[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Wed Oct 21 21:10:29 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
99f4720f by security tracker role at 2020-10-21T20:10:22+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,29 @@
+CVE-2020-27613 (The installation procedure in BigBlueButton before 2.2.17 uses ClueCon ...)
+ TODO: check
+CVE-2020-27612 (Greenlight in BigBlueButton through 2.2.28 places usernames in room UR ...)
+ TODO: check
+CVE-2020-27611 (BigBlueButton through 2.2.28 uses STUN/TURN resources from a third par ...)
+ TODO: check
+CVE-2020-27610 (The installation procedure in BigBlueButton before 2.2.28 (or earlier) ...)
+ TODO: check
+CVE-2020-27609 (BigBlueButton through 2.2.28 records a video meeting despite the deact ...)
+ TODO: check
+CVE-2020-27608 (In BigBlueButton before 2.2.6, uploaded presentations are sent to clie ...)
+ TODO: check
+CVE-2020-27607 (In BigBlueButton before 2.2.28 (or earlier), the client-side Mute butt ...)
+ TODO: check
+CVE-2020-27606 (BigBlueButton before 2.2.28 (or earlier) does not set the secure flag ...)
+ TODO: check
+CVE-2020-27605 (BigBlueButton through 2.2.28 uses Ghostscript for processing of upload ...)
+ TODO: check
+CVE-2020-27604 (BigBlueButton before 2.3 does not implement LibreOffice sandboxing. Th ...)
+ TODO: check
+CVE-2020-27603 (BigBlueButton before 2.2.27 has an unsafe JODConverter setting in whic ...)
+ TODO: check
+CVE-2020-27602 (BigBlueButton before 2.2.7 does not have a protection mechanism for se ...)
+ TODO: check
+CVE-2020-27601 (In BigBlueButton before 2.2.7, lockSettingsProps.disablePrivateChat do ...)
+ TODO: check
CVE-2020-XXXX [Rogue guests can cause DoS of Dom0 via high frequency events]
- linux <unfixed>
NOTE: https://xenbits.xen.org/xsa/advisory-332.html
@@ -923,6 +949,7 @@ CVE-2020-27152 [KVM: host stack overflow due to lazy update IOAPIC]
CVE-2020-27151
RESERVED
CVE-2020-27153 (In BlueZ before 5.55, a double free was found in the gatttool disconne ...)
+ {DLA-2410-1}
- bluez 5.55-1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1884817
NOTE: https://github.com/bluez/bluez/commit/1cd644db8c23a2f530ddb93cebed7dacc5f5721a
@@ -3736,8 +3763,8 @@ CVE-2020-25822
RESERVED
CVE-2020-25821 (** UNSUPPORTED WHEN ASSIGNED ** peg-markdown 0.4.14 has a NULL pointer ...)
NOT-FOR-US: peg-markdown
-CVE-2020-25820
- RESERVED
+CVE-2020-25820 (BigBlueButton before 2.2.27 allows remote authenticated users to read ...)
+ TODO: check
CVE-2020-25819
RESERVED
CVE-2020-25818
@@ -21052,8 +21079,8 @@ CVE-2020-17383
RESERVED
CVE-2020-17382 (The MSI AmbientLink MsIo64 driver 1.0.0.8 has a Buffer Overflow (0x801 ...)
NOT-FOR-US: MSI AmbientLink MsIo64 driver
-CVE-2020-17381
- RESERVED
+CVE-2020-17381 (An issue was discovered in Ghisler Total Commander 9.51. Due to insuff ...)
+ TODO: check
CVE-2020-17380 [heap buffer overflow in sdhci_sdma_transfer_multi_blocks() in hw/sd/sdhci.c]
RESERVED
- qemu <unfixed> (bug #970937)
@@ -23989,6 +24016,7 @@ CVE-2020-16000
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15999 [heap buffer overflow]
RESERVED
+ {DSA-4777-1}
- freetype 2.10.2+dfsg-4 (bug #972586)
NOTE: https://www.openwall.com/lists/oss-security/2020/10/20/7
NOTE: https://savannah.nongnu.org/bugs/?59308
@@ -26032,8 +26060,8 @@ CVE-2020-15242 (Next.js versions >=9.5.0 and <9.5.4 are vulnerable to an O
NOT-FOR-US: next.js
CVE-2020-15241 (TYPO3 Fluid Engine (package `typo3fluid/fluid`) before versions 2.0.5, ...)
NOT-FOR-US: TYPO3 Fluid Engine
-CVE-2020-15240
- RESERVED
+CVE-2020-15240 (omniauth-auth0 (rubygems) versions >= 2.3.0 and < 2.4.1 improper ...)
+ TODO: check
CVE-2020-15239 (In xmpp-http-upload before version 0.4.0, when the GET method is attac ...)
NOT-FOR-US: xmpp-http-upload
CVE-2020-15238
@@ -26859,393 +26887,332 @@ CVE-2020-14903
RESERVED
CVE-2020-14902
RESERVED
-CVE-2020-14901
- RESERVED
-CVE-2020-14900
- RESERVED
-CVE-2020-14899
- RESERVED
-CVE-2020-14898
- RESERVED
-CVE-2020-14897
- RESERVED
-CVE-2020-14896
- RESERVED
-CVE-2020-14895
- RESERVED
-CVE-2020-14894
- RESERVED
-CVE-2020-14893
- RESERVED
+CVE-2020-14901 (Vulnerability in the RDBMS Security component of Oracle Database Serve ...)
