[Git][security-tracker-team/security-tracker][master] Add CVE-2020-10174/timeshift

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
440c534b by Salvatore Bonaccorso at 2020-03-06T23:04:28+01:00
Add CVE-2020-10174/timeshift

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -46,7 +46,10 @@ CVE-2020-10176
 CVE-2020-10175
 	RESERVED
 CVE-2020-10174 (init_tmp in TeeJee.FileSystem.vala in Timeshift before 20.03 unsafely  ...)
-	TODO: check
+	- timeshift <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2020/03/06/3
+	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1165802
+	NOTE: https://github.com/teejee2008/timeshift/commit/335b3d5398079278b8f7094c77bfd148b315b462
 CVE-2020-10173 (Comtrend VR-3033 DE11-416SSG-C01_R02.A2pvI042j1.d26m devices have Mult ...)
 	NOT-FOR-US: Comtrend VR-3033 DE11-416SSG-C01_R02.A2pvI042j1.d26m devices
 CVE-2020-10172



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/440c534b75056b24071fe515fb50f7d6e79e9943

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/440c534b75056b24071fe515fb50f7d6e79e9943
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200306/1cd49f97/attachment.html>