[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sun May 10 09:10:25 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
842197b8 by security tracker role at 2020-05-10T08:10:19+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,14 +1,18 @@
-CVE-2020-12771 [bcache: fix potential deadlock problem in btree_gc_coalesce]
+CVE-2020-12767 (exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by ...)
+	TODO: check
+CVE-2019-20795 (iproute2 before 5.1.0 has a use-after-free in get_netnsid_from_name in ...)
+	TODO: check
+CVE-2020-12771 (An issue was discovered in the Linux kernel through 5.6.11. btree_gc_c ...)
 	- linux <unfixed>
 	NOTE: https://lkml.org/lkml/2020/4/26/87
-CVE-2020-12770 [scsi: sg: add sg_remove_request in sg_write]
+CVE-2020-12770 (An issue was discovered in the Linux kernel through 5.6.11. sg_write l ...)
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/83c6f2390040f188cc25b270b4befeb5628c1aee (5.7-rc3)
-CVE-2020-12769 [spi: spi-dw: Add lock protect dw_spi rx/tx to prevent concurrent calls]
+CVE-2020-12769 (An issue was discovered in the Linux kernel before 5.4.17. drivers/spi ...)
 	- linux 5.4.19-1
 	[buster] - linux 4.19.118-1
 	NOTE: https://git.kernel.org/linus/19b61392c5a852b4e8a0bf35aecb969983c5932d (5.5-rc6)
-CVE-2020-12768 [KVM: SVM: Fix potential memory leak in svm_cpu_init()]
+CVE-2020-12768 (An issue was discovered in the Linux kernel before 5.6. svm_cpu_uninit ...)
 	- linux 5.6.7-1
 	NOTE: https://git.kernel.org/linus/d80b64ff297e40c2b6f7d7abc1b3eba70d22a068 (5.6-rc4)
 CVE-2020-12766 (Gnuteca 3.8 allows action=main:search:simpleSearch SQL Injection via t ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/842197b8cf996f401fa720a8159357149be43aa5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/842197b8cf996f401fa720a8159357149be43aa5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200510/d68a458f/attachment.html>

More information about the debian-security-tracker-commits mailing list