+ TODO: check
+CVE-2020-14900 (Vulnerability in the Oracle Application Express Group Calendar compone ...)
+ TODO: check
+CVE-2020-14899 (Vulnerability in the Oracle Application Express Data Reporter componen ...)
+ TODO: check
+CVE-2020-14898 (Vulnerability in the Oracle Application Express Packaged Apps componen ...)
+ TODO: check
+CVE-2020-14897 (Vulnerability in the Oracle FLEXCUBE Direct Banking product of Oracle ...)
+ TODO: check
+CVE-2020-14896 (Vulnerability in the Oracle Banking Payments product of Oracle Financi ...)
+ TODO: check
+CVE-2020-14895 (Vulnerability in the Oracle Utilities Framework product of Oracle Util ...)
+ TODO: check
+CVE-2020-14894 (Vulnerability in the Oracle Banking Corporate Lending product of Oracl ...)
+ TODO: check
+CVE-2020-14893 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14892
- RESERVED
+CVE-2020-14892 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.16-dfsg-1
-CVE-2020-14891
- RESERVED
+CVE-2020-14891 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14890
- RESERVED
-CVE-2020-14889
- RESERVED
+CVE-2020-14890 (Vulnerability in the Oracle FLEXCUBE Direct Banking product of Oracle ...)
+ TODO: check
+CVE-2020-14889 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.16-dfsg-1
-CVE-2020-14888
- RESERVED
+CVE-2020-14888 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14887
- RESERVED
-CVE-2020-14886
- RESERVED
+CVE-2020-14887 (Vulnerability in the Oracle FLEXCUBE Universal Banking product of Orac ...)
+ TODO: check
+CVE-2020-14886 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.16-dfsg-1
-CVE-2020-14885
- RESERVED
+CVE-2020-14885 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.16-dfsg-1
-CVE-2020-14884
- RESERVED
+CVE-2020-14884 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.16-dfsg-1
-CVE-2020-14883
- RESERVED
-CVE-2020-14882
- RESERVED
-CVE-2020-14881
- RESERVED
+CVE-2020-14883 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
+CVE-2020-14882 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
+CVE-2020-14881 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.16-dfsg-1
-CVE-2020-14880
- RESERVED
-CVE-2020-14879
- RESERVED
-CVE-2020-14878
- RESERVED
+CVE-2020-14880 (Vulnerability in the BI Publisher product of Oracle Fusion Middleware ...)
+ TODO: check
+CVE-2020-14879 (Vulnerability in the BI Publisher product of Oracle Fusion Middleware ...)
+ TODO: check
+CVE-2020-14878 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14877
- RESERVED
-CVE-2020-14876
- RESERVED
+CVE-2020-14877 (Vulnerability in the Oracle Hospitality OPERA 5 Property Services prod ...)
+ TODO: check
+CVE-2020-14876 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
- mysql-8.0 <unfixed>
-CVE-2020-14875
- RESERVED
+CVE-2020-14875 (Vulnerability in the Oracle Marketing product of Oracle E-Business Sui ...)
+ TODO: check
CVE-2020-14874
RESERVED
-CVE-2020-14873
- RESERVED
+CVE-2020-14873 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14872
- RESERVED
+CVE-2020-14872 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.16-dfsg-1
-CVE-2020-14871
- RESERVED
-CVE-2020-14870
- RESERVED
+CVE-2020-14871 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
+ TODO: check
+CVE-2020-14870 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14869
- RESERVED
+CVE-2020-14869 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
- mysql-8.0 <unfixed>
-CVE-2020-14868
- RESERVED
+CVE-2020-14868 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14867
- RESERVED
+CVE-2020-14867 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
- mysql-8.0 <unfixed>
-CVE-2020-14866
- RESERVED
+CVE-2020-14866 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14865
- RESERVED
-CVE-2020-14864
- RESERVED
-CVE-2020-14863
- RESERVED
-CVE-2020-14862
- RESERVED
-CVE-2020-14861
- RESERVED
+CVE-2020-14865 (Vulnerability in the PeopleSoft Enterprise SCM eSupplier Connection pr ...)
+ TODO: check
+CVE-2020-14864 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
+ TODO: check
+CVE-2020-14863 (Vulnerability in the Oracle One-to-One Fulfillment product of Oracle E ...)
+ TODO: check
+CVE-2020-14862 (Vulnerability in the Oracle Universal Work Queue product of Oracle E-B ...)
+ TODO: check
+CVE-2020-14861 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14860
- RESERVED
+CVE-2020-14860 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14859
- RESERVED
-CVE-2020-14858
- RESERVED
-CVE-2020-14857
- RESERVED
-CVE-2020-14856
- RESERVED
-CVE-2020-14855
- RESERVED
-CVE-2020-14854
- RESERVED
-CVE-2020-14853
- RESERVED
+CVE-2020-14859 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
+CVE-2020-14858 (Vulnerability in the Oracle Hospitality OPERA 5 Property Services prod ...)
+ TODO: check
+CVE-2020-14857 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
+ TODO: check
+CVE-2020-14856 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
+ TODO: check
+CVE-2020-14855 (Vulnerability in the Oracle Universal Work Queue product of Oracle E-B ...)
+ TODO: check
+CVE-2020-14854 (Vulnerability in the Hyperion Infrastructure Technology product of Ora ...)
