[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Mon Jan 25 20:10:33 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ca6ac054 by security tracker role at 2021-01-25T20:10:27+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,197 @@
+CVE-2021-26123
+ RESERVED
+CVE-2021-26122
+ RESERVED
+CVE-2021-26121
+ RESERVED
+CVE-2021-26120
+ RESERVED
+CVE-2021-26119
+ RESERVED
+CVE-2021-26118
+ RESERVED
+CVE-2021-26117
+ RESERVED
+CVE-2021-26116
+ RESERVED
+CVE-2021-26115
+ RESERVED
+CVE-2021-26114
+ RESERVED
+CVE-2021-26113
+ RESERVED
+CVE-2021-26112
+ RESERVED
+CVE-2021-26111
+ RESERVED
+CVE-2021-26110
+ RESERVED
+CVE-2021-26109
+ RESERVED
+CVE-2021-26108
+ RESERVED
+CVE-2021-26107
+ RESERVED
+CVE-2021-26106
+ RESERVED
+CVE-2021-26105
+ RESERVED
+CVE-2021-26104
+ RESERVED
+CVE-2021-26103
+ RESERVED
+CVE-2021-26102
+ RESERVED
+CVE-2021-26101
+ RESERVED
+CVE-2021-26100
+ RESERVED
+CVE-2021-26099
+ RESERVED
+CVE-2021-26098
+ RESERVED
+CVE-2021-26097
+ RESERVED
+CVE-2021-26096
+ RESERVED
+CVE-2021-26095
+ RESERVED
+CVE-2021-26094
+ RESERVED
+CVE-2021-26093
+ RESERVED
+CVE-2021-26092
+ RESERVED
+CVE-2021-26091
+ RESERVED
+CVE-2021-26090
+ RESERVED
+CVE-2021-26089
+ RESERVED
+CVE-2021-26088
+ RESERVED
+CVE-2021-26087
+ RESERVED
+CVE-2021-26086
+ RESERVED
+CVE-2021-26085
+ RESERVED
+CVE-2021-26084
+ RESERVED
+CVE-2021-26083
+ RESERVED
+CVE-2021-26082
+ RESERVED
+CVE-2021-26081
+ RESERVED
+CVE-2021-26080
+ RESERVED
+CVE-2021-26079
+ RESERVED
+CVE-2021-26078
+ RESERVED
+CVE-2021-26077
+ RESERVED
+CVE-2021-26076
+ RESERVED
+CVE-2021-26075
+ RESERVED
+CVE-2021-26074
+ RESERVED
+CVE-2021-26073
+ RESERVED
+CVE-2021-26072
+ RESERVED
+CVE-2021-26071
+ RESERVED
+CVE-2021-26070
+ RESERVED
+CVE-2021-26069
+ RESERVED
+CVE-2021-26068
+ RESERVED
+CVE-2021-26067
+ RESERVED
+CVE-2021-26066
+ RESERVED
+CVE-2021-26065
+ RESERVED
+CVE-2021-26064
+ RESERVED
+CVE-2021-26063
+ RESERVED
+CVE-2021-26062
+ RESERVED
+CVE-2021-26061
+ RESERVED
+CVE-2021-26060
+ RESERVED
+CVE-2021-26059
+ RESERVED
+CVE-2021-26058
+ RESERVED
+CVE-2021-26057
+ RESERVED
+CVE-2021-26056
+ RESERVED
+CVE-2021-26055
+ RESERVED
+CVE-2021-26054
+ RESERVED
+CVE-2021-26053
+ RESERVED
+CVE-2021-26052
+ RESERVED
+CVE-2021-26051
+ RESERVED
+CVE-2021-26050
+ RESERVED
+CVE-2021-26049
+ RESERVED
+CVE-2021-26048
+ RESERVED
+CVE-2021-26047
+ RESERVED
+CVE-2021-26046
+ RESERVED
+CVE-2021-26045
+ RESERVED
+CVE-2021-26044
+ RESERVED
+CVE-2021-26043
+ RESERVED
+CVE-2021-26042
+ RESERVED
+CVE-2021-26041
+ RESERVED
+CVE-2021-26040
+ RESERVED
+CVE-2021-26039
+ RESERVED
+CVE-2021-26038
+ RESERVED
+CVE-2021-26037
+ RESERVED
+CVE-2021-26036
+ RESERVED
+CVE-2021-26035
+ RESERVED
+CVE-2021-26034
+ RESERVED
+CVE-2021-26033
+ RESERVED
+CVE-2021-26032
+ RESERVED
+CVE-2021-26031
+ RESERVED
+CVE-2021-26030
+ RESERVED
+CVE-2021-26029
+ RESERVED
+CVE-2021-26028
+ RESERVED
+CVE-2021-26027
+ RESERVED
CVE-2021-3287
RESERVED
CVE-2021-26026 (PlugIns\IDE_ACDStd.apl in ACDSee Professional 2021 14.0 1721 has a Use ...)
