[Git][security-tracker-team/security-tracker][master] automatic update

Mon Mar 23 08:10:21 GMT 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1a13ce1e by security tracker role at 2020-03-23T08:10:14+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,273 @@
+CVE-2020-10855
+	RESERVED
+CVE-2020-10854
+	RESERVED
+CVE-2020-10853
+	RESERVED
+CVE-2020-10852
+	RESERVED
+CVE-2020-10851
+	RESERVED
+CVE-2020-10850
+	RESERVED
+CVE-2020-10849
+	RESERVED
+CVE-2020-10848
+	RESERVED
+CVE-2020-10847
+	RESERVED
+CVE-2020-10846
+	RESERVED
+CVE-2020-10845
+	RESERVED
+CVE-2020-10844
+	RESERVED
+CVE-2020-10843
+	RESERVED
+CVE-2020-10842
+	RESERVED
+CVE-2020-10841
+	RESERVED
+CVE-2020-10840
+	RESERVED
+CVE-2020-10839
+	RESERVED
+CVE-2020-10838
+	RESERVED
+CVE-2020-10837
+	RESERVED
+CVE-2020-10836
+	RESERVED
+CVE-2020-10835
+	RESERVED
+CVE-2020-10834
+	RESERVED
+CVE-2020-10833
+	RESERVED
+CVE-2020-10832
+	RESERVED
+CVE-2020-10831
+	RESERVED
+CVE-2020-10830
+	RESERVED
+CVE-2020-10829
+	RESERVED
+CVE-2020-10828
+	RESERVED
+CVE-2020-10827
+	RESERVED
+CVE-2020-10826
+	RESERVED
+CVE-2020-10825
+	RESERVED
+CVE-2020-10824
+	RESERVED
+CVE-2020-10823
+	RESERVED
+CVE-2020-10822
+	RESERVED
+CVE-2020-10821 (Nagios XI 5.6.11 allows XSS via the account/main.php theme parameter. ...)
+	TODO: check
+CVE-2020-10820 (Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integr ...)
+	TODO: check
+CVE-2020-10819 (Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integr ...)
+	TODO: check
+CVE-2020-10818 (Artica Proxy 4.26 allows remote command execution for an authenticated ...)
+	TODO: check
+CVE-2020-10817
+	RESERVED
+CVE-2019-20625
+	RESERVED
+CVE-2019-20624
+	RESERVED
+CVE-2019-20623
+	RESERVED
+CVE-2019-20622
+	RESERVED
+CVE-2019-20621
+	RESERVED
+CVE-2019-20620
+	RESERVED
+CVE-2019-20619
+	RESERVED
+CVE-2019-20618
+	RESERVED
+CVE-2019-20617
+	RESERVED
+CVE-2019-20616
+	RESERVED
+CVE-2019-20615
+	RESERVED
+CVE-2019-20614
+	RESERVED
+CVE-2019-20613
+	RESERVED
+CVE-2019-20612
+	RESERVED
+CVE-2019-20611
+	RESERVED
+CVE-2019-20610
+	RESERVED
+CVE-2019-20609
+	RESERVED
+CVE-2019-20608
+	RESERVED
+CVE-2019-20607
+	RESERVED
+CVE-2019-20606
+	RESERVED
+CVE-2019-20605
+	RESERVED
+CVE-2019-20604
+	RESERVED
+CVE-2019-20603
+	RESERVED
+CVE-2019-20602
+	RESERVED
+CVE-2019-20601
+	RESERVED
+CVE-2019-20600
+	RESERVED
+CVE-2019-20599
+	RESERVED
+CVE-2019-20598
+	RESERVED
+CVE-2019-20597
+	RESERVED
+CVE-2019-20596
+	RESERVED
+CVE-2019-20595
+	RESERVED
+CVE-2019-20594
+	RESERVED
+CVE-2019-20593
+	RESERVED
+CVE-2019-20592
+	RESERVED
+CVE-2019-20591
+	RESERVED
+CVE-2019-20590
+	RESERVED
+CVE-2019-20589
+	RESERVED
+CVE-2019-20588
+	RESERVED
+CVE-2019-20587
+	RESERVED
+CVE-2019-20586
+	RESERVED
+CVE-2019-20585
+	RESERVED
+CVE-2019-20584
+	RESERVED
+CVE-2019-20583
+	RESERVED
+CVE-2019-20582
+	RESERVED
+CVE-2019-20581
+	RESERVED
+CVE-2019-20580
+	RESERVED
+CVE-2019-20579
+	RESERVED
+CVE-2019-20578
+	RESERVED
+CVE-2019-20577
+	RESERVED
+CVE-2019-20576
+	RESERVED
+CVE-2019-20575
+	RESERVED
+CVE-2019-20574
+	RESERVED
+CVE-2019-20573
+	RESERVED
+CVE-2019-20572
+	RESERVED
+CVE-2019-20571
+	RESERVED
+CVE-2019-20570
+	RESERVED
+CVE-2019-20569
+	RESERVED
+CVE-2019-20568
+	RESERVED
+CVE-2019-20567
+	RESERVED
+CVE-2019-20566
+	RESERVED
+CVE-2019-20565
+	RESERVED
+CVE-2019-20564
+	RESERVED
+CVE-2019-20563
+	RESERVED
+CVE-2019-20562
+	RESERVED
+CVE-2019-20561
+	RESERVED
+CVE-2019-20560
+	RESERVED
+CVE-2019-20559
+	RESERVED
+CVE-2019-20558
+	RESERVED
+CVE-2019-20557