+ TODO: check
+CVE-2020-14853 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14852
- RESERVED
+CVE-2020-14852 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14851
- RESERVED
-CVE-2020-14850
- RESERVED
-CVE-2020-14849
- RESERVED
-CVE-2020-14848
- RESERVED
+CVE-2020-14851 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
+ TODO: check
+CVE-2020-14850 (Vulnerability in the Oracle CRM Technical Foundation product of Oracle ...)
+ TODO: check
+CVE-2020-14849 (Vulnerability in the Oracle Marketing product of Oracle E-Business Sui ...)
+ TODO: check
+CVE-2020-14848 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14847
- RESERVED
-CVE-2020-14846
- RESERVED
+CVE-2020-14847 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2020-14846 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14845
- RESERVED
+CVE-2020-14845 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14844
- RESERVED
+CVE-2020-14844 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14843
- RESERVED
-CVE-2020-14842
- RESERVED
-CVE-2020-14841
- RESERVED
-CVE-2020-14840
- RESERVED
-CVE-2020-14839
- RESERVED
+CVE-2020-14843 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
+ TODO: check
+CVE-2020-14842 (Vulnerability in the BI Publisher product of Oracle Fusion Middleware ...)
+ TODO: check
+CVE-2020-14841 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
+CVE-2020-14840 (Vulnerability in the Oracle Application Object Library product of Orac ...)
+ TODO: check
+CVE-2020-14839 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14838
- RESERVED
+CVE-2020-14838 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14837
- RESERVED
+CVE-2020-14837 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14836
- RESERVED
+CVE-2020-14836 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14835
- RESERVED
-CVE-2020-14834
- RESERVED
-CVE-2020-14833
- RESERVED
-CVE-2020-14832
- RESERVED
-CVE-2020-14831
- RESERVED
-CVE-2020-14830
- RESERVED
+CVE-2020-14835 (Vulnerability in the Oracle Marketing product of Oracle E-Business Sui ...)
+ TODO: check
+CVE-2020-14834 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
+ TODO: check
+CVE-2020-14833 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
+ TODO: check
+CVE-2020-14832 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2020-14831 (Vulnerability in the Oracle Marketing product of Oracle E-Business Sui ...)
+ TODO: check
+CVE-2020-14830 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14829
- RESERVED
+CVE-2020-14829 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14828
- RESERVED
-CVE-2020-14827
- RESERVED
+CVE-2020-14828 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
+ TODO: check
+CVE-2020-14827 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
- mysql-8.0 <unfixed>
-CVE-2020-14826
- RESERVED
-CVE-2020-14825
- RESERVED
-CVE-2020-14824
- RESERVED
-CVE-2020-14823
- RESERVED
-CVE-2020-14822
- RESERVED
-CVE-2020-14821
- RESERVED
+CVE-2020-14826 (Vulnerability in the Oracle Applications Manager product of Oracle E-B ...)
+ TODO: check
+CVE-2020-14825 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
+CVE-2020-14824 (Vulnerability in the Oracle Financial Services Analytical Applications ...)
+ TODO: check
+CVE-2020-14823 (Vulnerability in the Oracle CRM Technical Foundation product of Oracle ...)
+ TODO: check
+CVE-2020-14822 (Vulnerability in the Oracle Installed Base product of Oracle E-Busines ...)
+ TODO: check
+CVE-2020-14821 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14820
- RESERVED
-CVE-2020-14819
- RESERVED
-CVE-2020-14818
- RESERVED
-CVE-2020-14817
- RESERVED
-CVE-2020-14816
- RESERVED
-CVE-2020-14815
- RESERVED
-CVE-2020-14814
- RESERVED
+CVE-2020-14820 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
+CVE-2020-14819 (Vulnerability in the Oracle One-to-One Fulfillment product of Oracle E ...)
+ TODO: check
+CVE-2020-14818 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
+ TODO: check
+CVE-2020-14817 (Vulnerability in the Oracle Marketing product of Oracle E-Business Sui ...)
+ TODO: check
+CVE-2020-14816 (Vulnerability in the Oracle Marketing product of Oracle E-Business Sui ...)
+ TODO: check
+CVE-2020-14815 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
+ TODO: check
+CVE-2020-14814 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14813
- RESERVED
-CVE-2020-14812
- RESERVED
+CVE-2020-14813 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2020-14812 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
- mysql-8.0 <unfixed>
-CVE-2020-14811
- RESERVED
-CVE-2020-14810
- RESERVED
-CVE-2020-14809
- RESERVED
+CVE-2020-14811 (Vulnerability in the Oracle Applications Manager product of Oracle E-B ...)
+ TODO: check
+CVE-2020-14810 (Vulnerability in the Oracle Hospitality Suite8 product of Oracle Hospi ...)
+ TODO: check
+CVE-2020-14809 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14808
- RESERVED
-CVE-2020-14807
- RESERVED
-CVE-2020-14806
- RESERVED
-CVE-2020-14805
- RESERVED
-CVE-2020-14804
- RESERVED
+CVE-2020-14808 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
+ TODO: check
+CVE-2020-14807 (Vulnerability in the Oracle Hospitality Suite8 product of Oracle Hospi ...)
+ TODO: check
+CVE-2020-14806 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2020-14805 (Vulnerability in the Oracle E-Business Suite Secure Enterprise Search ...)
+ TODO: check
+CVE-2020-14804 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14803
- RESERVED
+CVE-2020-14803 (Vulnerability in the Java SE product of Oracle Java SE (component: Lib ...)
