[Git][security-tracker-team/security-tracker][master] Track CVE fixes for samba via experimental

Salvatore Bonaccorso carnil at debian.org
Thu Nov 12 12:00:23 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
46b98b9e by Salvatore Bonaccorso at 2020-11-12T12:59:57+01:00
Track CVE fixes for samba via experimental

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -32344,6 +32344,7 @@ CVE-2020-14384 (A flaw was found in JBossWeb in versions before 7.5.31.Final-red
 	NOT-FOR-US: JBossWeb
 CVE-2020-14383 [An authenticated user can crash the DCE/RPC DNS with easily crafted records]
 	RESERVED
+	[experimental] - samba 2:4.13.2+dfsg-1
 	- samba <unfixed> (bug #973398)
 	NOTE: https://www.samba.org/samba/security/CVE-2020-14383.html
 	NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14472
@@ -32615,6 +32616,7 @@ CVE-2020-14325 (Red Hat CloudForms before 5.11.7.0 was vulnerable to the User Im
 CVE-2020-14324 (A high severity vulnerability was found in all active versions of Red  ...)
 	NOT-FOR-US: Red Hat CloudForm
 CVE-2020-14323 (A null pointer dereference flaw was found in samba's Winbind service i ...)
+	[experimental] - samba 2:4.13.2+dfsg-1
 	- samba <unfixed> (bug #973399)
 	NOTE: https://www.samba.org/samba/security/CVE-2020-14323.html
 	NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14436
@@ -32628,6 +32630,7 @@ CVE-2020-14319 (It was found that the AMQ Online console is vulnerable to a Cros
 	NOT-FOR-US: AMQ Online
 CVE-2020-14318 [Missing handle permissions check in SMB1/2/3 ChangeNotify]
 	RESERVED
+	[experimental] - samba 2:4.13.2+dfsg-1
 	- samba <unfixed> (bug #973400)
 	NOTE: https://www.samba.org/samba/security/CVE-2020-14318.html
 	NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14434
@@ -69703,6 +69706,7 @@ CVE-2020-1474 (An information disclosure vulnerability exists when the Windows I
 CVE-2020-1473 (A remote code execution vulnerability exists when the Windows Jet Data ...)
 	NOT-FOR-US: Microsoft
 CVE-2020-1472 (An elevation of privilege vulnerability exists when an attacker establ ...)
+	[experimental] - samba 2:4.13.2+dfsg-1
 	- samba <unfixed> (bug #971048)
 	[buster] - samba <no-dsa> (Has already safe defaults; can be fixed along in point release)
 	NOTE: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1472



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/46b98b9e5792707b190cb90ccfce72f079e547f2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/46b98b9e5792707b190cb90ccfce72f079e547f2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201112/0c71f2bf/attachment.html>

More information about the debian-security-tracker-commits mailing list