[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Tue Mar 24 20:10:33 GMT 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
90cb0a1b by security tracker role at 2020-03-24T20:10:25+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,135 @@
+CVE-2020-10941
+	RESERVED
+CVE-2020-10940
+	RESERVED
+CVE-2020-10939
+	RESERVED
+CVE-2020-10938 (GraphicsMagick before 1.3.35 has an integer overflow and resultant hea ...)
+	TODO: check
+CVE-2020-10937
+	RESERVED
+CVE-2020-10936
+	RESERVED
+CVE-2020-10935
+	RESERVED
+CVE-2020-10934 (Acyba AcyMailing before 6.9.2 mishandles file uploads by admins. ...)
+	TODO: check
+CVE-2020-10933
+	RESERVED
+CVE-2020-10932
+	RESERVED
+CVE-2020-10931 (Memcached 1.6.x before 1.6.2 allows remote attackers to cause a denial ...)
+	TODO: check
+CVE-2020-10930
+	RESERVED
+CVE-2020-10929
+	RESERVED
+CVE-2020-10928
+	RESERVED
+CVE-2020-10927
+	RESERVED
+CVE-2020-10926
+	RESERVED
+CVE-2020-10925
+	RESERVED
+CVE-2020-10924
+	RESERVED
+CVE-2020-10923
+	RESERVED
+CVE-2020-10922
+	RESERVED
+CVE-2020-10921
+	RESERVED
+CVE-2020-10920
+	RESERVED
+CVE-2020-10919
+	RESERVED
+CVE-2020-10918
+	RESERVED
+CVE-2020-10917
+	RESERVED
+CVE-2020-10916
+	RESERVED
+CVE-2020-10915
+	RESERVED
+CVE-2020-10914
+	RESERVED
+CVE-2020-10913
+	RESERVED
+CVE-2020-10912
+	RESERVED
+CVE-2020-10911
+	RESERVED
+CVE-2020-10910
+	RESERVED
+CVE-2020-10909
+	RESERVED
+CVE-2020-10908
+	RESERVED
+CVE-2020-10907
+	RESERVED
+CVE-2020-10906
+	RESERVED
+CVE-2020-10905
+	RESERVED
+CVE-2020-10904
+	RESERVED
+CVE-2020-10903
+	RESERVED
+CVE-2020-10902
+	RESERVED
+CVE-2020-10901
+	RESERVED
+CVE-2020-10900
+	RESERVED
+CVE-2020-10899
+	RESERVED
+CVE-2020-10898
+	RESERVED
+CVE-2020-10897
+	RESERVED
+CVE-2020-10896
+	RESERVED
+CVE-2020-10895
+	RESERVED
+CVE-2020-10894
+	RESERVED
+CVE-2020-10893
+	RESERVED
+CVE-2020-10892
+	RESERVED
+CVE-2020-10891
+	RESERVED
+CVE-2020-10890
+	RESERVED
+CVE-2020-10889
+	RESERVED
+CVE-2020-10888
+	RESERVED
+CVE-2020-10887
+	RESERVED
+CVE-2020-10886
+	RESERVED
+CVE-2020-10885
+	RESERVED
+CVE-2020-10884
+	RESERVED
+CVE-2020-10883
+	RESERVED
+CVE-2020-10882
+	RESERVED
+CVE-2020-10881
+	RESERVED
+CVE-2019-20632 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+	TODO: check
+CVE-2019-20631 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+	TODO: check
+CVE-2019-20630 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+	TODO: check
+CVE-2019-20629 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+	TODO: check
+CVE-2019-20628 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+	TODO: check
 CVE-2020-10880
 	RESERVED
 CVE-2020-10879 (rConfig before 3.9.5 allows injection because lib/crud/search.crud.php ...)
