[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Fri May 22 21:10:28 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5e22f490 by security tracker role at 2020-05-22T20:10:21+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,103 @@
+CVE-2020-13405
+ RESERVED
+CVE-2020-13404
+ RESERVED
+CVE-2020-13403
+ RESERVED
+CVE-2020-13402
+ RESERVED
+CVE-2020-13401
+ RESERVED
+CVE-2020-13400
+ RESERVED
+CVE-2020-13399
+ RESERVED
+CVE-2020-13398 (An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB ...)
+ TODO: check
+CVE-2020-13397 (An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB ...)
+ TODO: check
+CVE-2020-13396 (An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB ...)
+ TODO: check
+CVE-2020-13395
+ RESERVED
+CVE-2020-13394 (An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 ...)
+ TODO: check
+CVE-2020-13393 (An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 ...)
+ TODO: check
+CVE-2020-13392 (An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 ...)
+ TODO: check
+CVE-2020-13391 (An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 ...)
+ TODO: check
+CVE-2020-13390 (An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 ...)
+ TODO: check
+CVE-2020-13389 (An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 ...)
+ TODO: check
+CVE-2020-13388 (An exploitable vulnerability exists in the configuration-loading funct ...)
+ TODO: check
+CVE-2020-13387
+ RESERVED
+CVE-2020-13386
+ RESERVED
+CVE-2020-13385
+ RESERVED
+CVE-2020-13384 (Monstra CMS 3.0.4 allows remote authenticated users to upload and exec ...)
+ TODO: check
+CVE-2020-13383
+ RESERVED
+CVE-2020-13382
+ RESERVED
+CVE-2020-13381
+ RESERVED
+CVE-2020-13380
+ RESERVED
+CVE-2020-13379
+ RESERVED
+CVE-2020-13378
+ RESERVED
+CVE-2020-13377
+ RESERVED
+CVE-2020-13376
+ RESERVED
+CVE-2020-13375
+ RESERVED
+CVE-2020-13374
+ RESERVED
+CVE-2020-13373
+ RESERVED
+CVE-2020-13372
+ RESERVED
+CVE-2020-13371
+ RESERVED
+CVE-2020-13370
+ RESERVED
+CVE-2020-13369
+ RESERVED
+CVE-2020-13368
+ RESERVED
+CVE-2020-13367
+ RESERVED
+CVE-2020-13366
+ RESERVED
+CVE-2020-13365
+ RESERVED
+CVE-2020-13364
+ RESERVED
+CVE-2020-13363
+ RESERVED
+CVE-2020-13362
+ RESERVED
+CVE-2020-13361
+ RESERVED
+CVE-2019-20805
+ RESERVED
+CVE-2019-20804 (Gila CMS before 1.11.6 allows CSRF with resultant XSS via the admin/th ...)
+ TODO: check
+CVE-2019-20803 (Gila CMS before 1.11.6 has reflected XSS via the admin/content/postcat ...)
+ TODO: check
+CVE-2018-21234 (Jodd before 5.0.4 performs Deserialization of Untrusted JSON Data when ...)
+ TODO: check
+CVE-2017-18868 (Digi XBee 2 devices do not have an effective protection mechanism agai ...)
+ TODO: check
CVE-2020-13360
RESERVED
CVE-2020-13359
@@ -1449,8 +1549,7 @@ CVE-2020-12695
RESERVED
CVE-2020-12694
RESERVED
-CVE-2020-12693
- RESERVED
+CVE-2020-12693 (Slurm 19.05.x before 19.05.7 and 20.02.x before 20.02.3, in the rare c ...)
- slurm-llnl <unfixed>
[buster] - slurm-llnl <no-dsa> (Minor issue)
[stretch] - slurm-llnl <no-dsa> (Minor issue)
@@ -2136,8 +2235,7 @@ CVE-2020-12399 [Force a fixed length for DSA exponentiation]
NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1631576 (non-public)
CVE-2020-12398
RESERVED
-CVE-2020-12397
- RESERVED
+CVE-2020-12397 (By encoding Unicode whitespace characters within the From email header ...)
{DSA-4683-1 DLA-2206-1}
- thunderbird 1:68.8.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-18/#CVE-2020-12397
@@ -2569,6 +2667,7 @@ CVE-2020-12245 (Grafana before 6.7.3 allows table-panel XSS via column.title or
- grafana <removed>
NOTE: https://github.com/grafana/grafana/pull/23816
CVE-2020-12244 (An issue has been found in PowerDNS Recursor 4.1.0 through 4.3.0 where ...)
