[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Tue Mar 24 20:10:33 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
90cb0a1b by security tracker role at 2020-03-24T20:10:25+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,135 @@
+CVE-2020-10941
+ RESERVED
+CVE-2020-10940
+ RESERVED
+CVE-2020-10939
+ RESERVED
+CVE-2020-10938 (GraphicsMagick before 1.3.35 has an integer overflow and resultant hea ...)
+ TODO: check
+CVE-2020-10937
+ RESERVED
+CVE-2020-10936
+ RESERVED
+CVE-2020-10935
+ RESERVED
+CVE-2020-10934 (Acyba AcyMailing before 6.9.2 mishandles file uploads by admins. ...)
+ TODO: check
+CVE-2020-10933
+ RESERVED
+CVE-2020-10932
+ RESERVED
+CVE-2020-10931 (Memcached 1.6.x before 1.6.2 allows remote attackers to cause a denial ...)
+ TODO: check
+CVE-2020-10930
+ RESERVED
+CVE-2020-10929
+ RESERVED
+CVE-2020-10928
+ RESERVED
+CVE-2020-10927
+ RESERVED
+CVE-2020-10926
+ RESERVED
+CVE-2020-10925
+ RESERVED
+CVE-2020-10924
+ RESERVED
+CVE-2020-10923
+ RESERVED
+CVE-2020-10922
+ RESERVED
+CVE-2020-10921
+ RESERVED
+CVE-2020-10920
+ RESERVED
+CVE-2020-10919
+ RESERVED
+CVE-2020-10918
+ RESERVED
+CVE-2020-10917
+ RESERVED
+CVE-2020-10916
+ RESERVED
+CVE-2020-10915
+ RESERVED
+CVE-2020-10914
+ RESERVED
+CVE-2020-10913
+ RESERVED
+CVE-2020-10912
+ RESERVED
+CVE-2020-10911
+ RESERVED
+CVE-2020-10910
+ RESERVED
+CVE-2020-10909
+ RESERVED
+CVE-2020-10908
+ RESERVED
+CVE-2020-10907
+ RESERVED
+CVE-2020-10906
+ RESERVED
+CVE-2020-10905
+ RESERVED
+CVE-2020-10904
+ RESERVED
+CVE-2020-10903
+ RESERVED
+CVE-2020-10902
+ RESERVED
+CVE-2020-10901
+ RESERVED
+CVE-2020-10900
+ RESERVED
+CVE-2020-10899
+ RESERVED
+CVE-2020-10898
+ RESERVED
+CVE-2020-10897
+ RESERVED
+CVE-2020-10896
+ RESERVED
+CVE-2020-10895
+ RESERVED
+CVE-2020-10894
+ RESERVED
+CVE-2020-10893
+ RESERVED
+CVE-2020-10892
+ RESERVED
+CVE-2020-10891
+ RESERVED
+CVE-2020-10890
+ RESERVED
+CVE-2020-10889
+ RESERVED
+CVE-2020-10888
+ RESERVED
+CVE-2020-10887
+ RESERVED
+CVE-2020-10886
+ RESERVED
+CVE-2020-10885
+ RESERVED
+CVE-2020-10884
+ RESERVED
+CVE-2020-10883
+ RESERVED
+CVE-2020-10882
+ RESERVED
+CVE-2020-10881
+ RESERVED
+CVE-2019-20632 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+ TODO: check
+CVE-2019-20631 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+ TODO: check
+CVE-2019-20630 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+ TODO: check
+CVE-2019-20629 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+ TODO: check
+CVE-2019-20628 (An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...)
+ TODO: check
CVE-2020-10880
RESERVED
CVE-2020-10879 (rConfig before 3.9.5 allows injection because lib/crud/search.crud.php ...)