@@ -61,60 +193,60 @@ CVE-2020-XXXX [memcached extlen buffer overflow]
 	[jessie] - memcached <not-affected> (Introduced in 1.6)
 	NOTE: https://github.com/memcached/memcached/issues/629
 	NOTE: https://github.com/memcached/memcached/commit/02c6a2b62ddcb6fa4569a591d3461a156a636305
-CVE-2020-10855
-	RESERVED
-CVE-2020-10854
-	RESERVED
-CVE-2020-10853
-	RESERVED
-CVE-2020-10852
-	RESERVED
-CVE-2020-10851
-	RESERVED
-CVE-2020-10850
-	RESERVED
-CVE-2020-10849
-	RESERVED
-CVE-2020-10848
-	RESERVED
-CVE-2020-10847
-	RESERVED
-CVE-2020-10846
-	RESERVED
-CVE-2020-10845
-	RESERVED
-CVE-2020-10844
-	RESERVED
-CVE-2020-10843
-	RESERVED
-CVE-2020-10842
-	RESERVED
-CVE-2020-10841
-	RESERVED
-CVE-2020-10840
-	RESERVED
-CVE-2020-10839
-	RESERVED
-CVE-2020-10838
-	RESERVED
-CVE-2020-10837
-	RESERVED
-CVE-2020-10836
-	RESERVED
-CVE-2020-10835
-	RESERVED
-CVE-2020-10834
-	RESERVED
-CVE-2020-10833
-	RESERVED
-CVE-2020-10832
-	RESERVED
-CVE-2020-10831
-	RESERVED
-CVE-2020-10830
-	RESERVED
-CVE-2020-10829
-	RESERVED
+CVE-2020-10855 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2020-10854 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10853 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2020-10852 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10851 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+	TODO: check
+CVE-2020-10850 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10849 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10848 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10847 (An issue was discovered on Samsung mobile devices with P(9.0) (Galaxy  ...)
+	TODO: check
+CVE-2020-10846 (An issue was discovered on Samsung mobile devices with P(9.x) and Q(10 ...)
+	TODO: check
+CVE-2020-10845 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10844 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.x), ...)
+	TODO: check
+CVE-2020-10843 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10842 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10841 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+	TODO: check
+CVE-2020-10840 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+	TODO: check
+CVE-2020-10839 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10838 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+	TODO: check
+CVE-2020-10837 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+	TODO: check
+CVE-2020-10836 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10835 (An issue was discovered on Samsung mobile devices with any (before Feb ...)
+	TODO: check
+CVE-2020-10834 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2020-10833 (An issue was discovered on Samsung mobile devices with Q(10.0) softwar ...)
+	TODO: check
+CVE-2020-10832 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos  ...)
+	TODO: check
+CVE-2020-10831 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2020-10830 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+	TODO: check
+CVE-2020-10829 (An issue was discovered on Samsung mobile devices with O(8.0), P(9.0), ...)
+	TODO: check
 CVE-2020-10828
 	RESERVED
 CVE-2020-10827
@@ -195,142 +327,142 @@ CVE-2019-20599
 	RESERVED
 CVE-2019-20598
 	RESERVED
-CVE-2019-20597
-	RESERVED
-CVE-2019-20596
-	RESERVED
-CVE-2019-20595
-	RESERVED
-CVE-2019-20594
-	RESERVED
+CVE-2019-20597 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
+	TODO: check
+CVE-2019-20596 (An issue was discovered on Samsung mobile devices with N(7.x) and O(8. ...)
+	TODO: check
+CVE-2019-20595 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2019-20594 (An issue was discovered on Samsung mobile devices with O(8.1) and P(9. ...)
+	TODO: check
 CVE-2019-20593
 	RESERVED
-CVE-2019-20592
-	RESERVED
-CVE-2019-20591
-	RESERVED
-CVE-2019-20590
-	RESERVED
-CVE-2019-20589
-	RESERVED
-CVE-2019-20588
-	RESERVED
-CVE-2019-20587
-	RESERVED
-CVE-2019-20586
-	RESERVED
-CVE-2019-20585
-	RESERVED
-CVE-2019-20584
-	RESERVED
-CVE-2019-20583
-	RESERVED
-CVE-2019-20582
-	RESERVED
-CVE-2019-20581
-	RESERVED
-CVE-2019-20580
-	RESERVED
-CVE-2019-20579
-	RESERVED
-CVE-2019-20578
-	RESERVED
-CVE-2019-20577
-	RESERVED
+CVE-2019-20592 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20591 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20590 (An issue was discovered on Samsung mobile devices with O(8.x) (Qualcom ...)
+	TODO: check
+CVE-2019-20589 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20588 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20587 (An issue was discovered on Samsung mobile devices with O(8.1) and P(9. ...)
+	TODO: check
+CVE-2019-20586 (An issue was discovered on Samsung mobile devices with O(8.1) and P(9. ...)
+	TODO: check
+CVE-2019-20585 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20584 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20583 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20582 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20581 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20580 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2019-20579 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20578 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos  ...)
+	TODO: check
+CVE-2019-20577 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos  ...)