- openjdk-15 <unfixed>
- openjdk-11 <unfixed>
-CVE-2020-14802
- RESERVED
-CVE-2020-14801
- RESERVED
-CVE-2020-14800
- RESERVED
+CVE-2020-14802 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2020-14801 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2020-14800 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14799
- RESERVED
+CVE-2020-14799 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14798
- RESERVED
+CVE-2020-14798 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java ...)
- openjdk-15 <unfixed>
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
-CVE-2020-14797
- RESERVED
+CVE-2020-14797 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java ...)
- openjdk-15 <unfixed>
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
-CVE-2020-14796
- RESERVED
+CVE-2020-14796 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java ...)
- openjdk-15 <unfixed>
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
-CVE-2020-14795
- RESERVED
-CVE-2020-14794
- RESERVED
+CVE-2020-14795 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2020-14794 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14793
- RESERVED
+CVE-2020-14793 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
- mysql-8.0 <unfixed>
-CVE-2020-14792
- RESERVED
+CVE-2020-14792 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java ...)
- openjdk-15 <unfixed>
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
-CVE-2020-14791
- RESERVED
+CVE-2020-14791 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14790
- RESERVED
+CVE-2020-14790 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
- mysql-8.0 <unfixed>
-CVE-2020-14789
- RESERVED
+CVE-2020-14789 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
- mysql-8.0 <unfixed>
-CVE-2020-14788
- RESERVED
-CVE-2020-14787
- RESERVED
-CVE-2020-14786
- RESERVED
-CVE-2020-14785
- RESERVED
+CVE-2020-14788 (Vulnerability in the Oracle Communications Diameter Signaling Router ( ...)
+ TODO: check
+CVE-2020-14787 (Vulnerability in the Oracle Communications Diameter Signaling Router ( ...)
+ TODO: check
+CVE-2020-14786 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
+ TODO: check
+CVE-2020-14785 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14784
- RESERVED
-CVE-2020-14783
- RESERVED
-CVE-2020-14782
- RESERVED
+CVE-2020-14784 (Vulnerability in the Oracle BI Publisher product of Oracle Fusion Midd ...)
+ TODO: check
+CVE-2020-14783 (Vulnerability in the Oracle Hospitality RES 3700 product of Oracle Foo ...)
+ TODO: check
+CVE-2020-14782 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java ...)
- openjdk-15 <unfixed>
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
-CVE-2020-14781
- RESERVED
+CVE-2020-14781 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java ...)
- openjdk-15 <unfixed>
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
-CVE-2020-14780
- RESERVED
-CVE-2020-14779
- RESERVED
+CVE-2020-14780 (Vulnerability in the BI Publisher product of Oracle Fusion Middleware ...)
+ TODO: check
+CVE-2020-14779 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java ...)
- openjdk-15 <unfixed>
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
-CVE-2020-14778
- RESERVED
-CVE-2020-14777
- RESERVED
+CVE-2020-14778 (Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Core pro ...)
+ TODO: check
+CVE-2020-14777 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14776
- RESERVED
+CVE-2020-14776 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
- mysql-5.7 <unfixed>
-CVE-2020-14775
- RESERVED
-CVE-2020-14774
- RESERVED
-CVE-2020-14773
- RESERVED
+CVE-2020-14775 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
+ TODO: check
+CVE-2020-14774 (Vulnerability in the Oracle CRM Technical Foundation product of Oracle ...)
+ TODO: check
+CVE-2020-14773 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2020-14772
- RESERVED
-CVE-2020-14771
- RESERVED
+CVE-2020-14772 (Vulnerability in the Hyperion Lifecycle Management product of Oracle H ...)
+ TODO: check
+CVE-2020-14771 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
- mysql-8.0 <unfixed>
-CVE-2020-14770
- RESERVED
-CVE-2020-14769
- RESERVED
+CVE-2020-14770 (Vulnerability in the Hyperion BI+ product of Oracle Hyperion (componen ...)
+ TODO: check
+CVE-2020-14769 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
- mysql-5.7 <unfixed>
-CVE-2020-14768
- RESERVED
-CVE-2020-14767
- RESERVED
-CVE-2020-14766
- RESERVED
-CVE-2020-14765
- RESERVED
+CVE-2020-14768 (Vulnerability in the Hyperion Analytic Provider Services product of Or ...)
+ TODO: check
+CVE-2020-14767 (Vulnerability in the Hyperion BI+ product of Oracle Hyperion (componen ...)
+ TODO: check
+CVE-2020-14766 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
+ TODO: check
+CVE-2020-14765 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
- mysql-5.7 <unfixed>
-CVE-2020-14764
- RESERVED
-CVE-2020-14763
- RESERVED
-CVE-2020-14762
- RESERVED
-CVE-2020-14761
- RESERVED
-CVE-2020-14760
- RESERVED
+CVE-2020-14764 (Vulnerability in the Hyperion Planning product of Oracle Hyperion (com ...)
+ TODO: check
+CVE-2020-14763 (Vulnerability in the Oracle Application Express Quick Poll component o ...)
+ TODO: check
+CVE-2020-14762 (Vulnerability in the Oracle Application Express component of Oracle Da ...)
+ TODO: check
+CVE-2020-14761 (Vulnerability in the Oracle Applications Manager product of Oracle E-B ...)
+ TODO: check
+CVE-2020-14760 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
-CVE-2020-14759
- RESERVED
-CVE-2020-14758
- RESERVED
-CVE-2020-14757
- RESERVED
+CVE-2020-14759 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
+ TODO: check
+CVE-2020-14758 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
+ TODO: check
+CVE-2020-14757 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
CVE-2020-14756
RESERVED
CVE-2020-14755
RESERVED
-CVE-2020-14754
- RESERVED
-CVE-2020-14753
- RESERVED
-CVE-2020-14752
- RESERVED
+CVE-2020-14754 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
+ TODO: check
+CVE-2020-14753 (Vulnerability in the Oracle Hospitality Reporting and Analytics produc ...)
