-FOR-US: envoy proxy (not the same as itp'ed envoy, #758651)
 CVE-2020-8658 (The BestWebSoft Htaccess plugin through 1.8.1 for WordPress allows wp- ...)
 	NOT-FOR-US: BestWebSoft Htaccess plugin for WordPress
@@ -6532,8 +6676,8 @@ CVE-2020-7132
 	RESERVED
 CVE-2020-7131
 	RESERVED
-CVE-2020-7130
-	RESERVED
+CVE-2020-7130 (HPE OneView Global Dashboard (OVGD) 1.9 has a remote information discl ...)
+	TODO: check
 CVE-2020-7129
 	RESERVED
 CVE-2020-7128
@@ -28228,10 +28372,10 @@ CVE-2019-17646
 	RESERVED
 CVE-2019-17645
 	RESERVED
-CVE-2019-17644
-	RESERVED
-CVE-2019-17643
-	RESERVED
+CVE-2019-17644 (An issue was discovered in Centreon before 2.8-30, 18.10-8, 19.04-5, a ...)
+	TODO: check
+CVE-2019-17643 (An issue was discovered in Centreon before 2.8-30,18.10-8, 19.04-5, an ...)
+	TODO: check
 CVE-2019-17642
 	RESERVED
 CVE-2019-17641



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b27343c40eef89739614981f767cab3425a3ab97

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b27343c40eef89739614981f767cab3425a3ab97
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200305/0e12bfb5/attachment.html>


More information about the debian-security-tracker-commits mailing list