[Git][security-tracker-team/security-tracker][master] Add patch links of php-horde-trean and php-horde-form

Abhijith PA abhijith at debian.org
Wed Mar 25 13:43:10 GMT 2020



Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f9a189dd by Abhijith PA at 2020-03-25T19:12:24+05:30
Add patch links of php-horde-trean and php-horde-form

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4882,12 +4882,12 @@ CVE-2020-8866 (This vulnerability allows remote attackers to create arbitrary fi
 	- php-horde-form <unfixed>
 	NOTE: https://lists.horde.org/archives/announce/2020/001288.html
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-20-275/
-	TODO: check details
+	NOTE: https://github.com/horde/Form/commit/813f8e7e9479fad4546b89c569325ee9eef60b0f
 CVE-2020-8865 (This vulnerability allows remote attackers to execute local PHP files  ...)
 	- php-horde-trean <unfixed>
 	NOTE: https://lists.horde.org/archives/announce/2020/001286.html
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-20-276/
-	TODO: check details
+	NOTE: https://github.com/horde/trean/commit/db0714a0c04d87bda9e2852f1b0d259fc281ca75
 CVE-2020-8864 (This vulnerability allows network-adjacent attackers to bypass authent ...)
 	NOT-FOR-US: D-Link
 CVE-2020-8863 (This vulnerability allows network-adjacent attackers to bypass authent ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f9a189ddfd88666b6e8e637e06b58e3b29610454

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f9a189ddfd88666b6e8e637e06b58e3b29610454
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200325/486c8e20/attachment.html>


More information about the debian-security-tracker-commits mailing list