+ {DSA-4691-1}
- pdns-recursor 4.3.1-1
[stretch] - pdns-recursor <end-of-life> (No longer supported, see DSA 4691)
NOTE: https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-02.html
@@ -6424,10 +6523,10 @@ CVE-2020-11079
RESERVED
CVE-2020-11078 (In httplib2 before version 0.18.0, an attacker controlling unescaped p ...)
TODO: check
-CVE-2020-11077
- RESERVED
-CVE-2020-11076
- RESERVED
+CVE-2020-11077 (In Puma (RubyGem) before 4.3.5 and 3.12.6, a client could smuggle a re ...)
+ TODO: check
+CVE-2020-11076 (In Puma (RubyGem) before 4.3.4 and 3.12.5, an attacker could smuggle a ...)
+ TODO: check
CVE-2020-11075
RESERVED
CVE-2020-11074
@@ -6697,6 +6796,7 @@ CVE-2020-10997 (Percona XtraBackup before 2.4.20 unintentionally writes the comm
CVE-2020-10996 (An issue was discovered in Percona XtraDB Cluster before 5.7.28-31.41. ...)
NOT-FOR-US: Percona XtraDB Cluster
CVE-2020-10995 (PowerDNS Recursor from 4.1.0 up to and including 4.3.0 does not suffic ...)
+ {DSA-4691-1}
- pdns-recursor 4.3.1-1
[stretch] - pdns-recursor <end-of-life> (No longer supported, see DSA 4691)
NOTE: https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-01.html
@@ -7666,8 +7766,7 @@ CVE-2020-10713
RESERVED
CVE-2020-10712 (A flaw was found in OpenShift Container Platform version 4.1 and later ...)
NOT-FOR-US: image registry operator in OpenShift Container Platform
-CVE-2020-10711 [linux: NetLabel: null pointer dereference while receiving CIPSO packet with null category]
- RESERVED
+CVE-2020-10711 (A NULL pointer dereference flaw was found in the Linux kernel's SELinu ...)
- linux <unfixed>
NOTE: https://www.openwall.com/lists/oss-security/2020/05/12/2
CVE-2020-10710
@@ -12213,8 +12312,8 @@ CVE-2020-8791 (The OKLOK (3.1.1) mobile companion app for Fingerprint Bluetooth
NOT-FOR-US: OKLOK
CVE-2020-8790 (The OKLOK (3.1.1) mobile companion app for Fingerprint Bluetooth Padlo ...)
NOT-FOR-US: OKLOK
-CVE-2020-8789
- RESERVED
+CVE-2020-8789 (Composr 10.0.30 allows Persistent XSS via a Usergroup name under the S ...)
+ TODO: check
CVE-2020-8788 (Synaptive Medical ClearCanvas ImageServer 3.0 Alpha allows XSS (and HT ...)
NOT-FOR-US: Synaptive Medical ClearCanvas ImageServer
CVE-2020-8787 (SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to ...)
@@ -13599,6 +13698,7 @@ CVE-2020-8162
RESERVED
CVE-2020-8161 [Directory traversal in Rack::Directory]
RESERVED
+ {DLA-2216-1}
- ruby-rack 2.1.1-5
NOTE: https://groups.google.com/forum/#!msg/rubyonrails-security/IOO1vNZTzPA/Ylzi1UYLAAAJ
NOTE: https://github.com/rack/rack/commit/dddb7ad18ed79ca6ab06ccc417a169fde451246e
@@ -14522,8 +14622,8 @@ CVE-2020-7815
RESERVED
CVE-2020-7814
RESERVED
-CVE-2020-7813
- RESERVED
+CVE-2020-7813 (Ezhttptrans.ocx ActiveX Control in Kaoni ezHTTPTrans 1.0.0.70 and prio ...)
+ TODO: check
CVE-2020-7812
RESERVED
CVE-2020-7811
@@ -14832,8 +14932,8 @@ CVE-2020-7660
RESERVED
CVE-2020-7659
RESERVED
-CVE-2020-7658
- RESERVED
+CVE-2020-7658 (meinheld prior to 1.0.2 is vulnerable to HTTP Request Smuggling. HTTP ...)
