[Git][security-tracker-team/security-tracker][master] 3 commits: Add new exim4 issue (AUTH bypass in SPA authentication method)

Salvatore Bonaccorso carnil at debian.org
Mon May 11 15:47:41 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
69db1206 by Salvatore Bonaccorso at 2020-05-11T08:40:14+02:00
Add new exim4 issue (AUTH bypass in SPA authentication method)

- - - - -
3f6433de by Salvatore Bonaccorso at 2020-05-11T16:45:02+02:00
CVE-2020-12783/exim4 assigned

- - - - -
cada380e by Salvatore Bonaccorso at 2020-05-11T16:46:54+02:00
Merge branch 'exim4-SPA-auth-bypass-bug2571'

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,8 @@
+CVE-2020-12783 [Out-of-bound buffer read leads to Authentication Bypass in Exim SPA authentication method]
+	- exim4 4.93-16
+	NOTE: https://bugs.exim.org/show_bug.cgi?id=2571
+	NOTE: https://git.exim.org/exim.git/commitdiff/57aa14b216432be381b6295c312065b2fd034f86
+	NOTE: https://git.exim.org/exim.git/commitdiff/a04174dc2a84ae1008c23b6a7109e7fa3fb7b8b0
 CVE-2020-12772
 	RESERVED
 CVE-2020-12767 (exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1ae5798379cad3e966c1bc26981e0ce6c243b53c...cada380ee1580a57a1d95a6d265639d0d4825f8a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1ae5798379cad3e966c1bc26981e0ce6c243b53c...cada380ee1580a57a1d95a6d265639d0d4825f8a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200511/e5b3050f/attachment.html>


More information about the debian-security-tracker-commits mailing list