@@ -267,23 +461,23 @@ CVE-2021-25902 (An issue was discovered in the glsl-layout crate before 0.4.0 fo
NOT-FOR-US: Rust crate glsl-layout
CVE-2021-25901 (An issue was discovered in the lazy-init crate through 2021-01-17 for ...)
NOT-FOR-US: Rust crate lazy-init
-CVE-2020-36230
+CVE-2020-36230 (A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertio ...)
- openldap 2.4.57+dfsg-1
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9423
NOTE: https://git.openldap.org/openldap/openldap/-/commit/8c1d96ee36ed98b32cd0e28b7069c7b8ea09d793 (OPENLDAP_REL_ENG_2_4_57)
-CVE-2020-36229
+CVE-2020-36229 (A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 lead ...)
- openldap 2.4.57+dfsg-1
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9425
NOTE: https://git.openldap.org/openldap/openldap/-/commit/4bdfffd2889c0c5cdf58bebafbdc8fce4bb2bff0 (OPENLDAP_REL_ENG_2_4_57)
-CVE-2020-36228
+CVE-2020-36228 (An integer underflow was discovered in OpenLDAP before 2.4.57 leading ...)
- openldap 2.4.57+dfsg-1
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9427
NOTE: https://git.openldap.org/openldap/openldap/-/commit/91dccd25c347733b365adc74cb07d074512ed5ad (OPENLDAP_REL_ENG_2_4_57)
-CVE-2020-36227
+CVE-2020-36227 (A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite ...)
- openldap 2.4.57+dfsg-1
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9428
NOTE: https://git.openldap.org/openldap/openldap/-/commit/9d0e8485f3113505743baabf1167e01e4558ccf5 (OPENLDAP_REL_ENG_2_4_57)
-CVE-2020-36226
+CVE-2020-36226 (A flaw was discovered in OpenLDAP before 2.4.57 leading to a memch-> ...)
- openldap 2.4.57+dfsg-1
NOTE: https://git.openldap.org/openldap/openldap/-/commit/554dff1927176579d652f2fe60c90e9abbad4c65 (OPENLDAP_REL_ENG_2_4_57)
NOTE: https://git.openldap.org/openldap/openldap/-/commit/c0b61a9486508e5202aa2e0cfb68c9813731b439 (OPENLDAP_REL_ENG_2_4_57)
@@ -291,7 +485,7 @@ CVE-2020-36226
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9413
NOTE: https://git.openldap.org/openldap/openldap/-/commit/d169e7958a3e0dc70f59c8374bf8a59833b7bdd8 (OPENLDAP_REL_ENG_2_4_57)
NOTE: CVE-2020-36224, CVE-2020-36225 and CVE-2020-36226 are related but differend ids
-CVE-2020-36225
+CVE-2020-36225 (A flaw was discovered in OpenLDAP before 2.4.57 leading to a double fr ...)
