[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Thu Sep 17 09:10:28 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
68c98587 by security tracker role at 2020-09-17T08:10:20+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,205 @@
+CVE-2020-25726
+	RESERVED
+CVE-2020-25725
+	RESERVED
+CVE-2020-25724
+	RESERVED
+CVE-2020-25723
+	RESERVED
+CVE-2020-25722
+	RESERVED
+CVE-2020-25721
+	RESERVED
+CVE-2020-25720
+	RESERVED
+CVE-2020-25719
+	RESERVED
+CVE-2020-25718
+	RESERVED
+CVE-2020-25717
+	RESERVED
+CVE-2020-25716
+	RESERVED
+CVE-2020-25715
+	RESERVED
+CVE-2020-25714
+	RESERVED
+CVE-2020-25713
+	RESERVED
+CVE-2020-25712
+	RESERVED
+CVE-2020-25711
+	RESERVED
+CVE-2020-25710
+	RESERVED
+CVE-2020-25709
+	RESERVED
+CVE-2020-25708
+	RESERVED
+CVE-2020-25707
+	RESERVED
+CVE-2020-25706
+	RESERVED
+CVE-2020-25705
+	RESERVED
+CVE-2020-25704
+	RESERVED
+CVE-2020-25703
+	RESERVED
+CVE-2020-25702
+	RESERVED
+CVE-2020-25701
+	RESERVED
+CVE-2020-25700
+	RESERVED
+CVE-2020-25699
+	RESERVED
+CVE-2020-25698
+	RESERVED
+CVE-2020-25697
+	RESERVED
+CVE-2020-25696
+	RESERVED
+CVE-2020-25695
+	RESERVED
+CVE-2020-25694
+	RESERVED
+CVE-2020-25693
+	RESERVED
+CVE-2020-25692
+	RESERVED
+CVE-2020-25691
+	RESERVED
+CVE-2020-25690
+	RESERVED
+CVE-2020-25689
+	RESERVED
+CVE-2020-25688
+	RESERVED
+CVE-2020-25687
+	RESERVED
+CVE-2020-25686
+	RESERVED
+CVE-2020-25685
+	RESERVED
+CVE-2020-25684
+	RESERVED
+CVE-2020-25683
+	RESERVED
+CVE-2020-25682
+	RESERVED
+CVE-2020-25681
+	RESERVED
+CVE-2020-25680
+	RESERVED
+CVE-2020-25679
+	RESERVED
+CVE-2020-25678
+	RESERVED
+CVE-2020-25677
+	RESERVED
+CVE-2020-25676
+	RESERVED
+CVE-2020-25675
+	RESERVED
+CVE-2020-25674
+	RESERVED
+CVE-2020-25673
+	RESERVED
+CVE-2020-25672
+	RESERVED
+CVE-2020-25671
+	RESERVED
+CVE-2020-25670
+	RESERVED
+CVE-2020-25669
+	RESERVED
+CVE-2020-25668
+	RESERVED
+CVE-2020-25667
+	RESERVED
+CVE-2020-25666
+	RESERVED
+CVE-2020-25665
+	RESERVED
+CVE-2020-25664
+	RESERVED
+CVE-2020-25663
+	RESERVED
+CVE-2020-25662
+	RESERVED
+CVE-2020-25661
+	RESERVED
+CVE-2020-25660
+	RESERVED
+CVE-2020-25659
+	RESERVED
+CVE-2020-25658
+	RESERVED
+CVE-2020-25657
+	RESERVED
+CVE-2020-25656
+	RESERVED
+CVE-2020-25655
+	RESERVED
+CVE-2020-25654
+	RESERVED
+CVE-2020-25653
+	RESERVED
+CVE-2020-25652
+	RESERVED
+CVE-2020-25651
+	RESERVED
+CVE-2020-25650
+	RESERVED
+CVE-2020-25649
+	RESERVED
+CVE-2020-25648
+	RESERVED
+CVE-2020-25647
+	RESERVED
+CVE-2020-25646
+	RESERVED
+CVE-2020-25645
+	RESERVED
+CVE-2020-25644
+	RESERVED
+CVE-2020-25643
+	RESERVED
+CVE-2020-25642
+	RESERVED
+CVE-2020-25641
+	RESERVED
+CVE-2020-25640
+	RESERVED
+CVE-2020-25639
+	RESERVED
+CVE-2020-25638
+	RESERVED
+CVE-2020-25637
+	RESERVED
+CVE-2020-25636
+	RESERVED
+CVE-2020-25635
+	RESERVED
+CVE-2020-25634
+	RESERVED
+CVE-2020-25633
+	RESERVED
+CVE-2020-25632
+	RESERVED
+CVE-2020-25631
+	RESERVED
+CVE-2020-25630
+	RESERVED
+CVE-2020-25629
+	RESERVED
+CVE-2020-25628
+	RESERVED
+CVE-2020-25627
+	RESERVED
+CVE-2020-25626
+	RESERVED
 CVE-2020-25625
 	RESERVED
 CVE-2020-25624 [hcd-ohci: out-of-bound access issue while processing transfer descriptors]
@@ -2655,16 +2857,16 @@ CVE-2020-24379 (WebDAV implementation in Yaws web server versions 1.81 to 2.0.7
 	NOTE: https://github.com/vulnbe/poc-yaws-dav-xxe
 CVE-2020-24378
 	RESERVED
-CVE-2020-24377
-	RESERVED
-CVE-2020-24376
-	RESERVED
+CVE-2020-24377 (A DNS rebinding vulnerability in the Freebox OS web interface in Freeb ...)