@@ -61,60 +193,60 @@ CVE-2020-XXXX [memcached extlen buffer overflow]
[jessie] - memcached <not-affected> (Introduced in 1.6)
NOTE: https://github.com/memcached/memcached/issues/629
NOTE: https://github.com/memcached/memcached/commit/02c6a2b62ddcb6fa4569a591d3461a156a636305
-CVE-2020-10855
- RESERVED
-CVE-2020-10854
- RESERVED
-CVE-2020-10853
- RESERVED
-CVE-2020-10852
- RESERVED
-CVE-2020-10851
- RESERVED
-CVE-2020-10850
- RESERVED
-CVE-2020-10849
- RESERVED
-CVE-2020-10848
- RESERVED
-CVE-2020-10847
- RESERVED
-CVE-2020-10846
- RESERVED
-CVE-2020-10845
- RESERVED
-CVE-2020-10844
- RESERVED
-CVE-2020-10843
- RESERVED
-CVE-2020-10842
- RESERVED
-CVE-2020-10841
- RESERVED
-CVE-2020-10840
- RESERVED
-CVE-2020-10839
- RESERVED
-CVE-2020-10838
- RESERVED
-CVE-2020-10837
- RESERVED
-CVE-2020-10836
- RESERVED
-CVE-2020-10835
- RESERVED
-CVE-2020-10834
- RESERVED
-CVE-2020-10833
- RESERVED
-CVE-2020-10832
- RESERVED
-CVE-2020-10831
- RESERVED
-CVE-2020-10830
- RESERVED
-CVE-2020-10829
- RESERVED
+CVE-2020-10855 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2020-10854 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10853 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2020-10852 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10851 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+ TODO: check
+CVE-2020-10850 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10849 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10848 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10847 (An issue was discovered on Samsung mobile devices with P(9.0) (Galaxy ...)
+ TODO: check
+CVE-2020-10846 (An issue was discovered on Samsung mobile devices with P(9.x) and Q(10 ...)
+ TODO: check
+CVE-2020-10845 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10844 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.x), ...)
+ TODO: check
+CVE-2020-10843 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10842 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10841 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+ TODO: check
+CVE-2020-10840 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+ TODO: check
+CVE-2020-10839 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10838 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+ TODO: check
+CVE-2020-10837 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+ TODO: check
+CVE-2020-10836 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10835 (An issue was discovered on Samsung mobile devices with any (before Feb ...)
+ TODO: check
+CVE-2020-10834 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2020-10833 (An issue was discovered on Samsung mobile devices with Q(10.0) softwar ...)
+ TODO: check
+CVE-2020-10832 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos ...)
+ TODO: check
+CVE-2020-10831 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2020-10830 (An issue was discovered on Samsung mobile devices with P(9.0) and Q(10 ...)
+ TODO: check
+CVE-2020-10829 (An issue was discovered on Samsung mobile devices with O(8.0), P(9.0), ...)
+ TODO: check
CVE-2020-10828
RESERVED
CVE-2020-10827
@@ -195,142 +327,142 @@ CVE-2019-20599
RESERVED
CVE-2019-20598
RESERVED
-CVE-2019-20597
- RESERVED
-CVE-2019-20596
- RESERVED
-CVE-2019-20595
- RESERVED
-CVE-2019-20594
- RESERVED
+CVE-2019-20597 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
+ TODO: check
+CVE-2019-20596 (An issue was discovered on Samsung mobile devices with N(7.x) and O(8. ...)
+ TODO: check
+CVE-2019-20595 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2019-20594 (An issue was discovered on Samsung mobile devices with O(8.1) and P(9. ...)
+ TODO: check
CVE-2019-20593
RESERVED
-CVE-2019-20592
- RESERVED
-CVE-2019-20591
- RESERVED
-CVE-2019-20590
- RESERVED
-CVE-2019-20589
- RESERVED
-CVE-2019-20588
- RESERVED
-CVE-2019-20587
- RESERVED
-CVE-2019-20586
- RESERVED
-CVE-2019-20585
- RESERVED
-CVE-2019-20584
- RESERVED
-CVE-2019-20583
- RESERVED
-CVE-2019-20582
- RESERVED
-CVE-2019-20581
- RESERVED
-CVE-2019-20580
- RESERVED
-CVE-2019-20579
- RESERVED
-CVE-2019-20578
- RESERVED
-CVE-2019-20577
- RESERVED
+CVE-2019-20592 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20591 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20590 (An issue was discovered on Samsung mobile devices with O(8.x) (Qualcom ...)
+ TODO: check
+CVE-2019-20589 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20588 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20587 (An issue was discovered on Samsung mobile devices with O(8.1) and P(9. ...)
+ TODO: check
+CVE-2019-20586 (An issue was discovered on Samsung mobile devices with O(8.1) and P(9. ...)
+ TODO: check
+CVE-2019-20585 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20584 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20583 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20582 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20581 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20580 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2019-20579 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20578 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos ...)
+ TODO: check
+CVE-2019-20577 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos ...)
