[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat Nov 28 08:10:21 GMT 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f6e78210 by security tracker role at 2020-11-28T08:10:13+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,19 @@
+CVE-2020-29374 (An issue was discovered in the Linux kernel before 5.7.3, related to m ...)
+	TODO: check
+CVE-2020-29373 (An issue was discovered in fs/io_uring.c in the Linux kernel before 5. ...)
+	TODO: check
+CVE-2020-29372 (An issue was discovered in do_madvise in mm/madvise.c in the Linux ker ...)
+	TODO: check
+CVE-2020-29371 (An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the ...)
+	TODO: check
+CVE-2020-29370 (An issue was discovered in kmem_cache_alloc_bulk in mm/slub.c in the L ...)
+	TODO: check
+CVE-2020-29369 (An issue was discovered in mm/mmap.c in the Linux kernel before 5.7.11 ...)
+	TODO: check
+CVE-2020-29368 (An issue was discovered in __split_huge_pmd in mm/huge_memory.c in the ...)
+	TODO: check
+CVE-2019-20934 (An issue was discovered in the Linux kernel before 5.2.6. On NUMA syst ...)
+	TODO: check
 CVE-2020-29367 (blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffe ...)
 	TODO: check
 CVE-2020-29366
@@ -7979,8 +7995,8 @@ CVE-2020-27220
 	RESERVED
 CVE-2020-27219
 	RESERVED
-CVE-2020-27218
-	RESERVED
+CVE-2020-27218 (In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0  ...)
+	TODO: check
 CVE-2020-27217 (In Eclipse Hono version 1.3.0 and 1.4.0 the AMQP protocol adapter does ...)
 	NOT-FOR-US: Eclipse Hono
 CVE-2020-27216 (In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thr ...)
@@ -10136,8 +10152,8 @@ CVE-2020-26247
 	RESERVED
 CVE-2020-26246
 	RESERVED
-CVE-2020-26245
-	RESERVED
+CVE-2020-26245 (npm package systeminformation before version 4.30.5 is vulnerable to P ...)
+	TODO: check
 CVE-2020-26244
 	RESERVED
 CVE-2020-26243 (Nanopb is a small code-size Protocol Buffers implementation. In Nanopb ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f6e7821081c520a6772a71441ca3fc0e4e143071

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f6e7821081c520a6772a71441ca3fc0e4e143071
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201128/6bdcc89d/attachment.html>


More information about the debian-security-tracker-commits mailing list