- openldap 2.4.57+dfsg-1
NOTE: https://git.openldap.org/openldap/openldap/-/commit/554dff1927176579d652f2fe60c90e9abbad4c65 (OPENLDAP_REL_ENG_2_4_57)
NOTE: https://git.openldap.org/openldap/openldap/-/commit/c0b61a9486508e5202aa2e0cfb68c9813731b439 (OPENLDAP_REL_ENG_2_4_57)
@@ -299,7 +493,7 @@ CVE-2020-36225
NOTE: https://git.openldap.org/openldap/openldap/-/commit/5a2017d4e61a6ddc4dcb4415028e0d08eb6bca26 (OPENLDAP_REL_ENG_2_4_57)
NOTE: https://git.openldap.org/openldap/openldap/-/commit/d169e7958a3e0dc70f59c8374bf8a59833b7bdd8 (OPENLDAP_REL_ENG_2_4_57)
NOTE: CVE-2020-36224, CVE-2020-36225 and CVE-2020-36226 are related but differend ids
-CVE-2020-36224
+CVE-2020-36224 (A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid ...)
- openldap 2.4.57+dfsg-1
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9409
NOTE: https://git.openldap.org/openldap/openldap/-/commit/554dff1927176579d652f2fe60c90e9abbad4c65 (OPENLDAP_REL_ENG_2_4_57)
@@ -307,18 +501,18 @@ CVE-2020-36224
NOTE: https://git.openldap.org/openldap/openldap/-/commit/5a2017d4e61a6ddc4dcb4415028e0d08eb6bca26 (OPENLDAP_REL_ENG_2_4_57)
NOTE: https://git.openldap.org/openldap/openldap/-/commit/d169e7958a3e0dc70f59c8374bf8a59833b7bdd8 (OPENLDAP_REL_ENG_2_4_57)
NOTE: CVE-2020-36224, CVE-2020-36225 and CVE-2020-36226 are related but differend ids
-CVE-2020-36223
+CVE-2020-36223 (A flaw was discovered in OpenLDAP before 2.4.57 leading to a slapd cra ...)
- openldap 2.4.57+dfsg-1
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9408
NOTE: https://git.openldap.org/openldap/openldap/-/commit/21981053a1195ae1555e23df4d9ac68d34ede9dd (OPENLDAP_REL_ENG_2_4_57)
-CVE-2020-36222
+CVE-2020-36222 (A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertio ...)
- openldap 2.4.57+dfsg-1
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9406
NOTE: https://git.openldap.org/openldap/openldap/-/commit/6ed057b5b728b50746c869bcc9c1f85d0bbbf6ed (OPENLDAP_REL_ENG_2_4_57)
NOTE: https://git.openldap.org/openldap/openldap/-/commit/02dfc32d658fadc25e4040f78e36592f6e1e1ca0 (OPENLDAP_REL_ENG_2_4_57)
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9407
NOTE: https://git.openldap.org/openldap/openldap/-/commit/6ed057b5b728b50746c869bcc9c1f85d0bbbf6ed (OPENLDAP_REL_ENG_2_4_57)
-CVE-2020-36221
+CVE-2020-36221 (An integer underflow was discovered in OpenLDAP before 2.4.57 leading ...)
- openldap 2.4.57+dfsg-1
NOTE: https://bugs.openldap.org/show_bug.cgi?id=9404
NOTE: https://git.openldap.org/openldap/openldap/-/commit/38ac838e4150c626bbfa0082b7e2cf3a2bb4df31 (OPENLDAP_REL_ENG_2_4_57)
@@ -366,8 +560,8 @@ CVE-2021-3280
RESERVED
CVE-2021-3279
RESERVED
-CVE-2021-3278
- RESERVED
+CVE-2021-3278 (Local Service Search Engine Management System 1.0 has a vulnerability ...)