+	RESERVED
+CVE-2019-20556
+	RESERVED
+CVE-2019-20555
+	RESERVED
+CVE-2019-20554
+	RESERVED
+CVE-2019-20553
+	RESERVED
+CVE-2019-20552
+	RESERVED
+CVE-2019-20551
+	RESERVED
+CVE-2019-20550
+	RESERVED
+CVE-2019-20549
+	RESERVED
+CVE-2019-20548
+	RESERVED
+CVE-2019-20547
+	RESERVED
+CVE-2019-20546
+	RESERVED
+CVE-2019-20545
+	RESERVED
+CVE-2019-20544
+	RESERVED
+CVE-2019-20543
+	RESERVED
+CVE-2019-20542
+	RESERVED
+CVE-2019-20541
+	RESERVED
+CVE-2019-20540
+	RESERVED
+CVE-2019-20539
+	RESERVED
+CVE-2019-20538
+	RESERVED
+CVE-2019-20537
+	RESERVED
+CVE-2019-20536
+	RESERVED
+CVE-2019-20535
+	RESERVED
+CVE-2019-20534
+	RESERVED
+CVE-2019-20533
+	RESERVED
+CVE-2019-20532
+	RESERVED
+CVE-2019-20531
+	RESERVED
+CVE-2019-20530
+	RESERVED
 CVE-2020-10816
 	RESERVED
 CVE-2020-10815
@@ -1397,7 +1667,7 @@ CVE-2020-10188 (utility.c in telnetd in netkit telnet through 0.17 allows remote
 	NOTE: https://appgateresearch.blogspot.com/2020/02/bravestarr-fedora-31-netkit-telnetd_28.html
 	TODO: check further details
 CVE-2019-20503 (usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_address ...)
-	{DSA-4642-1 DSA-4639-1 DLA-2150-1 DLA-2140-1}
+	{DSA-4645-1 DSA-4642-1 DSA-4639-1 DLA-2150-1 DLA-2140-1}
 	- libusrsctp 0.9.3.0+20200312-1 (bug #953270)
 	- firefox 74.0-1
 	- firefox-esr 68.6.0esr-1
@@ -2369,8 +2639,8 @@ CVE-2020-9754
 	RESERVED
 CVE-2020-9753
 	RESERVED
-CVE-2020-9752
-	RESERVED
+CVE-2020-9752 (Naver Cloud Explorer before 2.2.2.11 allows the attacker can move a lo ...)
+	TODO: check
 CVE-2020-9751 (Naver Cloud Explorer before 2.2.2.11 allows the system to download an  ...)
 	NOT-FOR-US: Naver Cloud Explorer
 CVE-2020-9750
@@ -9967,6 +10237,7 @@ CVE-2020-6451
 CVE-2020-6450
 	RESERVED
 CVE-2020-6449 (Use after free in audio in Google Chrome prior to 80.0.3987.149 allowe ...)
+	{DSA-4645-1}
 	- chromium 80.0.3987.149-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6448
@@ -10008,27 +10279,34 @@ CVE-2020-6431
 CVE-2020-6430
 	RESERVED
 CVE-2020-6429 (Use after free in audio in Google Chrome prior to 80.0.3987.149 allowe ...)
+	{DSA-4645-1}
 	- chromium 80.0.3987.149-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6428 (Use after free in audio in Google Chrome prior to 80.0.3987.149 allowe ...)
+	{DSA-4645-1}
 	- chromium 80.0.3987.149-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6427 (Use after free in audio in Google Chrome prior to 80.0.3987.149 allowe ...)
+	{DSA-4645-1}
 	- chromium 80.0.3987.149-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6426 (Inappropriate implementation in V8 in Google Chrome prior to 80.0.3987 ...)
+	{DSA-4645-1}
 	- chromium 80.0.3987.149-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6425
 	RESERVED
+	{DSA-4645-1}
 	- chromium 80.0.3987.149-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6424 (Use after free in media in Google Chrome prior to 80.0.3987.149 allowe ...)
+	{DSA-4645-1}
 	- chromium 80.0.3987.149-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6423
 	RESERVED
 CVE-2020-6422 (Use after free in WebGL in Google Chrome prior to 80.0.3987.149 allowe ...)
+	{DSA-4645-1}
 	- chromium 80.0.3987.149-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6421



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a13ce1ecbf28eed0f4e51e62fadd1215545c315

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a13ce1ecbf28eed0f4e51e62fadd1215545c315
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200323/722d092d/attachment-0001.html>
