[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Thu Nov 5 13:24:37 GMT 2020



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
253d479f by Moritz Muehlenhoff at 2020-11-05T14:24:23+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -39799,6 +39799,7 @@ CVE-2020-11206
 	RESERVED
 CVE-2020-11205
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11204
 	RESERVED
 CVE-2020-11203
@@ -39817,12 +39818,14 @@ CVE-2020-11197
 	RESERVED
 CVE-2020-11196
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11195
 	RESERVED
 CVE-2020-11194
 	RESERVED
 CVE-2020-11193
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11192
 	RESERVED
 CVE-2020-11191
@@ -39841,6 +39844,7 @@ CVE-2020-11185
 	RESERVED
 CVE-2020-11184
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11183
 	RESERVED
 CVE-2020-11182
@@ -39859,6 +39863,7 @@ CVE-2020-11176
 	RESERVED
 CVE-2020-11175
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11174 (u'Array index underflow issue in adsp driver due to improper check of  ...)
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11173 (u'Two threads running simultaneously from user space can lead to race  ...)
@@ -39873,6 +39878,7 @@ CVE-2020-11169 (u'Buffer over-read while processing received L2CAP packet due to
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11168
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11167
 	RESERVED
 CVE-2020-11166
@@ -39945,16 +39951,20 @@ CVE-2020-11133 (u'Possible out of bound array write in rxdco cal utility due to
 	NOT-FOR-US: Snapdragon
 CVE-2020-11132
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11131
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11130
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11129 (u'During the error occurrence in capture request, the buffer is freed  ...)
 	NOT-FOR-US: Snapdragon
 CVE-2020-11128 (u'Possible out of bound access while copying the mask file content int ...)
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11127
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11126
 	RESERVED
 CVE-2020-11125 (u'Out of bound access can happen in MHI command process due to lack of ...)
@@ -39963,10 +39973,12 @@ CVE-2020-11124 (u'Possible use-after-free while accessing diag client map table
 	NOT-FOR-US: Snapdragon
 CVE-2020-11123
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11122 (u'Null Pointer exception while playing crafted mkv file as data stream ...)
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11121
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11120 (u'Calling thread may free the data buffer pointer that was passed to t ...)
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-11119
@@ -59757,6 +59769,7 @@ CVE-2020-3640 (u'Resizing the usage table header before passing all the checks l
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-3639
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-3638 (u'An Unaligned address or size can propagate to the database due to im ...)
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-3637
@@ -59771,6 +59784,7 @@ CVE-2020-3633 (Array out of bound may occur while playing mp3 file as no check i
 	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-3632
 	RESERVED
+	NOT-FOR-US: Qualcomm components for Android
 CVE-2020-3631
 	RESERVED
 CVE-2020-3630 (Possibility of out of bound access while processing the responses from ...)
@@ -71169,6 +71183,7 @@ CVE-2020-0454
 	NOT-FOR-US: Android
 CVE-2020-0453
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2020-0452 [libexif overflow check could be optimized away]
 	RESERVED
 	- libexif <unfixed>
@@ -71178,16 +71193,22 @@ CVE-2020-0451
 	NOT-FOR-US: Android Media Framework
 CVE-2020-0450
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2020-0449
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2020-0448
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2020-0447
 	RESERVED
+	NOT-FOR-US: MediaTek components for Android
 CVE-2020-0446
 	RESERVED
+	NOT-FOR-US: MediaTek components for Android
 CVE-2020-0445
 	RESERVED
+	NOT-FOR-US: MediaTek components for Android
 CVE-2020-0444
 	RESERVED
 CVE-2020-0443
@@ -71209,6 +71230,7 @@ CVE-2020-0438
 	NOT-FOR-US: Android Media Framework
 CVE-2020-0437
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2020-0436
 	RESERVED
 CVE-2020-0435
@@ -71253,6 +71275,7 @@ CVE-2020-0425 (There is a possible way to view notifications even when the "Lock
 	NOT-FOR-US: Android
 CVE-2020-0424
 	RESERVED
+	NOT-FOR-US: Android
 CVE-2020-0423 (In binder_release_work of binder.c, there is a possible use-after-free ...)
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/f3277cbfba763cd2826396521b9296de67cf1bbc



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/253d479f777727ef773844bf8b11cd3107da2f2e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/253d479f777727ef773844bf8b11cd3107da2f2e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201105/d323a687/attachment.html>


More information about the debian-security-tracker-commits mailing list