+ TODO: check
CVE-2020-7657
RESERVED
CVE-2020-7656 (jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load ...)
@@ -18607,8 +18707,8 @@ CVE-2020-6093 (An exploitable information disclosure vulnerability exists in the
NOT-FOR-US: Nitro Pro
CVE-2020-6092 (An exploitable code execution vulnerability exists in the way Nitro Pr ...)
NOT-FOR-US: Nitro Pro
-CVE-2020-6091
- RESERVED
+CVE-2020-6091 (An exploitable authentication bypass vulnerability exists in the ESPON ...)
+ TODO: check
CVE-2020-6090
RESERVED
CVE-2020-6089
@@ -26000,10 +26100,10 @@ CVE-2020-3346
RESERVED
CVE-2020-3345
RESERVED
-CVE-2020-3344
- RESERVED
-CVE-2020-3343
- RESERVED
+CVE-2020-3344 (A vulnerability in Cisco AMP for Endpoints Linux Connector Software an ...)
+ TODO: check
+CVE-2020-3343 (A vulnerability in Cisco AMP for Endpoints Linux Connector Software an ...)
+ TODO: check
CVE-2020-3342
RESERVED
CVE-2020-3341 (A vulnerability in the PDF archive parsing module in Clam AntiVirus (C ...)
@@ -26068,8 +26168,8 @@ CVE-2020-3316
RESERVED
CVE-2020-3315 (Multiple Cisco products are affected by a vulnerability in the Snort d ...)
NOT-FOR-US: Cisco
-CVE-2020-3314
- RESERVED
+CVE-2020-3314 (A vulnerability in the file scan process of Cisco AMP for Endpoints Ma ...)
+ TODO: check
CVE-2020-3313 (A vulnerability in the web UI of Cisco Firepower Management Center (FM ...)
NOT-FOR-US: Cisco
CVE-2020-3312 (A vulnerability in the application policy configuration of Cisco Firep ...)
@@ -26136,8 +26236,8 @@ CVE-2020-3282
RESERVED
CVE-2020-3281
RESERVED
-CVE-2020-3280
- RESERVED
+CVE-2020-3280 (A vulnerability in the Java Remote Management Interface of Cisco Unifi ...)
+ TODO: check
CVE-2020-3279
RESERVED
CVE-2020-3278
@@ -26152,8 +26252,8 @@ CVE-2020-3274
RESERVED
CVE-2020-3273 (A vulnerability in the 802.11 Generic Advertisement Service (GAS) fram ...)
NOT-FOR-US: Cisco
-CVE-2020-3272
- RESERVED
+CVE-2020-3272 (A vulnerability in the DHCP server of Cisco Prime Network Registrar co ...)
+ TODO: check
CVE-2020-3271
RESERVED
CVE-2020-3270
@@ -26328,8 +26428,8 @@ CVE-2020-3186 (A vulnerability in the management access list configuration of Ci
NOT-FOR-US: Cisco
CVE-2020-3185 (A vulnerability in the web-based management interface of Cisco TelePre ...)
NOT-FOR-US: Cisco
-CVE-2020-3184
- RESERVED
+CVE-2020-3184 (A vulnerability in the web-based management interface of Cisco Prime C ...)
+ TODO: check
CVE-2020-3183
RESERVED
CVE-2020-3182 (A vulnerability in the multicast DNS (mDNS) protocol configuration of ...)
@@ -29723,8 +29823,7 @@ CVE-2020-1957 (Apache Shiro before 1.5.2, when using Apache Shiro with Spring dy
NOTE: https://www.openwall.com/lists/oss-security/2020/03/23/2
NOTE: Fixed by: https://github.com/apache/shiro/commit/3708d7907016bf2fa12691dff6ff0def1249b8ce#diff-98f7bc5c0391389e56531f8b3754081aL139
NOTE: https://github.com/apache/shiro/pull/203#issuecomment-606270322
-CVE-2020-1956
- RESERVED
+CVE-2020-1956 (Kylin has some restful apis which will concatenate os command with the ...)
NOT-FOR-US: Apache Kylin
CVE-2020-1955 (CouchDB version 3.0.0 shipped with a new configuration setting that go ...)
- couchdb <removed>
@@ -33515,30 +33614,30 @@ CVE-2020-1197
RESERVED
CVE-2020-1196
RESERVED
-CVE-2020-1195
- RESERVED
+CVE-2020-1195 (An elevation of privilege vulnerability exists in Microsoft Edge (Chro ...)
