[Git][security-tracker-team/security-tracker][master] CVE-2020-26932/sympa assigned

Salvatore Bonaccorso carnil at debian.org
Sat Oct 10 19:29:48 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
54fcf72b by Salvatore Bonaccorso at 2020-10-10T20:28:14+02:00
CVE-2020-26932/sympa assigned

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -37171,9 +37171,11 @@ CVE-2020-10936 (Sympa before 6.2.56 allows privilege escalation. ...)
 	NOTE: Patch for sympa-6.1.25: https://github.com/sympa-community/sympa/releases/download/6.2.56/sympa-6.1.25-sa-2020-002-r2.patch
 	NOTE: https://sysdream.com/news/lab/2020-05-25-cve-2020-10936-sympa-privileges-escalation-to-root/
 	NOTE: https://github.com/sympa-community/sympa/issues/943
-	NOTE: On Debian systems sympa_newaliases-wrapper has loose permissions (already
-	NOTE: suid root and word-executable) allowing to gain root privileges without
-	NOTE: first to escalate to sympa user: https://bugs.debian.org/971904
+CVE-2020-26932
+	- sympa 6.2.40~dfsg-7 (bug #971904)
+	NOTE: Debian specific issue where sympa_newaliases-wrapper had loose permissions
+	NOTE: (already suid root and word-executable) allowing to gain root privileges
+	NOTE: without first to escalate to sympa user.
 	NOTE: https://salsa.debian.org/sympa-team/sympa/-/merge_requests/1
 CVE-2020-10935 (Zulip Server before 2.1.3 allows XSS via a Markdown link, with resulta ...)
 	- zulip-server <itp> (bug #800052)


=====================================
data/DLA/list
=====================================
@@ -11,7 +11,7 @@
 	{CVE-2019-11840 CVE-2019-11841 CVE-2020-9283}
 	[stretch] - golang-go.crypto 1:0.0~git20170407.0.55a552f+REALLY.0.0~git20161012.0.5f31782-1+deb8u1
 [07 Oct 2020] DLA-2401-1 sympa - security update
-	{CVE-2020-10936}
+	{CVE-2020-10936 CVE-2020-26932}
 	[stretch] - sympa 6.2.16~dfsg-3+deb9u3
 [07 Oct 2020] DLA-2400-1 activemq - security update
 	{CVE-2020-13920}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54fcf72b04d596b2e5b3c3611931de628e6d1379

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54fcf72b04d596b2e5b3c3611931de628e6d1379
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201010/5a29f5f5/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list