+ TODO: check
CVE-2019-20576
RESERVED
-CVE-2019-20575
- RESERVED
-CVE-2019-20574
- RESERVED
-CVE-2019-20573
- RESERVED
-CVE-2019-20572
- RESERVED
-CVE-2019-20571
- RESERVED
-CVE-2019-20570
- RESERVED
-CVE-2019-20569
- RESERVED
-CVE-2019-20568
- RESERVED
-CVE-2019-20567
- RESERVED
-CVE-2019-20566
- RESERVED
-CVE-2019-20565
- RESERVED
-CVE-2019-20564
- RESERVED
-CVE-2019-20563
- RESERVED
-CVE-2019-20562
- RESERVED
-CVE-2019-20561
- RESERVED
-CVE-2019-20560
- RESERVED
-CVE-2019-20559
- RESERVED
-CVE-2019-20558
- RESERVED
-CVE-2019-20557
- RESERVED
-CVE-2019-20556
- RESERVED
-CVE-2019-20555
- RESERVED
-CVE-2019-20554
- RESERVED
-CVE-2019-20553
- RESERVED
-CVE-2019-20552
- RESERVED
-CVE-2019-20551
- RESERVED
-CVE-2019-20550
- RESERVED
-CVE-2019-20549
- RESERVED
-CVE-2019-20548
- RESERVED
-CVE-2019-20547
- RESERVED
-CVE-2019-20546
- RESERVED
-CVE-2019-20545
- RESERVED
-CVE-2019-20544
- RESERVED
-CVE-2019-20543
- RESERVED
-CVE-2019-20542
- RESERVED
-CVE-2019-20541
- RESERVED
-CVE-2019-20540
- RESERVED
-CVE-2019-20539
- RESERVED
-CVE-2019-20538
- RESERVED
-CVE-2019-20537
- RESERVED
-CVE-2019-20536
- RESERVED
-CVE-2019-20535
- RESERVED
-CVE-2019-20534
- RESERVED
-CVE-2019-20533
- RESERVED
-CVE-2019-20532
- RESERVED
-CVE-2019-20531
- RESERVED
-CVE-2019-20530
- RESERVED
+CVE-2019-20575 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2019-20574 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20573 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20572 (An issue was discovered on Samsung mobile devices with O(8.1) and P(9. ...)
+ TODO: check
+CVE-2019-20571 (An issue was discovered on Samsung mobile devices with O(8.x) (with TE ...)
+ TODO: check
+CVE-2019-20570 (An issue was discovered on Samsung mobile devices with P(9.0), O(8.0), ...)
+ TODO: check
+CVE-2019-20569 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2019-20568 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20567 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20566 (An issue was discovered on Samsung mobile devices with any (before Sep ...)
+ TODO: check
+CVE-2019-20565 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20564 (An issue was discovered on Samsung mobile devices with any (before Oct ...)
+ TODO: check
+CVE-2019-20563 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20562 (An issue was discovered on Samsung mobile devices with P(9.0) (with TE ...)
+ TODO: check
+CVE-2019-20561 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20560 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20559 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2019-20558 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20557 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20556 (An issue was discovered on Samsung mobile devices with P(9.0) (SM6150, ...)
+ TODO: check
+CVE-2019-20555 (An issue was discovered on Samsung mobile devices with N(7.x) software ...)
+ TODO: check
+CVE-2019-20554 (An issue was discovered on Samsung mobile devices with O(8.x) software ...)
+ TODO: check
+CVE-2019-20553 (An issue was discovered on Samsung mobile devices with P(9.0) (SM6150, ...)
+ TODO: check
+CVE-2019-20552 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2019-20551 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20550 (An issue was discovered on Samsung mobile devices with O(8.x) (release ...)
+ TODO: check
+CVE-2019-20549 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20548 (An issue was discovered on Samsung mobile devices with P(9.0) devices ...)
+ TODO: check
+CVE-2019-20547 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20546 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20545 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20544 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20543 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2019-20542 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
+ TODO: check
+CVE-2019-20541 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos ...)
+ TODO: check
+CVE-2019-20540 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20539 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20538 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2019-20537 (An issue was discovered on Samsung mobile devices with P(9.0) (TEEGRIS ...)
+ TODO: check
+CVE-2019-20536 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
+ TODO: check
+CVE-2019-20535 (An issue was discovered on Samsung mobile devices with O(8.x) and P(9. ...)