+ TODO: check
CVE-2020-1194
RESERVED
CVE-2020-1193
RESERVED
-CVE-2020-1192
- RESERVED
-CVE-2020-1191
- RESERVED
-CVE-2020-1190
- RESERVED
-CVE-2020-1189
- RESERVED
-CVE-2020-1188
- RESERVED
-CVE-2020-1187
- RESERVED
-CVE-2020-1186
- RESERVED
-CVE-2020-1185
- RESERVED
-CVE-2020-1184
- RESERVED
+CVE-2020-1192 (A remote code execution vulnerability exists in Visual Studio Code whe ...)
+ TODO: check
+CVE-2020-1191 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
+CVE-2020-1190 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
+CVE-2020-1189 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
+CVE-2020-1188 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
+CVE-2020-1187 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
+CVE-2020-1186 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
+CVE-2020-1185 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
+CVE-2020-1184 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
CVE-2020-1183
RESERVED
CVE-2020-1182
@@ -33547,24 +33646,24 @@ CVE-2020-1181
RESERVED
CVE-2020-1180
RESERVED
-CVE-2020-1179
- RESERVED
+CVE-2020-1179 (An information disclosure vulnerability exists when the Windows GDI co ...)
+ TODO: check
CVE-2020-1178
RESERVED
CVE-2020-1177
RESERVED
-CVE-2020-1176
- RESERVED
-CVE-2020-1175
- RESERVED
-CVE-2020-1174
- RESERVED
-CVE-2020-1173
- RESERVED
+CVE-2020-1176 (A remote code execution vulnerability exists when the Windows Jet Data ...)
+ TODO: check
+CVE-2020-1175 (A remote code execution vulnerability exists when the Windows Jet Data ...)
+ TODO: check
+CVE-2020-1174 (A remote code execution vulnerability exists when the Windows Jet Data ...)
+ TODO: check
+CVE-2020-1173 (A spoofing vulnerability exists in Microsoft Power BI Report Server in ...)
+ TODO: check
CVE-2020-1172
RESERVED
-CVE-2020-1171
- RESERVED
+CVE-2020-1171 (A remote code execution vulnerability exists in Visual Studio Code whe ...)
+ TODO: check
CVE-2020-1170
RESERVED
CVE-2020-1169
@@ -33573,79 +33672,78 @@ CVE-2020-1168
RESERVED
CVE-2020-1167
RESERVED
-CVE-2020-1166
- RESERVED
-CVE-2020-1165
- RESERVED
-CVE-2020-1164
- RESERVED
+CVE-2020-1166 (An elevation of privilege vulnerability exists when Windows improperly ...)
+ TODO: check
+CVE-2020-1165 (An elevation of privilege vulnerability exists when Windows improperly ...)
+ TODO: check
+CVE-2020-1164 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
CVE-2020-1163
RESERVED
CVE-2020-1162
RESERVED
-CVE-2020-1161
- RESERVED
+CVE-2020-1161 (A denial of service vulnerability exists when ASP.NET Core improperly ...)
NOT-FOR-US: Microsoft .NET
CVE-2020-1160
RESERVED
CVE-2020-1159
RESERVED
-CVE-2020-1158
- RESERVED
-CVE-2020-1157
- RESERVED
-CVE-2020-1156
- RESERVED
-CVE-2020-1155
- RESERVED
-CVE-2020-1154
- RESERVED
-CVE-2020-1153
- RESERVED
+CVE-2020-1158 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
+CVE-2020-1157 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
+CVE-2020-1156 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
+CVE-2020-1155 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
+CVE-2020-1154 (An elevation of privilege vulnerability exists when the Windows Common ...)
+ TODO: check
+CVE-2020-1153 (A remote code execution vulnerability exists in the way that Microsoft ...)
+ TODO: check
CVE-2020-1152
RESERVED
-CVE-2020-1151
- RESERVED
-CVE-2020-1150
- RESERVED
-CVE-2020-1149
- RESERVED
+CVE-2020-1151 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
+CVE-2020-1150 (A memory corruption vulnerability exists when Windows Media Foundation ...)