+ TODO: check
CVE-2021-3277
RESERVED
CVE-2021-3276
@@ -989,7 +1183,7 @@ CVE-2021-3192
RESERVED
CVE-2021-3191
RESERVED
-CVE-2021-3190 (The async-git package before 1.13.1 for Node.js allows OS Command Inje ...)
+CVE-2021-3190 (The async-git package before 1.13.2 for Node.js allows OS Command Inje ...)
TODO: check
CVE-2021-25678
RESERVED
@@ -1877,8 +2071,7 @@ CVE-2021-25288
RESERVED
CVE-2021-25287
RESERVED
-CVE-2021-3185 [gstreamer: stack buffer overflow in gst_h264_slice_parse_dec_ref_pic_marking]
- RESERVED
+CVE-2021-3185 (A flaw was found in the gstreamer h264 component of gst-plugins-bad be ...)
{DSA-4833-1 DLA-2528-1}
- gst-plugins-bad1.0 1.18.1-1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1917192
@@ -4765,8 +4958,7 @@ CVE-2021-23903
RESERVED
CVE-2021-23902
RESERVED
-CVE-2021-23901
- RESERVED
+CVE-2021-23901 (An XML external entity (XXE) injection vulnerability was discovered in ...)
NOT-FOR-US: Apache Nutch
CVE-2021-23900 (OWASP json-sanitizer before 1.2.2 can output invalid JSON or throw an ...)
NOT-FOR-US: OWASP json-sanitizer
@@ -7198,10 +7390,10 @@ CVE-2021-22700
RESERVED
CVE-2021-22699
RESERVED
-CVE-2021-22698
- RESERVED
-CVE-2021-22697
- RESERVED
+CVE-2021-22698 (A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerabili ...)
+ TODO: check
+CVE-2021-22697 (A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerabili ...)
+ TODO: check
CVE-2020-36189 (FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...)
- jackson-databind 2.12.1-1
[buster] - jackson-databind <no-dsa> (Minor issue)
@@ -10581,10 +10773,10 @@ CVE-2020-35856
RESERVED
CVE-2020-35855
RESERVED
-CVE-2020-35854
- RESERVED
-CVE-2020-35853
- RESERVED
+CVE-2020-35854 (Textpattern 4.8.4 is affected by cross-site scripting (XSS) in the Bod ...)
+ TODO: check
+CVE-2020-35853 (4images Image Gallery Management System 1.7.11 is affected by cross-si ...)
+ TODO: check
CVE-2020-35852
RESERVED
CVE-2020-35851 (HGiga MailSherlock does not validate specific parameters properly. Att ...)
@@ -10626,8 +10818,8 @@ CVE-2020-35845
RESERVED
CVE-2020-35844
RESERVED
-CVE-2020-35843
- RESERVED
+CVE-2020-35843 (FastStone Image Viewer 7.5 has an out-of-bounds write (via a crafted i ...)
+ TODO: check
CVE-2020-35842 (Certain NETGEAR devices are affected by stored XSS. This affects D6200 ...)
NOT-FOR-US: Netgear
CVE-2020-35841 (Certain NETGEAR devices are affected by stored XSS. This affects D6200 ...)
@@ -11456,8 +11648,8 @@ CVE-2021-21274
RESERVED
CVE-2021-21273
RESERVED
-CVE-2021-21272
- RESERVED
+CVE-2021-21272 (ORAS is open source software which enables a way to push OCI Artifacts ...)
+ TODO: check
CVE-2021-21271
RESERVED
CVE-2021-21270 (OctopusDSC is a PowerShell module with DSC resources that can be used ...)
@@ -14242,8 +14434,7 @@ CVE-2020-35515
CVE-2020-35514
RESERVED
NOT-FOR-US: OpenShift
-CVE-2020-35513 [nfsd: fix incorrect umasks]
- RESERVED
+CVE-2020-35513 (A flaw incorrect umask during file or directory modification in the Li ...)
