[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Mon Sep 28 09:10:24 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
59b163df by security tracker role at 2020-09-28T08:10:16+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2020-26122
+ RESERVED
+CVE-2020-26121 (An issue was discovered in the FileImporter extension for MediaWiki be ...)
+ TODO: check
+CVE-2020-26120 (XSS exists in the MobileFrontend extension for MediaWiki before 1.34.4 ...)
+ TODO: check
+CVE-2020-26119
+ RESERVED
CVE-2020-26118
RESERVED
CVE-2020-26117 (In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1 ...)
@@ -518,8 +526,8 @@ CVE-2020-25871
RESERVED
CVE-2020-25870
RESERVED
-CVE-2020-25869
- RESERVED
+CVE-2020-25869 (An information leak was discovered in MediaWiki before 1.31.10 and 1.3 ...)
+ TODO: check
CVE-2020-25868
RESERVED
CVE-2020-25867
@@ -613,14 +621,12 @@ CVE-2020-25830
RESERVED
CVE-2020-25829
RESERVED
-CVE-2020-25828
- RESERVED
+CVE-2020-25828 (An issue was discovered in MediaWiki before 1.31.10 and 1.32.x through ...)
{DSA-4767-1 DLA-2379-1}
- mediawiki 1:1.35.0-1
NOTE: https://lists.wikimedia.org/pipermail/wikitech-l/2020-September/093888.html
NOTE: https://phabricator.wikimedia.org/T115888
-CVE-2020-25827
- RESERVED
+CVE-2020-25827 (An issue was discovered in the OATHAuth extension in MediaWiki before ...)
{DSA-4767-1 DLA-2379-1}
- mediawiki 1:1.35.0-1
NOTE: https://lists.wikimedia.org/pipermail/wikitech-l/2020-September/093888.html
@@ -647,27 +653,23 @@ CVE-2020-25817
RESERVED
CVE-2020-25816
RESERVED
-CVE-2020-25815
- RESERVED
+CVE-2020-25815 (An issue was discovered in MediaWiki 1.32.x through 1.34.x before 1.34 ...)
- mediawiki 1:1.35.0-1
[buster] - mediawiki <not-affected> (Vulnerable code introduced in 1.32)
[stretch] - mediawiki <not-affected> (Vulnerable code introduced later)
NOTE: https://lists.wikimedia.org/pipermail/wikitech-l/2020-September/093888.html
NOTE: https://phabricator.wikimedia.org/T256171
-CVE-2020-25814
- RESERVED
+CVE-2020-25814 (In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, X ...)
{DSA-4767-1 DLA-2379-1}
- mediawiki 1:1.35.0-1
NOTE: https://lists.wikimedia.org/pipermail/wikitech-l/2020-September/093888.html
NOTE: https://phabricator.wikimedia.org/T86738
-CVE-2020-25813
- RESERVED
+CVE-2020-25813 (In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, S ...)
{DSA-4767-1 DLA-2379-1}
- mediawiki 1:1.35.0-1
NOTE: https://lists.wikimedia.org/pipermail/wikitech-l/2020-September/093888.html
NOTE: https://phabricator.wikimedia.org/T232568
-CVE-2020-25812
- RESERVED
+CVE-2020-25812 (An issue was discovered in MediaWiki 1.34.x before 1.34.4. On Special: ...)
{DSA-4767-1}
- mediawiki 1:1.35.0-1
[stretch] - mediawiki <not-affected> (Vulnerable code introduced later)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59b163df7c4a55e90ab390b657cc270f7ea679eb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59b163df7c4a55e90ab390b657cc270f7ea679eb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200928/8bc3100b/attachment.html>
More information about the debian-security-tracker-commits
mailing list