+ TODO: check
+CVE-2020-14752 (Vulnerability in the Hyperion Lifecycle Management product of Oracle H ...)
+ TODO: check
CVE-2020-14751
RESERVED
CVE-2020-14750
@@ -27256,38 +27223,38 @@ CVE-2020-14748
RESERVED
CVE-2020-14747
RESERVED
-CVE-2020-14746
- RESERVED
-CVE-2020-14745
- RESERVED
-CVE-2020-14744
- RESERVED
-CVE-2020-14743
- RESERVED
-CVE-2020-14742
- RESERVED
-CVE-2020-14741
- RESERVED
-CVE-2020-14740
- RESERVED
+CVE-2020-14746 (Vulnerability in the Oracle Applications Framework product of Oracle E ...)
+ TODO: check
+CVE-2020-14745 (Vulnerability in the Oracle REST Data Services product of Oracle REST ...)
+ TODO: check
+CVE-2020-14744 (Vulnerability in the Oracle REST Data Services product of Oracle REST ...)
+ TODO: check
+CVE-2020-14743 (Vulnerability in the Java VM component of Oracle Database Server. Supp ...)
+ TODO: check
+CVE-2020-14742 (Vulnerability in the Core RDBMS component of Oracle Database Server. S ...)
+ TODO: check
+CVE-2020-14741 (Vulnerability in the Database Filesystem component of Oracle Database ...)
+ TODO: check
+CVE-2020-14740 (Vulnerability in the SQL Developer Install component of Oracle Databas ...)
+ TODO: check
CVE-2020-14739
RESERVED
CVE-2020-14738
RESERVED
CVE-2020-14737
RESERVED
-CVE-2020-14736
- RESERVED
-CVE-2020-14735
- RESERVED
-CVE-2020-14734
- RESERVED
+CVE-2020-14736 (Vulnerability in the Database Vault component of Oracle Database Serve ...)
+ TODO: check
+CVE-2020-14735 (Vulnerability in the Scheduler component of Oracle Database Server. Su ...)
+ TODO: check
+CVE-2020-14734 (Vulnerability in the Oracle Text component of Oracle Database Server. ...)
+ TODO: check
CVE-2020-14733
RESERVED
-CVE-2020-14732
- RESERVED
-CVE-2020-14731
- RESERVED
+CVE-2020-14732 (Vulnerability in the Oracle Retail Customer Management and Segmentatio ...)
+ TODO: check
+CVE-2020-14731 (Vulnerability in the Oracle Retail Customer Management and Segmentatio ...)
+ TODO: check
CVE-2020-14730
RESERVED
CVE-2020-14729 (Vulnerability in SuiteCommerce Advanced (SCA) Sites component of Oracl ...)
@@ -27404,8 +27371,7 @@ CVE-2020-14674 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virt
- virtualbox 6.1.12-dfsg-1
CVE-2020-14673 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.12-dfsg-1
-CVE-2020-14672
- RESERVED
+CVE-2020-14672 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-5.7 <unfixed>
- mysql-8.0 <unfixed>
CVE-2020-14671 (Vulnerability in the Oracle Advanced Outbound Telephony product of Ora ...)
@@ -29137,7 +29103,7 @@ CVE-2020-14145 (The client side in OpenSSH 5.7 through 8.3 has an Observable Dis
NOTE: https://www.fzi.de/fileadmin/user_upload/2020-06-26-FSA-2020-2.pdf
NOTE: The OpenSSH project is not planning to change the behaviour of OpenSSH regarding
NOTE: the issue, details in "3.1 OpenSSH" in the publication.
-CVE-2020-14144 (The git hook feature in Gitea 1.1.0 through 1.12.5 allows for authenti ...)
+CVE-2020-14144 (** DISPUTED ** The git hook feature in Gitea 1.1.0 through 1.12.5 allo ...)
- gitea <removed>
CVE-2020-14143
RESERVED
@@ -41062,12 +41028,12 @@ CVE-2020-10142
RESERVED
CVE-2020-10141
RESERVED
-CVE-2020-10140
- RESERVED
-CVE-2020-10139
- RESERVED
-CVE-2020-10138
- RESERVED
+CVE-2020-10140 (Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramDa ...)
+ TODO: check
+CVE-2020-10139 (Acronis True Image 2021 includes an OpenSSL component that specifies a ...)
+ TODO: check
+CVE-2020-10138 (Acronis Cyber Backup 12.5 and Cyber Protect 15 include an OpenSSL comp ...)
+ TODO: check
CVE-2020-10137
RESERVED
CVE-2020-10136 (Multiple products that implement the IP Encapsulation within IP standa ...)
@@ -46957,8 +46923,8 @@ CVE-2020-7752
RESERVED
CVE-2020-7751
RESERVED
-CVE-2020-7750
- RESERVED
+CVE-2020-7750 (This affects the package scratch-svg-renderer before 0.2.0-prerelease. ...)
+ TODO: check
CVE-2020-7749 (This affects all versions of package osm-static-maps. User input given ...)
TODO: check
CVE-2020-7748 (This affects the package @tsed/core before 5.65.7. This vulnerability ...)