+ TODO: check
+CVE-2020-1149 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
CVE-2020-1148
RESERVED
CVE-2020-1147
RESERVED
CVE-2020-1146
RESERVED
-CVE-2020-1145
- RESERVED
-CVE-2020-1144
- RESERVED
-CVE-2020-1143
- RESERVED
-CVE-2020-1142
- RESERVED
-CVE-2020-1141
- RESERVED
-CVE-2020-1140
- RESERVED
-CVE-2020-1139
- RESERVED
-CVE-2020-1138
- RESERVED
-CVE-2020-1137
- RESERVED
-CVE-2020-1136
- RESERVED
-CVE-2020-1135
- RESERVED
-CVE-2020-1134
- RESERVED
+CVE-2020-1145 (An information disclosure vulnerability exists in the way that the Win ...)
+ TODO: check
+CVE-2020-1144 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
+CVE-2020-1143 (An elevation of privilege vulnerability exists in Windows when the Win ...)
+ TODO: check
+CVE-2020-1142 (An elevation of privilege vulnerability exists in the way that the Win ...)
+ TODO: check
+CVE-2020-1141 (An information disclosure vulnerability exists in the way that the Win ...)
+ TODO: check
+CVE-2020-1140 (An elevation of privilege vulnerability exists when DirectX improperly ...)
+ TODO: check
+CVE-2020-1139 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
+CVE-2020-1138 (An elevation of privilege vulnerability exists when the Storage Servic ...)
+ TODO: check
+CVE-2020-1137 (An elevation of privilege vulnerability exists in the way the Windows ...)
+ TODO: check
+CVE-2020-1136 (A memory corruption vulnerability exists when Windows Media Foundation ...)
+ TODO: check
+CVE-2020-1135 (An elevation of privilege vulnerability exists when the Windows Graphi ...)
+ TODO: check
+CVE-2020-1134 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
CVE-2020-1133
RESERVED
-CVE-2020-1132
- RESERVED
-CVE-2020-1131
- RESERVED
+CVE-2020-1132 (An elevation of privilege vulnerability exists when Windows Error Repo ...)
+ TODO: check
+CVE-2020-1131 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
CVE-2020-1130
RESERVED
CVE-2020-1129
@@ -33654,165 +33752,164 @@ CVE-2020-1128
RESERVED
CVE-2020-1127
RESERVED
-CVE-2020-1126
- RESERVED
-CVE-2020-1125
- RESERVED
-CVE-2020-1124
- RESERVED
-CVE-2020-1123
- RESERVED
+CVE-2020-1126 (A memory corruption vulnerability exists when Windows Media Foundation ...)
+ TODO: check
+CVE-2020-1125 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
+CVE-2020-1124 (An elevation of privilege vulnerability exists when the Windows State ...)
+ TODO: check
+CVE-2020-1123 (A denial of service vulnerability exists when Connected User Experienc ...)
+ TODO: check
CVE-2020-1122
RESERVED
-CVE-2020-1121
- RESERVED
+CVE-2020-1121 (An elevation of privilege vulnerability exists when Windows improperly ...)
+ TODO: check
CVE-2020-1120
RESERVED
CVE-2020-1119
RESERVED
-CVE-2020-1118
- RESERVED
-CVE-2020-1117
- RESERVED
-CVE-2020-1116
- RESERVED
+CVE-2020-1118 (A denial of service vulnerability exists in the Windows implementation ...)
+ TODO: check
+CVE-2020-1117 (A remote code execution vulnerability exists in the way that the Color ...)
+ TODO: check
+CVE-2020-1116 (An information disclosure vulnerability exists when the Windows Client ...)
+ TODO: check
CVE-2020-1115
RESERVED
-CVE-2020-1114
- RESERVED
-CVE-2020-1113
- RESERVED
-CVE-2020-1112
- RESERVED
-CVE-2020-1111
- RESERVED
-CVE-2020-1110
- RESERVED
-CVE-2020-1109
- RESERVED
-CVE-2020-1108
- RESERVED
+CVE-2020-1114 (An elevation of privilege vulnerability exists when the Windows kernel ...)
+ TODO: check
+CVE-2020-1113 (A security feature bypass vulnerability exists in Microsoft Windows wh ...)
+ TODO: check
+CVE-2020-1112 (An elevation of privilege vulnerability exists when the Windows Backgr ...)
+ TODO: check
+CVE-2020-1111 (An elevation of privilege vulnerability exists when Windows improperly ...)
