[Git][security-tracker-team/security-tracker][master] Add CVE-2020-8036/tcpdump

Thu Nov 5 07:18:13 GMT 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
41df8132 by Salvatore Bonaccorso at 2020-11-05T08:17:46+01:00
Add CVE-2020-8036/tcpdump

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -48130,7 +48130,8 @@ CVE-2020-8037 (The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocat
 	- tcpdump <unfixed>
 	NOTE: https://github.com/the-tcpdump-group/tcpdump/commit/32027e199368dad9508965aae8cd8de5b6ab5231
 CVE-2020-8036 (The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SO ...)
-	TODO: check
+	- tcpdump <not-affected> (Vulnerable code and support for SOME/IP protocol added later)
+	NOTE: https://github.com/the-tcpdump-group/tcpdump/commit/e2256b4f2506102be2c6f7976f84f0d607c53d43
 CVE-2020-8035 (The image view functionality in Horde Groupware Webmail Edition before ...)
 	{DLA-2230-1}
 	- php-horde 5.2.23+debian0-1 (bug #963809)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41df81324f883f70c754280e5301a20249f22d42

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41df81324f883f70c754280e5301a20249f22d42
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201105/597dd222/attachment-0001.html>