- linux 4.16.5-1
[stretch] - linux <not-affected> (Vulnerable code introduce later)
NOTE: https://git.kernel.org/linus/880a3a5325489a143269a8e172e7563ebf9897bc
@@ -14578,6 +14769,7 @@ CVE-2020-35461
CVE-2020-35460 (common/InputStreamHelper.java in Packwood MPXJ before 8.3.5 allows dir ...)
NOT-FOR-US: Packwood MPXJ
CVE-2020-35459 (An issue was discovered in ClusterLabs crmsh through 4.2.1. Local atta ...)
+ {DLA-2533-1}
- crmsh <unfixed>
NOTE: https://www.openwall.com/lists/oss-security/2021/01/12/3
CVE-2020-35458 (An issue was discovered in ClusterLabs Hawk 2.x through 2.3.0-x. There ...)
@@ -14974,8 +15166,8 @@ CVE-2020-35272 (Employee Performance Evaluation System in PHP/MySQLi with Source
NOT-FOR-US: Employee Performance Evaluation System in PHP/MySQLi with Source Code
CVE-2020-35271 (Employee Performance Evaluation System in PHP/MySQLi with Source Code ...)
NOT-FOR-US: Employee Performance Evaluation System in PHP/MySQLi with Source Code
-CVE-2020-35270
- RESERVED
+CVE-2020-35270 (Student Result Management System In PHP With Source Code is affected b ...)
+ TODO: check
CVE-2020-35269 (Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross ...)
- nagios4 <undetermined>
NOTE: https://gist.github.com/MoSalah20/d1d40b43eafba0bd22ee4cddecad3cbc
@@ -23064,8 +23256,8 @@ CVE-2020-28223
RESERVED
CVE-2020-28222
RESERVED
-CVE-2020-28221
- RESERVED
+CVE-2020-28221 (A CWE-20: Improper Input Validation vulnerability exists in EcoStruxur ...)
+ TODO: check
CVE-2020-28220 (A CWE-119: Improper Restriction of Operations within the Bounds of a M ...)
NOT-FOR-US: Modicon
CVE-2020-28219 (A CWE-522: Insufficiently Protected Credentials vulnerability exists i ...)
@@ -24212,8 +24404,7 @@ CVE-2020-27815
RESERVED
- linux 5.10.4-1
NOTE: https://www.openwall.com/lists/oss-security/2020/11/30/5
-CVE-2020-27814
- RESERVED
+CVE-2020-27814 (A heap-buffer overflow was found in the way openjpeg2 handled certain ...)
- openjpeg2 <unfixed>
NOTE: https://github.com/uclouvain/openjpeg/issues/1283
CVE-2020-27813 (An integer overflow vulnerability exists with the length of websocket ...)
@@ -29503,8 +29694,8 @@ CVE-2020-25739 (An issue was discovered in the gon gem before gon-6.4.0 for Ruby
NOTE: https://github.com/gazay/gon/commit/fe3c7b2191a992386dc9edd37de5447a4e809bc7
CVE-2020-25738 (CyberArk Endpoint Privilege Manager (EPM) 11.1.0.173 allows attackers ...)
NOT-FOR-US: CyberArk Endpoint Privilege Manager (EPM)
-CVE-2020-25737
- RESERVED
+CVE-2020-25737 (An elevation of privilege vulnerability exists in Hackolade versions p ...)
+ TODO: check
CVE-2020-25736
RESERVED
CVE-2020-25735 (webTareas through 2.1 allows XSS in clients/editclient.php, extensions ...)
@@ -46506,8 +46697,8 @@ CVE-2020-17534 (There exists a race condition between the deletion of the tempor
TODO: check
CVE-2020-17533 (Apache Accumulo versions 1.5.0 through 1.10.0 and version 2.0.0 do not ...)
NOT-FOR-US: Apache Accumulo
-CVE-2020-17532
- RESERVED
+CVE-2020-17532 (When handler-router component is enabled in servicecomb-java-chassis, ...)
