[Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2020-8866/php-horde-form

Salvatore Bonaccorso carnil at debian.org
Thu Mar 26 21:17:51 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
35c04080 by Salvatore Bonaccorso at 2020-03-26T22:16:40+01:00
Add Debian bug reference for CVE-2020-8866/php-horde-form

- - - - -
e2daded6 by Salvatore Bonaccorso at 2020-03-26T22:17:15+01:00
Add Debian bug reference for CVE-2020-8865/php-horde-trean

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4954,12 +4954,12 @@ CVE-2020-8868 (This vulnerability allows remote attackers to execute arbitrary c
 CVE-2020-8867
 	RESERVED
 CVE-2020-8866 (This vulnerability allows remote attackers to create arbitrary files o ...)
-	- php-horde-form <unfixed>
+	- php-horde-form <unfixed> (bug #955020)
 	NOTE: https://lists.horde.org/archives/announce/2020/001288.html
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-20-275/
 	NOTE: https://github.com/horde/Form/commit/813f8e7e9479fad4546b89c569325ee9eef60b0f
 CVE-2020-8865 (This vulnerability allows remote attackers to execute local PHP files  ...)
-	- php-horde-trean <unfixed>
+	- php-horde-trean <unfixed> (bug #955019)
 	[buster] - php-horde-trean <no-dsa> (Minor issue)
 	[stretch] - php-horde-trean <no-dsa> (Minor issue)
 	NOTE: https://lists.horde.org/archives/announce/2020/001286.html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a9e8f6361e3c48f6f26c9b093af7c3ff05db4d0a...e2daded6312725266739137705ad6a2675c15a61

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a9e8f6361e3c48f6f26c9b093af7c3ff05db4d0a...e2daded6312725266739137705ad6a2675c15a61
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200326/c0014ac5/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list