+ TODO: check
+CVE-2019-20534 (An issue was discovered on Samsung mobile devices with P(9.0) software ...)
+ TODO: check
+CVE-2019-20533 (An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), ...)
+ TODO: check
+CVE-2019-20532 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
+ TODO: check
+CVE-2019-20531 (An issue was discovered on Samsung mobile devices with P(9.0) (Exynos ...)
+ TODO: check
+CVE-2019-20530 (An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), ...)
+ TODO: check
CVE-2020-10816
RESERVED
CVE-2020-10815
@@ -627,8 +759,7 @@ CVE-2020-10685 [modules which use files encrypted with vault are not properly cl
RESERVED
- ansible <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1814627
-CVE-2020-10684 [code injection when using ansible_facts as a subkey]
- RESERVED
+CVE-2020-10684 (A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9. ...)
- ansible <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1815519
CVE-2020-10683
@@ -925,8 +1056,8 @@ CVE-2020-10572
RESERVED
CVE-2020-10571 (An issue was discovered in psd-tools before 1.9.4. The Cython implemen ...)
NOT-FOR-US: psd-tools
-CVE-2020-10570
- RESERVED
+CVE-2020-10570 (The Telegram application through 5.12 for Android, when Show Popup is ...)
+ TODO: check
CVE-2020-10569
RESERVED
CVE-2020-10568 (The sitepress-multilingual-cms (WPML) plugin before 4.3.7-b.2 for Word ...)
@@ -3603,8 +3734,8 @@ CVE-2020-9361
RESERVED
CVE-2020-9360
RESERVED
-CVE-2020-9359
- RESERVED
+CVE-2020-9359 (KDE Okular before 1.10.0 allows code execution via an action link in a ...)
+ TODO: check
CVE-2020-9358
RESERVED
CVE-2020-9357
@@ -9024,8 +9155,8 @@ CVE-2020-7005
RESERVED
CVE-2020-7004
RESERVED
-CVE-2020-7003
- RESERVED
+CVE-2020-7003 (In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpre ...)
+ TODO: check
CVE-2020-7002 (Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. ...)
NOT-FOR-US: McAfee
CVE-2020-7001
@@ -9052,20 +9183,20 @@ CVE-2020-6991
RESERVED
CVE-2020-6990 (Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and p ...)
NOT-FOR-US: Rockwell
-CVE-2020-6989
- RESERVED
+CVE-2020-6989 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
+ TODO: check
CVE-2020-6988 (Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and p ...)
NOT-FOR-US: Rockwell
-CVE-2020-6987
- RESERVED
+CVE-2020-6987 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
+ TODO: check
CVE-2020-6986 (In all versions of Omron PLC CJ Series, an attacker can send a series ...)
NOT-FOR-US: Omron
CVE-2020-6985
RESERVED
CVE-2020-6984 (Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and p ...)
NOT-FOR-US: Rockwell
-CVE-2020-6983
- RESERVED
+CVE-2020-6983 (In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 ser ...)
+ TODO: check
CVE-2020-6982
RESERVED
CVE-2020-6981
@@ -9086,8 +9217,8 @@ CVE-2020-6974
RESERVED
CVE-2020-6973 (Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (820 ...)
NOT-FOR-US: Digi International ConnectPort LTS 32 MEI
-CVE-2020-6972
- RESERVED
+CVE-2020-6972 (In Notifier Web Server (NWS) Version 3.50 and earlier, the Honeywell F ...)
+ TODO: check
CVE-2020-6971 (In Emerson ValveLink v12.0.264 to v13.4.118, a vulnerability in the Va ...)
NOT-FOR-US: Emerson
CVE-2020-6970 (A Heap-based Buffer Overflow was found in Emerson OpenEnterprise SCADA ...)
@@ -15373,8 +15504,8 @@ CVE-2020-4311
RESERVED
CVE-2020-4310
RESERVED
-CVE-2020-4309
- RESERVED
+CVE-2020-4309 (IBM Content Navigator 3.0CD could disclose sensitive information to an ...)
+ TODO: check
CVE-2020-4308
RESERVED
CVE-2020-4307
@@ -15485,8 +15616,8 @@ CVE-2020-4255
RESERVED
CVE-2020-4254
RESERVED
-CVE-2020-4253
- RESERVED
+CVE-2020-4253 (IBM Content Navigator 3.0CD does not invalidate session after logout w ...)