@@ -49621,8 +49587,8 @@ CVE-2020-6650 (UPS companion software v1.05 & Prior is affected by ‘Ev
NOT-FOR-US: UPS companion software
CVE-2020-6649
RESERVED
-CVE-2020-6648
- RESERVED
+CVE-2020-6648 (A cleartext storage of sensitive information vulnerability in FortiOS ...)
+ TODO: check
CVE-2020-6647 (An improper neutralization of input vulnerability in the dashboard of ...)
NOT-FOR-US: Fortiguard
CVE-2020-6646 (An improper neutralization of input vulnerability in FortiWeb allows a ...)
@@ -52157,10 +52123,10 @@ CVE-2020-5653
RESERVED
CVE-2020-5652
RESERVED
-CVE-2020-5651
- RESERVED
-CVE-2020-5650
- RESERVED
+CVE-2020-5651 (SQL injection vulnerability in Simple Download Monitor 3.8.8 and earli ...)
+ TODO: check
+CVE-2020-5650 (Cross-site scripting vulnerability in Simple Download Monitor 3.8.8 an ...)
+ TODO: check
CVE-2020-5649
RESERVED
CVE-2020-5648
@@ -58162,8 +58128,8 @@ CVE-2020-3601 (A vulnerability in the CLI of Cisco StarOS operating system for C
NOT-FOR-US: Cisco
CVE-2020-3600
RESERVED
-CVE-2020-3599
- RESERVED
+CVE-2020-3599 (A vulnerability in the web-based management interface of Cisco Adaptiv ...)
+ TODO: check
CVE-2020-3598 (A vulnerability in the web-based management interface of Cisco Vision ...)
NOT-FOR-US: Cisco
CVE-2020-3597 (A vulnerability in the configuration restore feature of Cisco Nexus Da ...)
@@ -58190,24 +58156,24 @@ CVE-2020-3587
RESERVED
CVE-2020-3586
RESERVED
-CVE-2020-3585
- RESERVED
+CVE-2020-3585 (A vulnerability in the TLS handler of Cisco Adaptive Security Applianc ...)
+ TODO: check
CVE-2020-3584
RESERVED
-CVE-2020-3583
- RESERVED
-CVE-2020-3582
- RESERVED
-CVE-2020-3581
- RESERVED
-CVE-2020-3580
- RESERVED
+CVE-2020-3583 (Multiple vulnerabilities in the web services interface of Cisco Adapti ...)
+ TODO: check
+CVE-2020-3582 (Multiple vulnerabilities in the web services interface of Cisco Adapti ...)
+ TODO: check
+CVE-2020-3581 (Multiple vulnerabilities in the web services interface of Cisco Adapti ...)
+ TODO: check
+CVE-2020-3580 (Multiple vulnerabilities in the web services interface of Cisco Adapti ...)
+ TODO: check
CVE-2020-3579
RESERVED
-CVE-2020-3578
- RESERVED
-CVE-2020-3577
- RESERVED
+CVE-2020-3578 (A vulnerability in the web services interface of Cisco Adaptive Securi ...)
+ TODO: check
+CVE-2020-3577 (A vulnerability in the ingress packet processing path of Cisco Firepow ...)
+ TODO: check
CVE-2020-3576
RESERVED
CVE-2020-3575
@@ -58216,10 +58182,10 @@ CVE-2020-3574
RESERVED
CVE-2020-3573
RESERVED
-CVE-2020-3572
- RESERVED
-CVE-2020-3571
- RESERVED
+CVE-2020-3572 (A vulnerability in the SSL/TLS session handler of Cisco Adaptive Secur ...)
+ TODO: check
+CVE-2020-3571 (A vulnerability in the ICMP ingress packet processing of Cisco Firepow ...)
+ TODO: check
CVE-2020-3570
RESERVED
CVE-2020-3569 (Multiple vulnerabilities in the Distance Vector Multicast Routing Prot ...)
@@ -58230,40 +58196,40 @@ CVE-2020-3567 (A vulnerability in the management REST API of Cisco Industrial Ne
NOT-FOR-US: Cisco
CVE-2020-3566 (A vulnerability in the Distance Vector Multicast Routing Protocol (DVM ...)
NOT-FOR-US: Cisco
-CVE-2020-3565
- RESERVED
-CVE-2020-3564
- RESERVED
-CVE-2020-3563
- RESERVED
-CVE-2020-3562
- RESERVED
-CVE-2020-3561
- RESERVED
+CVE-2020-3565 (A vulnerability in the TCP Intercept functionality of Cisco Firepower ...)
+ TODO: check
+CVE-2020-3564 (A vulnerability in the FTP inspection engine of Cisco Adaptive Securit ...)
+ TODO: check
+CVE-2020-3563 (A vulnerability in the packet processing functionality of Cisco Firepo ...)
+ TODO: check
+CVE-2020-3562 (A vulnerability in the SSL/TLS inspection of Cisco Firepower Threat De ...)
+ TODO: check
+CVE-2020-3561 (A vulnerability in the Clientless SSL VPN (WebVPN) of Cisco Adaptive S ...)
+ TODO: check
CVE-2020-3560 (A vulnerability in Cisco Aironet Access Points (APs) could allow an un ...)
NOT-FOR-US: Cisco
CVE-2020-3559 (A vulnerability in Cisco Aironet Access Point (AP) Software could allo ...)
NOT-FOR-US: Cisco
-CVE-2020-3558
- RESERVED
-CVE-2020-3557
- RESERVED
+CVE-2020-3558 (A vulnerability in the web-based management interface of Cisco Firepow ...)