+	TODO: check
+CVE-2020-24376 (A DNS rebinding vulnerability in the UPnP IGD implementations in Freeb ...)
+	TODO: check
 CVE-2020-24375
 	RESERVED
-CVE-2020-24374
-	RESERVED
-CVE-2020-24373
-	RESERVED
+CVE-2020-24374 (A DNS rebinding vulnerability in Freebox HD before 1.5.29. ...)
+	TODO: check
+CVE-2020-24373 (A CSRF vulnerability in the UPnP MediaServer implementation in Freebox ...)
+	TODO: check
 CVE-2020-24372 (LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in  ...)
 	- luajit <unfixed> (unimportant)
 	NOTE: https://github.com/LuaJIT/LuaJIT/issues/603
@@ -10646,8 +10848,8 @@ CVE-2020-20408
 	RESERVED
 CVE-2020-20407
 	RESERVED
-CVE-2020-20406
-	RESERVED
+CVE-2020-20406 (A stored XSS vulnerability exists in the Custom Link Attributes contro ...)
+	TODO: check
 CVE-2020-20405
 	RESERVED
 CVE-2020-20404
@@ -19133,8 +19335,8 @@ CVE-2020-16235
 	RESERVED
 CVE-2020-16234
 	RESERVED
-CVE-2020-16233
-	RESERVED
+CVE-2020-16233 (An attacker could send a specially crafted packet that could have Code ...)
+	TODO: check
 CVE-2020-16232
 	RESERVED
 CVE-2020-16231
@@ -23178,28 +23380,28 @@ CVE-2020-14521
 	RESERVED
 CVE-2020-14520 (The affected product is vulnerable to an information leak, which may a ...)
 	NOT-FOR-US: Inductive Automation Ignition
-CVE-2020-14519
-	RESERVED
+CVE-2020-14519 (This vulnerability allows an attacker to use the internal WebSockets A ...)
+	TODO: check
 CVE-2020-14518 (Philips DreamMapper, Version 2.24 and prior. Information written to lo ...)
 	NOT-FOR-US: Philips DreamMapper
-CVE-2020-14517
-	RESERVED
+CVE-2020-14517 (Protocol encryption can be easily broken for CodeMeter (All versions p ...)
+	TODO: check
 CVE-2020-14516
 	RESERVED
-CVE-2020-14515
-	RESERVED
+CVE-2020-14515 (CodeMeter (All versions prior to 6.90 when using CmActLicense update f ...)
+	TODO: check
 CVE-2020-14514 (All trailer Power Line Communications are affected. PLC bus traffic ca ...)
 	NOT-FOR-US: PLC
-CVE-2020-14513
-	RESERVED
+CVE-2020-14513 (CodeMeter (All versions prior to 6.81) and the software using it may c ...)
+	TODO: check
 CVE-2020-14512 (GateManager versions prior to 9.2c, The affected product uses a weak h ...)
 	NOT-FOR-US: GateManager
 CVE-2020-14511 (Malicious operation of the crafted web browser cookie may cause a stac ...)
 	NOT-FOR-US: EDR routers
 CVE-2020-14510 (GateManager versions prior to 9.2c, The affected product contains a ha ...)
 	NOT-FOR-US: GateManager
-CVE-2020-14509
-	RESERVED
+CVE-2020-14509 (Multiple memory corruption vulnerabilities exist in CodeMeter (All ver ...)
+	TODO: check
 CVE-2020-14508 (GateManager versions prior to 9.2c, The affected product is vulnerable ...)
 	NOT-FOR-US: GateManager
 CVE-2020-14507 (Advantech iView, versions 5.6 and prior, is vulnerable to multiple pat ...)
@@ -24415,8 +24617,8 @@ CVE-2020-14183
 	RESERVED
 CVE-2020-14182
 	RESERVED
-CVE-2020-14181
-	RESERVED
+CVE-2020-14181 (Affected versions of Atlassian Jira Server and Data Center allow an un ...)
+	TODO: check
 CVE-2020-14180
 	RESERVED
 CVE-2020-14179



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68c9858728738b61a90fc1d660747d2033fd0785

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68c9858728738b61a90fc1d660747d2033fd0785
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200917/a93327c0/attachment.html>

More information about the debian-security-tracker-commits mailing list