+ TODO: check
+CVE-2020-1110 (An elevation of privilege vulnerability exists when the Windows Update ...)
+ TODO: check
+CVE-2020-1109 (An elevation of privilege vulnerability exists when the Windows Update ...)
+ TODO: check
+CVE-2020-1108 (A denial of service vulnerability exists when .NET Core or .NET Framew ...)
NOT-FOR-US: Microsoft .NET
-CVE-2020-1107
- RESERVED
-CVE-2020-1106
- RESERVED
-CVE-2020-1105
- RESERVED
-CVE-2020-1104
- RESERVED
-CVE-2020-1103
- RESERVED
-CVE-2020-1102
- RESERVED
-CVE-2020-1101
- RESERVED
-CVE-2020-1100
- RESERVED
-CVE-2020-1099
- RESERVED
+CVE-2020-1107 (A spoofing vulnerability exists when Microsoft SharePoint Server does ...)
+ TODO: check
+CVE-2020-1106 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...)
+ TODO: check
+CVE-2020-1105 (A spoofing vulnerability exists when Microsoft SharePoint Server does ...)
+ TODO: check
+CVE-2020-1104 (A spoofing vulnerability exists when Microsoft SharePoint Server does ...)
+ TODO: check
+CVE-2020-1103 (An information disclosure vulnerability exists where certain modes of ...)
+ TODO: check
+CVE-2020-1102 (A remote code execution vulnerability exists in Microsoft SharePoint w ...)
+ TODO: check
+CVE-2020-1101 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...)
+ TODO: check
+CVE-2020-1100 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...)
+ TODO: check
+CVE-2020-1099 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...)
+ TODO: check
CVE-2020-1098
RESERVED
CVE-2020-1097
RESERVED
-CVE-2020-1096
- RESERVED
+CVE-2020-1096 (A remote code execution vulnerability exists when Microsoft Edge PDF R ...)
+ TODO: check
CVE-2020-1095
RESERVED
CVE-2020-1094 (An elevation of privilege vulnerability exists when the Windows Work F ...)
NOT-FOR-US: Microsoft
-CVE-2020-1093
- RESERVED
-CVE-2020-1092
- RESERVED
+CVE-2020-1093 (A remote code execution vulnerability exists in the way that the VBScr ...)
+ TODO: check
+CVE-2020-1092 (A remote code execution vulnerability exists when Internet Explorer im ...)
+ TODO: check
CVE-2020-1091
RESERVED
-CVE-2020-1090
- RESERVED
+CVE-2020-1090 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
CVE-2020-1089
RESERVED
-CVE-2020-1088
- RESERVED
-CVE-2020-1087
- RESERVED
-CVE-2020-1086
- RESERVED
+CVE-2020-1088 (An elevation of privilege vulnerability exists in Windows Error Report ...)
+ TODO: check
+CVE-2020-1087 (An elevation of privilege vulnerability exists in the way that the Win ...)
+ TODO: check
+CVE-2020-1086 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
CVE-2020-1085
RESERVED
-CVE-2020-1084
- RESERVED
+CVE-2020-1084 (A Denial Of Service vulnerability exists when Connected User Experienc ...)
+ TODO: check
CVE-2020-1083
RESERVED
-CVE-2020-1082
- RESERVED
-CVE-2020-1081
- RESERVED
+CVE-2020-1082 (An elevation of privilege vulnerability exists in Windows Error Report ...)
+ TODO: check
+CVE-2020-1081 (An elevation of privilege vulnerability exists when the Windows Printe ...)
+ TODO: check
CVE-2020-1080
RESERVED
-CVE-2020-1079
- RESERVED
-CVE-2020-1078
- RESERVED
-CVE-2020-1077
- RESERVED
-CVE-2020-1076
- RESERVED
-CVE-2020-1075
- RESERVED
+CVE-2020-1079 (An elevation of privilege vulnerability exists when the Windows fails ...)
+ TODO: check
+CVE-2020-1078 (An elevation of privilege vulnerability exists in Windows Installer be ...)
+ TODO: check
+CVE-2020-1077 (An elevation of privilege vulnerability exists when the Windows Runtim ...)
+ TODO: check
+CVE-2020-1076 (A denial of service vulnerability exists when Windows improperly handl ...)
+ TODO: check
+CVE-2020-1075 (An information disclosure vulnerability exists when Windows Subsystem ...)