+ TODO: check
+CVE-2020-3557 (A vulnerability in the host input API daemon of Cisco Firepower Manage ...)
+ TODO: check
CVE-2020-3556
RESERVED
-CVE-2020-3555
- RESERVED
-CVE-2020-3554
- RESERVED
-CVE-2020-3553
- RESERVED
+CVE-2020-3555 (A vulnerability in the SIP inspection process of Cisco Adaptive Securi ...)
+ TODO: check
+CVE-2020-3554 (A vulnerability in the TCP packet processing of Cisco Adaptive Securit ...)
+ TODO: check
+CVE-2020-3553 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
CVE-2020-3552 (A vulnerability in the Ethernet packet handling of Cisco Aironet Acces ...)
NOT-FOR-US: Cisco
CVE-2020-3551
RESERVED
-CVE-2020-3550
- RESERVED
-CVE-2020-3549
- RESERVED
+CVE-2020-3550 (A vulnerability in the sfmgr daemon of Cisco Firepower Management Cent ...)
+ TODO: check
+CVE-2020-3549 (A vulnerability in the sftunnel functionality of Cisco Firepower Manag ...)
+ TODO: check
CVE-2020-3548
RESERVED
CVE-2020-3547 (A vulnerability in the web-based management interface of Cisco AsyncOS ...)
@@ -58294,18 +58260,18 @@ CVE-2020-3535 (A vulnerability in the loading mechanism of specific DLLs in the
NOT-FOR-US: Cisco
CVE-2020-3534
RESERVED
-CVE-2020-3533
- RESERVED
+CVE-2020-3533 (A vulnerability in the Simple Network Management Protocol (SNMP) input ...)
+ TODO: check
CVE-2020-3532
RESERVED
CVE-2020-3531
RESERVED
CVE-2020-3530 (A vulnerability in task group assignment for a specific CLI command in ...)
NOT-FOR-US: Cisco
-CVE-2020-3529
- RESERVED
-CVE-2020-3528
- RESERVED
+CVE-2020-3529 (A vulnerability in the SSL VPN negotiation process for Cisco Adaptive ...)
+ TODO: check
+CVE-2020-3528 (A vulnerability in the OSPF Version 2 (OSPFv2) implementation of Cisco ...)
+ TODO: check
CVE-2020-3527 (A vulnerability in the Polaris kernel of Cisco Catalyst 9200 Series Sw ...)
NOT-FOR-US: Cisco
CVE-2020-3526 (A vulnerability in the Common Open Policy Service (COPS) engine of Cis ...)
@@ -58330,10 +58296,10 @@ CVE-2020-3517 (A vulnerability in the Cisco Fabric Services component of Cisco F
NOT-FOR-US: Cisco
CVE-2020-3516 (A vulnerability in the web server authentication of Cisco IOS XE Softw ...)
NOT-FOR-US: Cisco
-CVE-2020-3515
- RESERVED
-CVE-2020-3514
- RESERVED
+CVE-2020-3515 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2020-3514 (A vulnerability in the multi-instance feature of Cisco Firepower Threa ...)
+ TODO: check
CVE-2020-3513 (Multiple vulnerabilities in the initialization routines that are execu ...)
NOT-FOR-US: Cisco
CVE-2020-3512 (A vulnerability in the PROFINET handler for Link Layer Discovery Proto ...)
@@ -58362,8 +58328,8 @@ CVE-2020-3501 (Multiple vulnerabilities in the user interface of Cisco Webex Mee
NOT-FOR-US: Cisco
CVE-2020-3500 (A vulnerability in the IPv6 implementation of Cisco StarOS could allow ...)
NOT-FOR-US: Cisco
-CVE-2020-3499
- RESERVED
+CVE-2020-3499 (A vulnerability in the licensing service of Cisco Firepower Management ...)
+ TODO: check
CVE-2020-3498 (A vulnerability in Cisco Jabber software could allow an authenticated, ...)
NOT-FOR-US: Cisco
CVE-2020-3497 (Multiple vulnerabilities in the Control and Provisioning of Wireless A ...)
@@ -58445,16 +58411,16 @@ CVE-2020-3461 (A vulnerability in the web-based management interface of Cisco Da
NOT-FOR-US: Cisco
CVE-2020-3460 (A vulnerability in the web-based management interface of Cisco Data Ce ...)
NOT-FOR-US: Cisco
-CVE-2020-3459
- RESERVED
-CVE-2020-3458
- RESERVED
-CVE-2020-3457
- RESERVED
-CVE-2020-3456
- RESERVED
-CVE-2020-3455
- RESERVED
+CVE-2020-3459 (A vulnerability in the CLI of Cisco FXOS Software could allow an authe ...)
+ TODO: check
+CVE-2020-3458 (Multiple vulnerabilities in the secure boot process of Cisco Adaptive ...)
+ TODO: check
+CVE-2020-3457 (A vulnerability in the CLI of Cisco FXOS Software could allow an authe ...)
+ TODO: check
+CVE-2020-3456 (A vulnerability in the Cisco Firepower Chassis Manager (FCM) of Cisco ...)
+ TODO: check
+CVE-2020-3455 (A vulnerability in the secure boot process of Cisco FXOS Software coul ...)
+ TODO: check
CVE-2020-3454 (A vulnerability in the Call Home feature of Cisco NX-OS Software could ...)