+	TODO: check
 CVE-2019-20576
 	RESERVED
-CVE-2019-20575
-	RESERVED
-CVE-2019-20574
-	RESERVED
-CVE-2019-20573
-	RESERVED
-CVE-2019-20572
-	RESERVED
-CVE-2019-20571
-	RESERVED
-CVE-2019-20570
-	RESERVED
-CVE-2019-20569
-	RESERVED
-CVE-2019-20568
-	RESERVED
-CVE-2019-20567
-	RESERVED
-CVE-2019-20566
-	RESERVED
-CVE-2019-20565
-	RESERVED
-CVE-2019-20564
-	RESERVED
-CVE-2019-20563
-	RESERVED
-CVE-2019-20562
-	RESERVED
-CVE-2019-20561
-	RESERVED
-CVE-2019-20560
-	RESERVED
-CVE-2019-20559
-	RESERVED
-CVE-2019-20558
-	RESERVED
-CVE-2019-20557
-	RESERVED
-CVE-2019-20556
-	RESERVED
-CVE-2019-20555
-	RESERVED
-CVE-2019-20554
-	RESERVED
-CVE-2019-20553
-	RESERVED
-CVE-2019-20552
-	RESERVED
-CVE-2019-20551
-	RESERVED
-CVE-2019-20550
-	RESERVED
-CVE-2019-20549
-	RESERVED
-CVE-2019-20548
-	RESERVED
-CVE-2019-20547
-	RESERVED
-CVE-2019-20546
-	RESERVED
-CVE-2019-20545
-	RESERVED
-CVE-2019-20544
-	RESERVED
-CVE-2019-20543
-	RESERVED
-CVE-2019-20542
-	RESERVED
-CVE-2019-20541
-	RESERVED
-CVE-2019-20540
-	RESERVED
-CVE-2019-20539
-	RESERVED
-CVE-2019-20538
-	RESERVED
-CVE-2019-20537
-	RESERVED
-CVE-2019-20536
-	RESERVED
-CVE-2019-20535
-	RESERVED
-CVE-2019-20534
-	RESERVED
-CVE-2019-20533
-	RESERVED
-CVE-2019-20532
-	RESERVED
-CVE-2019-20531
-	RESERVED
-CVE-2019-20530
-	RESERVED
+CVE-2019-20575 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2019-20574 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20573 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20572 (An issue was discovered on Samsung mobile devices with O(8.1) and P(9. ...)
+	TODO: check
+CVE-2019-20571 (An issue was discovered on Samsung mobile devices with O(8.x) (with TE ...)
+	TODO: check
+CVE-2019-20570 (An issue was discovered on Samsung mobile devices with P(9.0), O(8.0), ...)
+	TODO: check
+CVE-2019-20569 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2019-20568 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20567 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20566 (An issue was discovered on Samsung mobile devices with any (before Sep ...)
+	TODO: check
+CVE-2019-20565 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20564 (An issue was discovered on Samsung mobile devices with any (before Oct ...)
+	TODO: check
+CVE-2019-20563 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20562 (An issue was discovered on Samsung mobile devices with P(9.0) (with TE ...)
+	TODO: check
+CVE-2019-20561 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20560 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20559 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2019-20558 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20557 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20556 (An issue was discovered on Samsung mobile devices with P(9.0) (SM6150, ...)
+	TODO: check
+CVE-2019-20555 (An issue was discovered on Samsung mobile devices with N(7.x) software ...)
+	TODO: check
+CVE-2019-20554 (An issue was discovered on Samsung mobile devices with O(8.x) software ...)
+	TODO: check
+CVE-2019-20553 (An issue was discovered on Samsung mobile devices with P(9.0) (SM6150, ...)
+	TODO: check
+CVE-2019-20552 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2019-20551 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20550 (An issue was discovered on Samsung mobile devices with O(8.x) (release ...)
+	TODO: check
+CVE-2019-20549 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20548 (An issue was discovered on Samsung mobile devices with P(9.0) devices  ...)
+	TODO: check
+CVE-2019-20547 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20546 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20545 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20544 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20543 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2019-20542 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
+	TODO: check
+CVE-2019-20541 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos  ...)
+	TODO: check
+CVE-2019-20540 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20539 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20538 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2019-20537 (An issue was discovered on Samsung mobile devices with P(9.0) (TEEGRIS ...)
+	TODO: check
+CVE-2019-20536 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
+	TODO: check
+CVE-2019-20535 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+	TODO: check
+CVE-2019-20534 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+	TODO: check
+CVE-2019-20533 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+	TODO: check
+CVE-2019-20532 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+	TODO: check
+CVE-2019-20531 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos  ...)