+ TODO: check
CVE-2020-1074
RESERVED
CVE-2020-1073
RESERVED
-CVE-2020-1072
- RESERVED
-CVE-2020-1071
- RESERVED
-CVE-2020-1070
- RESERVED
-CVE-2020-1069
- RESERVED
-CVE-2020-1068
- RESERVED
-CVE-2020-1067
- RESERVED
-CVE-2020-1066
- RESERVED
-CVE-2020-1065
- RESERVED
-CVE-2020-1064
- RESERVED
-CVE-2020-1063
- RESERVED
-CVE-2020-1062
- RESERVED
-CVE-2020-1061
- RESERVED
-CVE-2020-1060
- RESERVED
-CVE-2020-1059
- RESERVED
-CVE-2020-1058
- RESERVED
+CVE-2020-1072 (An information disclosure vulnerability exists when the Windows kernel ...)
+ TODO: check
+CVE-2020-1071 (An elevation of privilege vulnerability exists when Windows improperly ...)
+ TODO: check
+CVE-2020-1070 (An elevation of privilege vulnerability exists when the Windows Print ...)
+ TODO: check
+CVE-2020-1069 (A remote code execution vulnerability exists in Microsoft SharePoint S ...)
+ TODO: check
+CVE-2020-1068 (An elevation of privilege vulnerability exists in Windows Media Servic ...)
+ TODO: check
+CVE-2020-1067 (A remote code execution vulnerability exists in the way that Windows h ...)
+ TODO: check
+CVE-2020-1066 (An elevation of privilege vulnerability exists in .NET Framework which ...)
+ TODO: check
+CVE-2020-1065 (A remote code execution vulnerability exists in the way that the Chakr ...)
+ TODO: check
+CVE-2020-1064 (A remote code execution vulnerability exists in the way that the MSHTM ...)
+ TODO: check
+CVE-2020-1063 (A cross site scripting vulnerability exists when Microsoft Dynamics 36 ...)
+ TODO: check
+CVE-2020-1062 (A remote code execution vulnerability exists when Internet Explorer im ...)
+ TODO: check
+CVE-2020-1061 (A remote code execution vulnerability exists in the way that the Micro ...)
+ TODO: check
+CVE-2020-1060 (A remote code execution vulnerability exists in the way that the VBScr ...)
+ TODO: check
+CVE-2020-1059 (A spoofing vulnerability exists when Microsoft Edge does not properly ...)
+ TODO: check
+CVE-2020-1058 (A remote code execution vulnerability exists in the way that the VBScr ...)
+ TODO: check
CVE-2020-1057
RESERVED
-CVE-2020-1056
- RESERVED
-CVE-2020-1055
- RESERVED
-CVE-2020-1054
- RESERVED
+CVE-2020-1056 (An elevation of privilege vulnerability exists when Microsoft Edge doe ...)
+ TODO: check
+CVE-2020-1055 (A cross-site-scripting (XSS) vulnerability exists when Active Director ...)
+ TODO: check
+CVE-2020-1054 (An elevation of privilege vulnerability exists in Windows when the Win ...)
+ TODO: check
CVE-2020-1053
RESERVED
CVE-2020-1052
RESERVED
-CVE-2020-1051
- RESERVED
+CVE-2020-1051 (A remote code execution vulnerability exists when the Windows Jet Data ...)
+ TODO: check
CVE-2020-1050 (A cross site scripting vulnerability exists when Microsoft Dynamics 36 ...)
NOT-FOR-US: Microsoft
CVE-2020-1049 (A cross site scripting vulnerability exists when Microsoft Dynamics 36 ...)
NOT-FOR-US: Microsoft
-CVE-2020-1048
- RESERVED
+CVE-2020-1048 (An elevation of privilege vulnerability exists when the Windows Print ...)
+ TODO: check
CVE-2020-1047
RESERVED
CVE-2020-1046
@@ -33833,12 +33930,12 @@ CVE-2020-1039
RESERVED
CVE-2020-1038
RESERVED
-CVE-2020-1037
- RESERVED
+CVE-2020-1037 (A remote code execution vulnerability exists in the way that the Chakr ...)
+ TODO: check
CVE-2020-1036
RESERVED
-CVE-2020-1035
- RESERVED
+CVE-2020-1035 (A remote code execution vulnerability exists in the way that the VBScr ...)
