[Git][security-tracker-team/security-tracker][master] CVE-2020-26880: Add notes on versions including the mitigation
Salvatore Bonaccorso
carnil at debian.org
Sun Nov 29 08:52:12 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
59ebb4af by Salvatore Bonaccorso at 2020-11-29T09:51:39+01:00
CVE-2020-26880: Add notes on versions including the mitigation
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8857,6 +8857,7 @@ CVE-2020-26880 (Sympa through 6.2.57b.2 allows a local privilege escalation from
NOTE: https://github.com/sympa-community/sympa/issues/943#issuecomment-704779420
NOTE: https://github.com/sympa-community/sympa/issues/943#issuecomment-704842235
NOTE: Mitigation: https://salsa.debian.org/sympa-team/sympa/-/commit/b904d5257beb135127f663ad8f6865c1b59efd50
+ NOTE: Mitigation present in 6.2.58~dfsg-2 and 6.2.16~dfsg-3+deb9u4 uploads
CVE-2020-26879 (Ruckus vRioT through 1.5.1.0.21 has an API backdoor that is hardcoded ...)
NOT-FOR-US: Ruckus
CVE-2020-26878 (Ruckus through 1.5.1.0.21 is affected by remote command injection. An ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59ebb4af7885e4332445d53e30f35513d69f938d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59ebb4af7885e4332445d53e30f35513d69f938d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201129/47047339/attachment.html>
More information about the debian-security-tracker-commits
mailing list