+	TODO: check
+CVE-2019-20530 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
+	TODO: check
 CVE-2020-10816
 	RESERVED
 CVE-2020-10815
@@ -627,8 +759,7 @@ CVE-2020-10685 [modules which use files encrypted with vault are not properly cl
 	RESERVED
 	- ansible <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1814627
-CVE-2020-10684 [code injection when using ansible_facts as a subkey]
-	RESERVED
+CVE-2020-10684 (A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9. ...)
 	- ansible <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1815519
 CVE-2020-10683
@@ -925,8 +1056,8 @@ CVE-2020-10572
 	RESERVED
 CVE-2020-10571 (An issue was discovered in psd-tools before 1.9.4. The Cython implemen ...)
 	NOT-FOR-US: psd-tools
-CVE-2020-10570
-	RESERVED
+CVE-2020-10570 (The Telegram application through 5.12 for Android, when Show Popup is  ...)
+	TODO: check
 CVE-2020-10569
 	RESERVED
 CVE-2020-10568 (The sitepress-multilingual-cms (WPML) plugin before 4.3.7-b.2 for Word ...)
@@ -3603,8 +3734,8 @@ CVE-2020-9361
 	RESERVED
 CVE-2020-9360
 	RESERVED
-CVE-2020-9359
-	RESERVED
+CVE-2020-9359 (KDE Okular before 1.10.0 allows code execution via an action link in a ...)
+	TODO: check
 CVE-2020-9358
 	RESERVED
 CVE-2020-9357
@@ -9024,8 +9155,8 @@ CVE-2020-7005
 	RESERVED
 CVE-2020-7004
 	RESERVED
-CVE-2020-7003
-	RESERVED
+CVE-2020-7003 (In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpre ...)
+	TODO: check
 CVE-2020-7002 (Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior.  ...)
 	NOT-FOR-US: McAfee
 CVE-2020-7001
@@ -9052,20 +9183,20 @@ CVE-2020-6991
 	RESERVED
 CVE-2020-6990 (Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and p ...)
 	NOT-FOR-US: Rockwell
-CVE-2020-6989
-	RESERVED
+CVE-2020-6989 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
+	TODO: check
 CVE-2020-6988 (Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and p ...)
 	NOT-FOR-US: Rockwell
-CVE-2020-6987
-	RESERVED
+CVE-2020-6987 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
+	TODO: check
 CVE-2020-6986 (In all versions of Omron PLC CJ Series, an attacker can send a series  ...)
 	NOT-FOR-US: Omron
 CVE-2020-6985
 	RESERVED
 CVE-2020-6984 (Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and p ...)
 	NOT-FOR-US: Rockwell
-CVE-2020-6983
-	RESERVED
+CVE-2020-6983 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
+	TODO: check
 CVE-2020-6982
 	RESERVED
 CVE-2020-6981
@@ -9086,8 +9217,8 @@ CVE-2020-6974
 	RESERVED
 CVE-2020-6973 (Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (820 ...)
 	NOT-FOR-US: Digi International ConnectPort LTS 32 MEI
-CVE-2020-6972
-	RESERVED
+CVE-2020-6972 (In Notifier Web Server (NWS) Version 3.50 and earlier, the Honeywell F ...)
+	TODO: check
 CVE-2020-6971 (In Emerson ValveLink v12.0.264 to v13.4.118, a vulnerability in the Va ...)
 	NOT-FOR-US: Emerson
 CVE-2020-6970 (A Heap-based Buffer Overflow was found in Emerson OpenEnterprise SCADA ...)
@@ -15373,8 +15504,8 @@ CVE-2020-4311
 	RESERVED
 CVE-2020-4310
 	RESERVED
-CVE-2020-4309
-	RESERVED
+CVE-2020-4309 (IBM Content Navigator 3.0CD could disclose sensitive information to an ...)
+	TODO: check
 CVE-2020-4308
 	RESERVED
 CVE-2020-4307
@@ -15485,8 +15616,8 @@ CVE-2020-4255
 	RESERVED
 CVE-2020-4254
 	RESERVED
-CVE-2020-4253
-	RESERVED
+CVE-2020-4253 (IBM Content Navigator 3.0CD does not invalidate session after logout w ...)
