[Git][security-tracker-team/security-tracker][master] Add CVE-2020-2766{2,3}/glpi
Salvatore Bonaccorso
carnil at debian.org
Thu Nov 26 20:14:33 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c44a75d5 by Salvatore Bonaccorso at 2020-11-26T21:14:01+01:00
Add CVE-2020-2766{2,3}/glpi
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6550,9 +6550,9 @@ CVE-2020-27665 (In Strapi before 3.2.5, there is no admin::hasPermissions restri
CVE-2020-27664 (admin/src/containers/InputModalStepperProvider/index.js in Strapi befo ...)
NOT-FOR-US: Strapi
CVE-2020-27663 (In GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct ...)
- TODO: check
+ - glpi <removed>
CVE-2020-27662 (In GLPI before 9.5.3, ajax/comments.php has an Insecure Direct Object ...)
- TODO: check
+ - glpi <removed>
CVE-2020-27661 [divide by zero in dwc2_handle_packet() in hw/usb/hcd-dwc2.c]
RESERVED
- qemu <unfixed> (bug #972864)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c44a75d5cfe54f1cff4d52e04a099142676d2c9d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c44a75d5cfe54f1cff4d52e04a099142676d2c9d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201126/864686cd/attachment.html>
More information about the debian-security-tracker-commits
mailing list