+ TODO: check
CVE-2020-1034
RESERVED
CVE-2020-1033
@@ -33851,22 +33948,22 @@ CVE-2020-1030
RESERVED
CVE-2020-1029 (An elevation of privilege vulnerability exists when Connected User Exp ...)
NOT-FOR-US: Microsoft
-CVE-2020-1028
- RESERVED
+CVE-2020-1028 (A memory corruption vulnerability exists when Windows Media Foundation ...)
+ TODO: check
CVE-2020-1027 (An elevation of privilege vulnerability exists in the way that the Win ...)
NOT-FOR-US: Microsoft
CVE-2020-1026 (A Security Feature Bypass vulnerability exists in the MSR JavaScript C ...)
NOT-FOR-US: Microsoft
CVE-2020-1025
RESERVED
-CVE-2020-1024
- RESERVED
-CVE-2020-1023
- RESERVED
+CVE-2020-1024 (A remote code execution vulnerability exists in Microsoft SharePoint w ...)
+ TODO: check
+CVE-2020-1023 (A remote code execution vulnerability exists in Microsoft SharePoint w ...)
+ TODO: check
CVE-2020-1022 (A remote code execution vulnerability exists in Microsoft Dynamics Bus ...)
NOT-FOR-US: Microsoft
-CVE-2020-1021
- RESERVED
+CVE-2020-1021 (An elevation of privilege vulnerability exists in Windows Error Report ...)
+ TODO: check
CVE-2020-1020 (A remote code execution vulnerability exists in Microsoft Windows when ...)
NOT-FOR-US: Microsoft
CVE-2020-1019 (An elevation of privilege vulnerability exists in RMS Sharing App for ...)
@@ -33887,8 +33984,8 @@ CVE-2020-1012
RESERVED
CVE-2020-1011 (An elevation of privilege vulnerability exists when the Windows System ...)
NOT-FOR-US: Microsoft
-CVE-2020-1010
- RESERVED
+CVE-2020-1010 (An elevation of privilege vulnerability exists in Windows Block Level ...)
+ TODO: check
CVE-2020-1009 (An elevation of privilege vulnerability exists in the way that the Mic ...)
NOT-FOR-US: Microsoft
CVE-2020-1008 (A remote code execution vulnerability exists when the Windows Jet Data ...)
@@ -33981,8 +34078,8 @@ CVE-2020-0965 (A remoted code execution vulnerability exists in the way that Mic
NOT-FOR-US: Microsoft
CVE-2020-0964 (A remote code execution vulnerability exists in the way that the Windo ...)
NOT-FOR-US: Microsoft
-CVE-2020-0963
- RESERVED
+CVE-2020-0963 (An information disclosure vulnerability exists when the Windows GDI co ...)
+ TODO: check
CVE-2020-0962 (An information disclosure vulnerability exists when the win32k compone ...)
NOT-FOR-US: Microsoft
CVE-2020-0961 (A remote code execution vulnerability exists when the Microsoft Office ...)
@@ -34089,8 +34186,8 @@ CVE-2020-0911
RESERVED
CVE-2020-0910 (A remote code execution vulnerability exists when Windows Hyper-V on a ...)
NOT-FOR-US: Microsoft
-CVE-2020-0909
- RESERVED
+CVE-2020-0909 (A denial of service vulnerability exists when Hyper-V on a Windows Ser ...)
+ TODO: check
CVE-2020-0908
RESERVED
CVE-2020-0907 (A remote code execution vulnerability exists in the way that Microsoft ...)
@@ -34105,8 +34202,8 @@ CVE-2020-0903 (A cross-site-scripting (XSS) vulnerability exists when Microsoft
NOT-FOR-US: Microsoft
CVE-2020-0902 (An elevation of privilege vulnerability exists in Service Fabric File ...)
NOT-FOR-US: Microsoft
-CVE-2020-0901
- RESERVED
+CVE-2020-0901 (A remote code execution vulnerability exists in Microsoft Excel softwa ...)
+ TODO: check
CVE-2020-0900 (An elevation of privilege vulnerability exists when the Visual Studio ...)
NOT-FOR-US: Microsoft
CVE-2020-0899 (An elevation of privilege vulnerability exists when Microsoft Visual S ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e22f4907deabe87aad165e5b00194b5437876e1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e22f4907deabe87aad165e5b00194b5437876e1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200522/e440ec7e/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list