+	TODO: check
 CVE-2020-4252
 	RESERVED
 CVE-2020-4251
@@ -22837,8 +22968,7 @@ CVE-2020-1749 [net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup
 	NOTE: https://git.kernel.org/linus/6c8991f41546c3c472503dff1ea9daaddf9331c2
 CVE-2020-1748
 	RESERVED
-CVE-2020-1747 [arbitrary command execution through python/object/new when FullLoader is used]
-	RESERVED
+CVE-2020-1747 (A vulnerability was discovered in the PyYAML library in versions befor ...)
 	- pyyaml 5.3-2 (bug #953013)
 	[buster] - pyyaml <not-affected> (Loader/Constructor classes are unsafe in this version)
 	[stretch] - pyyaml <not-affected> (Loader/Constructor classes are unsafe in this version)
@@ -22853,8 +22983,8 @@ CVE-2020-1745 [AJP File Read/Inclusion Vulnerability]
 	RESERVED
 	- undertow <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1807305
-CVE-2020-1744
-	RESERVED
+CVE-2020-1744 (A flaw was found in keycloak before version 9.0.1. When configuring an ...)
+	TODO: check
 CVE-2020-1743
 	RESERVED
 CVE-2020-1742
@@ -28359,15 +28489,15 @@ CVE-2019-18244 (OSIsoft PI Vision, PI Vision 2017 R2, PI Vision 2017 R2 SP1, PI
 	NOT-FOR-US: OSIsoft
 CVE-2019-18243
 	RESERVED
-CVE-2019-18242
-	RESERVED
+CVE-2019-18242 (In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpre ...)
+	TODO: check
 CVE-2019-18241 (In Philips IntelliBridge EC40 and EC80, IntelliBridge EC40 Hub all ver ...)
 	NOT-FOR-US: Philips
 CVE-2019-18240 (In Fuji Electric V-Server 4.0.6 and prior, several heap-based buffer o ...)
 	NOT-FOR-US: Fuji
 CVE-2019-18239
 	RESERVED
-CVE-2019-18238 (Moxa ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Config ...)
+CVE-2019-18238 (In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpre ...)
 	NOT-FOR-US: Moxa
 CVE-2019-18237
 	RESERVED
@@ -31748,8 +31878,8 @@ CVE-2019-17278
 	RESERVED
 CVE-2019-17277
 	RESERVED
-CVE-2019-17276
-	RESERVED
+CVE-2019-17276 (OnCommand System Manager versions 9.3 prior to 9.3P18 and 9.4 prior to ...)
+	TODO: check
 CVE-2019-17275 (OnCommand Cloud Manager versions prior to 3.8.0 are susceptible to arb ...)
 	NOT-FOR-US: OnCommand Cloud Manager
 CVE-2019-17274 (NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller (BMC ...)
@@ -47544,7 +47674,7 @@ CVE-2019-12420 (In Apache SpamAssassin before 3.4.3, a message can be crafted in
 CVE-2019-12419 (Apache CXF before 3.3.4 and 3.2.11 provides all of the components that ...)
 	NOT-FOR-US: Apache CFX
 CVE-2019-12418 (When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0 and 7.0. ...)
-	{DSA-4596-1 DLA-2077-1}
+	{DSA-4596-1 DLA-2155-1 DLA-2077-1}
 	- tomcat9 9.0.31-1
 	- tomcat8 <removed>
 	- tomcat7 <removed>
@@ -69139,8 +69269,8 @@ CVE-2019-4683
 	RESERVED
 CVE-2019-4682
 	RESERVED
-CVE-2019-4681
-	RESERVED
+CVE-2019-4681 (IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cr ...)
+	TODO: check
 CVE-2019-4680
 	RESERVED
 CVE-2019-4679 (IBM Content Navigator 3.0CD could allow an authenticated user to gain  ...)
@@ -69395,8 +69525,8 @@ CVE-2019-4555 (IBM Cognos Analytics 11.0 and 11.0 is vulnerable to cross-site sc
 	NOT-FOR-US: IBM
 CVE-2019-4554
 	RESERVED
-CVE-2019-4553
-	RESERVED
+CVE-2019-4553 (IBM API Connect V5.0.0.0 through 5.0.8.7iFix3 uses weaker than expecte ...)
+	TODO: check
 CVE-2019-4552
 	RESERVED
 CVE-2019-4551 (IBM Security Directory Server 6.4.0 does not perform an authentication ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90cb0a1bdc0d458357f034d9c598a8dc9deb7dd6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90cb0a1bdc0d458357f034d9c598a8dc9deb7dd6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200324/9fe23b83/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list