[Git][security-tracker-team/security-tracker][master] Add CVE-2020-26164/kdeconnect
Salvatore Bonaccorso
carnil at debian.org
Mon Oct 5 21:43:09 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d6220cbb by Salvatore Bonaccorso at 2020-10-05T22:42:40+02:00
Add CVE-2020-26164/kdeconnect
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -799,8 +799,20 @@ CVE-2020-26166 (The file upload functionality in qdPM 9.1 doesn't check the file
NOT-FOR-US: qdPM
CVE-2020-26165
RESERVED
-CVE-2020-26164
- RESERVED
+CVE-2020-26164 [packet manipulation can be exploited in a Denial of Service attack]
+ RESERVED
+ - kdeconnect <unfixed>
+ NOTE: https://kde.org/info/security/advisory-20201002-1.txt
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/f183b5447bad47655c21af87214579f03bf3a163
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/b279c52101d3f7cc30a26086d58de0b5f1c547fa
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/d35b88c1b25fe13715f9170f18674d476ca9acdc
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/b496e66899e5bc9547b6537a7f44ab44dd0aaf38
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/5310eae85dbdf92fba30375238a2481f2e34943e
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/721ba9faafb79aac73973410ee1dd3624ded97a5
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/ae58b9dec49c809b85b5404cee17946116f8a706
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/66c768aa9e7fba30b119c8b801efd49ed1270b0a
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/85b691e40f525e22ca5cc4ebe79c361d71d7dc05
+ NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/48180b46552d40729a36b7431e97bbe2b5379306
CVE-2020-26163 (BigBlueButton Greenlight before 2.5.6 allows HTTP header (Host and Ori ...)
NOT-FOR-US: BigBlueButton Greenlight
CVE-2020-26162
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6220cbb716c0e993a6406e68d75e9040b52e184
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6220cbb716c0e993a6406e68d75e9040b52e184
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201005/2295b59a/attachment.html>
More information about the debian-security-tracker-commits
mailing list