+ TODO: check
CVE-2020-4252
RESERVED
CVE-2020-4251
@@ -22837,8 +22968,7 @@ CVE-2020-1749 [net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup
NOTE: https://git.kernel.org/linus/6c8991f41546c3c472503dff1ea9daaddf9331c2
CVE-2020-1748
RESERVED
-CVE-2020-1747 [arbitrary command execution through python/object/new when FullLoader is used]
- RESERVED
+CVE-2020-1747 (A vulnerability was discovered in the PyYAML library in versions befor ...)
- pyyaml 5.3-2 (bug #953013)
[buster] - pyyaml <not-affected> (Loader/Constructor classes are unsafe in this version)
[stretch] - pyyaml <not-affected> (Loader/Constructor classes are unsafe in this version)
@@ -22853,8 +22983,8 @@ CVE-2020-1745 [AJP File Read/Inclusion Vulnerability]
RESERVED
- undertow <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1807305
-CVE-2020-1744
- RESERVED
+CVE-2020-1744 (A flaw was found in keycloak before version 9.0.1. When configuring an ...)
+ TODO: check
CVE-2020-1743
RESERVED
CVE-2020-1742
@@ -28359,15 +28489,15 @@ CVE-2019-18244 (OSIsoft PI Vision, PI Vision 2017 R2, PI Vision 2017 R2 SP1, PI
NOT-FOR-US: OSIsoft
CVE-2019-18243
RESERVED
-CVE-2019-18242
- RESERVED
+CVE-2019-18242 (In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpre ...)
+ TODO: check
CVE-2019-18241 (In Philips IntelliBridge EC40 and EC80, IntelliBridge EC40 Hub all ver ...)
NOT-FOR-US: Philips
CVE-2019-18240 (In Fuji Electric V-Server 4.0.6 and prior, several heap-based buffer o ...)
NOT-FOR-US: Fuji
CVE-2019-18239
RESERVED
-CVE-2019-18238 (Moxa ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Config ...)
+CVE-2019-18238 (In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpre ...)
NOT-FOR-US: Moxa
CVE-2019-18237
RESERVED
@@ -31748,8 +31878,8 @@ CVE-2019-17278
RESERVED
CVE-2019-17277
RESERVED
-CVE-2019-17276
- RESERVED
+CVE-2019-17276 (OnCommand System Manager versions 9.3 prior to 9.3P18 and 9.4 prior to ...)
+ TODO: check
CVE-2019-17275 (OnCommand Cloud Manager versions prior to 3.8.0 are susceptible to arb ...)
NOT-FOR-US: OnCommand Cloud Manager
CVE-2019-17274 (NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller (BMC ...)
@@ -47544,7 +47674,7 @@ CVE-2019-12420 (In Apache SpamAssassin before 3.4.3, a message can be crafted in
CVE-2019-12419 (Apache CXF before 3.3.4 and 3.2.11 provides all of the components that ...)
NOT-FOR-US: Apache CFX
CVE-2019-12418 (When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0 and 7.0. ...)
- {DSA-4596-1 DLA-2077-1}
+ {DSA-4596-1 DLA-2155-1 DLA-2077-1}
- tomcat9 9.0.31-1
- tomcat8 <removed>
- tomcat7 <removed>
@@ -69139,8 +69269,8 @@ CVE-2019-4683
RESERVED
CVE-2019-4682
RESERVED
-CVE-2019-4681
- RESERVED
+CVE-2019-4681 (IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cr ...)
+ TODO: check
CVE-2019-4680
RESERVED
CVE-2019-4679 (IBM Content Navigator 3.0CD could allow an authenticated user to gain ...)
@@ -69395,8 +69525,8 @@ CVE-2019-4555 (IBM Cognos Analytics 11.0 and 11.0 is vulnerable to cross-site sc
NOT-FOR-US: IBM
CVE-2019-4554
RESERVED
-CVE-2019-4553
- RESERVED
+CVE-2019-4553 (IBM API Connect V5.0.0.0 through 5.0.8.7iFix3 uses weaker than expecte ...)
+ TODO: check
CVE-2019-4552
RESERVED
CVE-2019-4551 (IBM Security Directory Server 6.4.0 does not perform an authentication ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90cb0a1bdc0d458357f034d9c598a8dc9deb7dd6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90cb0a1bdc0d458357f034d9c598a8dc9deb7dd6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200324/9fe23b83/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list