[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Wed Mar 18 08:10:35 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
084c98b9 by security tracker role at 2020-03-18T08:10:18+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,25 @@
+CVE-2020-10659 (Entrust Entelligence Security Provider (ESP) before 10.0.60 on Windows ...)
+	TODO: check
+CVE-2020-10658
+	RESERVED
+CVE-2020-10657
+	RESERVED
+CVE-2020-10656
+	RESERVED
+CVE-2020-10655
+	RESERVED
+CVE-2020-10654
+	RESERVED
+CVE-2020-10653
+	RESERVED
+CVE-2020-10652
+	RESERVED
+CVE-2020-10651
+	RESERVED
+CVE-2020-10650
+	RESERVED
+CVE-2019-20510 (rlm_eap/types/rlm_eap_pwd/eap_pwd.c in the EAP-pwd implementation in F ...)
+	TODO: check
 CVE-2020-10649
 	RESERVED
 CVE-2020-10648
@@ -4574,12 +4596,12 @@ CVE-2020-8602
 	RESERVED
 CVE-2020-8601 (Trend Micro Vulnerability Protection 2.0 is affected by a vulnerabilit ...)
 	NOT-FOR-US: Trend Micro
-CVE-2020-8600
-	RESERVED
-CVE-2020-8599
-	RESERVED
-CVE-2020-8598
-	RESERVED
+CVE-2020-8600 (Trend Micro Worry-Free Business Security (9.0, 9.5, 10.0) is affected  ...)
+	TODO: check
+CVE-2020-8599 (Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnera ...)
+	TODO: check
+CVE-2020-8598 (Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Sec ...)
+	TODO: check
 CVE-2020-8597 (eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overf ...)
 	{DSA-4632-1 DLA-2097-1}
 	- lwip 2.1.2+dfsg1-5 (bug #951291)
@@ -4869,14 +4891,14 @@ CVE-2020-8472
 	RESERVED
 CVE-2020-8471
 	RESERVED
-CVE-2020-8470
-	RESERVED
+CVE-2020-8470 (Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Sec ...)
+	TODO: check
 CVE-2020-8469 (Trend Micro Password Manager for Windows version 5.0 is affected by a  ...)
 	NOT-FOR-US: Trend Micro
-CVE-2020-8468
-	RESERVED
-CVE-2020-8467
-	RESERVED
+CVE-2020-8468 (Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Sec ...)
+	TODO: check
+CVE-2020-8467 (A migration tool component of Trend Micro Apex One (2019) and OfficeSc ...)
+	TODO: check
 CVE-2020-8466
 	RESERVED
 CVE-2020-8465
@@ -15988,8 +16010,8 @@ CVE-2020-3924 (DVR firmware in TAT-76 and TAT-77 series of products, provided by
 	NOT-FOR-US: DVR firmware in TAT-76 and TAT-77 series
 CVE-2020-3923 (DVR firmware in TAT-76 and TAT-77 series of products, provided by TONN ...)
 	NOT-FOR-US: DVR firmware in TAT-76 and TAT-77 series
-CVE-2020-3922
-	RESERVED
+CVE-2020-3922 (LisoMail, by ArmorX, allows SQL Injections, attackers can access the d ...)
+	TODO: check
 CVE-2020-3921
 	RESERVED
 CVE-2020-3920
@@ -47968,8 +47990,8 @@ CVE-2019-11941 (A remote code execution vulnerability was identified in HPE Inte
 	NOT-FOR-US: HPE
 CVE-2019-11940 (In the course of decompressing HPACK inside the HTTP2 protocol, an une ...)
 	NOT-FOR-US: Facebook Proxygen
-CVE-2019-11939
-	RESERVED
+CVE-2019-11939 (Golang Facebook Thrift servers would not error upon receiving messages ...)
+	TODO: check
 CVE-2019-11938 (Java Facebook Thrift servers would not error upon receiving messages d ...)
 	TODO: check
 CVE-2019-11937 (In Mcrouter prior to v0.41.0, a large struct input provided to the Car ...)
@@ -56175,7 +56197,8 @@ CVE-2019-9462 (In Bluetooth, there is a possible out of bounds read due to an in
 	NOT-FOR-US: Android
 CVE-2019-9461 (In the Android kernel in VPN routing there is a possible information d ...)
 	NOT-FOR-US: Android
-CVE-2019-9460 (In mediaserver, there is a possible out of bounds write due to a missi ...)
+CVE-2019-9460
+	REJECTED
 	NOT-FOR-US: Android Media Server
 CVE-2019-9459 (In libttspico, there is a possible OOB write due to a heap buffer over ...)
 	NOT-FOR-US: Android



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/084c98b98994283f60a55b8c75bb1b6b3ca6231c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/084c98b98994283f60a55b8c75bb1b6b3ca6231c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200318/e60ef8e2/attachment.html>

More information about the debian-security-tracker-commits mailing list