[Git][security-tracker-team/security-tracker][master] k8s bugnum

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3de3fdc6 by Moritz Muehlenhoff at 2020-10-16T14:57:24+02:00
k8s bugnum
NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1257,7 +1257,7 @@ CVE-2020-26571 (The gemsafe GPK smart card software driver in OpenSC before 0.21
 	[buster] - opensc <no-dsa> (Minor issue)
 	[stretch] - opensc <no-dsa> (Minor issue)
 	NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20612
-	TODO: check, unclear fixing commit
+	NOTE: https://github.com/OpenSC/OpenSC/commit/ed55fcd2996930bf58b9bb57e9ba7b1f3a753c43
 CVE-2020-26570 (The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 ha ...)
 	- opensc <unfixed> (bug #972037)
 	[buster] - opensc <no-dsa> (Minor issue)
@@ -43845,19 +43845,19 @@ CVE-2020-8567
 	RESERVED
 CVE-2020-8566
 	RESERVED
-	- kubernetes <unfixed>
+	- kubernetes <unfixed> (bug #972341)
 	NOTE: https://github.com/kubernetes/kubernetes/pull/95245
 	NOTE: https://groups.google.com/g/kubernetes-announce/c/ScdmyORnPDk
 	NOTE: https://github.com/kubernetes/kubernetes/issues/95624
 CVE-2020-8565
 	RESERVED
-	- kubernetes <unfixed>
+	- kubernetes <unfixed> (bug #972341)
 	NOTE: https://github.com/kubernetes/kubernetes/pull/95316
 	NOTE: https://groups.google.com/g/kubernetes-announce/c/ScdmyORnPDk
 	NOTE: https://github.com/kubernetes/kubernetes/issues/95623
 CVE-2020-8564
 	RESERVED
-	- kubernetes <unfixed>
+	- kubernetes <unfixed> (bug #972341)
 	NOTE: https://github.com/kubernetes/kubernetes/pull/94712
 	NOTE: https://groups.google.com/g/kubernetes-announce/c/ScdmyORnPDk
 	NOTE: https://github.com/kubernetes/kubernetes/issues/95622
@@ -68326,7 +68326,7 @@ CVE-2020-0412 (In setProcessMemoryTrimLevel of ActivityManagerService.java, ther
 CVE-2020-0411 (In ~AACExtractor() of AACExtractor.cpp, there is a possible out of bou ...)
 	NOT-FOR-US: Android Media Framework
 CVE-2020-0410 (In setNotification of SapServer.java, there is a possible permission b ...)
-	TODO: check
+	NOT-FOR-US: Android
 CVE-2020-0409
 	RESERVED
 CVE-2020-0408 (In remove of String16.cpp, there is a possible out of bounds write due ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3de3fdc6359f7e79c294a9552d1e394f869e8a6a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3de3fdc6359f7e79c294a9552d1e394f869e8a6a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201016/0c4edea4/attachment.html>