NOT-FOR-US: Cisco
CVE-2020-3453 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
@@ -58491,8 +58457,8 @@ CVE-2020-3438
RESERVED
CVE-2020-3437 (A vulnerability in the web-based management interface of Cisco SD-WAN ...)
NOT-FOR-US: Cisco
-CVE-2020-3436
- RESERVED
+CVE-2020-3436 (A vulnerability in the web services interface of Cisco Adaptive Securi ...)
+ TODO: check
CVE-2020-3435 (A vulnerability in the interprocess communication (IPC) channel of Cis ...)
NOT-FOR-US: Cisco
CVE-2020-3434 (A vulnerability in the interprocess communication (IPC) channel of Cis ...)
@@ -58543,8 +58509,8 @@ CVE-2020-3412 (A vulnerability in the scheduled meeting template feature of Cisc
NOT-FOR-US: Cisco
CVE-2020-3411 (A vulnerability in Cisco DNA Center software could allow an unauthenti ...)
NOT-FOR-US: Cisco
-CVE-2020-3410
- RESERVED
+CVE-2020-3410 (A vulnerability in the Common Access Card (CAC) authentication feature ...)
+ TODO: check
CVE-2020-3409 (A vulnerability in the PROFINET feature of Cisco IOS Software and Cisc ...)
NOT-FOR-US: Cisco
CVE-2020-3408 (A vulnerability in the Split DNS feature of Cisco IOS Software and Cis ...)
@@ -58617,8 +58583,8 @@ CVE-2020-3375 (A vulnerability in Cisco SD-WAN Solution Software could allow an
NOT-FOR-US: Cisco
CVE-2020-3374 (A vulnerability in the web-based management interface of Cisco SD-WAN ...)
NOT-FOR-US: Cisco
-CVE-2020-3373
- RESERVED
+CVE-2020-3373 (A vulnerability in the IP fragment-handling implementation of Cisco Ad ...)
+ TODO: check
CVE-2020-3372 (A vulnerability in the web-based management interface of Cisco SD-WAN ...)
NOT-FOR-US: Cisco
CVE-2020-3371
@@ -58659,8 +58625,8 @@ CVE-2020-3354 (A vulnerability in the web-based management interface of Cisco Da
NOT-FOR-US: Cisco
CVE-2020-3353 (A vulnerability in the syslog processing engine of Cisco Identity Serv ...)
NOT-FOR-US: Cisco
-CVE-2020-3352
- RESERVED
+CVE-2020-3352 (A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Sof ...)
+ TODO: check
CVE-2020-3351 (A vulnerability in Cisco SD-WAN Solution Software could allow an unaut ...)
NOT-FOR-US: Cisco
CVE-2020-3350 (A vulnerability in the endpoint software of Cisco AMP for Endpoints an ...)
@@ -58741,8 +58707,8 @@ CVE-2020-3319 (A vulnerability in Cisco Webex Network Recording Player and Cisco
NOT-FOR-US: Cisco
CVE-2020-3318 (Multiple vulnerabilities in Cisco Firepower Management Center (FMC) So ...)
NOT-FOR-US: Cisco
-CVE-2020-3317
- RESERVED
+CVE-2020-3317 (A vulnerability in the ssl_inspection component of Cisco Firepower Thr ...)
+ TODO: check
CVE-2020-3316
RESERVED
CVE-2020-3315 (Multiple Cisco products are affected by a vulnerability in the Snort d ...)
@@ -58767,8 +58733,8 @@ CVE-2020-3306 (A vulnerability in the DHCP module of Cisco Adaptive Security App
NOT-FOR-US: Cisco
CVE-2020-3305 (A vulnerability in the implementation of the Border Gateway Protocol ( ...)
NOT-FOR-US: Cisco
-CVE-2020-3304
- RESERVED
+CVE-2020-3304 (A vulnerability in the web interface of Cisco Adaptive Security Applia ...)
+ TODO: check
CVE-2020-3303 (A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature ...)
NOT-FOR-US: Cisco
CVE-2020-3302 (A vulnerability in the web UI of Cisco Firepower Management Center (FM ...)
@@ -58777,8 +58743,8 @@ CVE-2020-3301 (Multiple vulnerabilities in Cisco Firepower Management Center (FM
NOT-FOR-US: Cisco
CVE-2020-3300
RESERVED
-CVE-2020-3299
- RESERVED
+CVE-2020-3299 (Multiple Cisco products are affected by a vulnerability in the Snort d ...)
+ TODO: check
CVE-2020-3298 (A vulnerability in the Open Shortest Path First (OSPF) implementation ...)
NOT-FOR-US: Cisco
CVE-2020-3297 (A vulnerability in session management for the web-based interface of C ...)
@@ -144349,8 +144315,7 @@ CVE-2018-11766 (In Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6
- hadoop <itp> (bug #793644)
CVE-2018-11765 (In Apache Hadoop versions 3.0.0-alpha2 to 3.0.0, 2.9.0 to 2.9.2, 2.8.0 ...)
- hadoop <itp> (bug #793644)
-CVE-2018-11764
- RESERVED
+CVE-2018-11764 (Web endpoint authentication check is broken in Apache Hadoop 3.0.0-alp ...)
- hadoop <itp> (bug #793644)
CVE-2018-11763 (In Apache HTTP Server 2.4.17 to 2.4.34, by sending continuous, large S ...)
- apache2 2.4.35-1 (bug #909591)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99f4720fbd3159b5df330f76a7f6c3934ab4a76f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99f4720fbd3159b5df330f76a7f6c3934ab4a76f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201021/4ccd701d/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list