+ TODO: check
CVE-2020-17531 (A Java Serialization vulnerability was found in Apache Tapestry 4. Apa ...)
NOT-FOR-US: Apache Tapestry
CVE-2020-17530 (Forced OGNL evaluation, when evaluated on raw user input in tag attrib ...)
@@ -46528,7 +46719,7 @@ CVE-2020-17526 (Incorrect Session Validation in Apache Airflow Webserver version
CVE-2020-17525
RESERVED
CVE-2020-17524
- RESERVED
+ REJECTED
CVE-2020-17523
RESERVED
CVE-2020-17522
@@ -49301,8 +49492,8 @@ CVE-2020-16238
RESERVED
CVE-2020-16237 (Philips SureSigns VS4, A.07.107 and prior. The product receives input ...)
NOT-FOR-US: Philips SureSigns
-CVE-2020-16236
- RESERVED
+CVE-2020-16236 (FPWIN Pro is vulnerable to an out-of-bounds read vulnerability when a ...)
+ TODO: check
CVE-2020-16235
RESERVED
CVE-2020-16234 (In PLC WinProladder Version 3.28 and prior, a stack-based buffer overf ...)
@@ -75523,10 +75714,10 @@ CVE-2020-6782
RESERVED
CVE-2020-6781 (Improper certificate validation for certain connections in the Bosch S ...)
NOT-FOR-US: Bosch Smart Home System App for iOS
-CVE-2020-6780
- RESERVED
-CVE-2020-6779
- RESERVED
+CVE-2020-6780 (Use of Password Hash With Insufficient Computational Effort in the dat ...)
+ TODO: check
+CVE-2020-6779 (Use of Hard-coded Credentials in the database of Bosch FSM-2500 server ...)
+ TODO: check
CVE-2020-6778
RESERVED
CVE-2020-6777 (A vulnerability in the web-based management interface of Bosch PRAESID ...)
@@ -78803,139 +78994,139 @@ CVE-2020-5496 (FontForge 20190801 has a heap-based buffer overflow in the Type2N
[jessie] - fontforge <no-dsa> (Minor issue)
NOTE: https://github.com/fontforge/fontforge/issues/4085
CVE-2020-5495
- RESERVED
+ REJECTED
CVE-2020-5494
- RESERVED
+ REJECTED
CVE-2020-5493
- RESERVED
+ REJECTED
CVE-2020-5492
- RESERVED
+ REJECTED
CVE-2020-5491
- RESERVED
+ REJECTED
CVE-2020-5490
- RESERVED
+ REJECTED
CVE-2020-5489
- RESERVED
+ REJECTED
CVE-2020-5488
- RESERVED
+ REJECTED
CVE-2020-5487
- RESERVED
+ REJECTED
CVE-2020-5486
- RESERVED
+ REJECTED
CVE-2020-5485
- RESERVED
+ REJECTED
CVE-2020-5484
- RESERVED
+ REJECTED
CVE-2020-5483
- RESERVED
+ REJECTED
CVE-2020-5482
- RESERVED
+ REJECTED
CVE-2020-5481
- RESERVED
+ REJECTED
CVE-2020-5480
- RESERVED
+ REJECTED
CVE-2020-5479
- RESERVED
+ REJECTED
CVE-2020-5478
- RESERVED
+ REJECTED
CVE-2020-5477
- RESERVED
+ REJECTED
CVE-2020-5476
- RESERVED
+ REJECTED
CVE-2020-5475
- RESERVED
+ REJECTED
CVE-2020-5474
- RESERVED
+ REJECTED
CVE-2020-5473
- RESERVED
+ REJECTED
CVE-2020-5472
- RESERVED
+ REJECTED
CVE-2020-5471
- RESERVED
+ REJECTED
CVE-2020-5470
- RESERVED
+ REJECTED
CVE-2020-5469
- RESERVED
+ REJECTED
CVE-2020-5468
- RESERVED
+ REJECTED
CVE-2020-5467
- RESERVED
+ REJECTED
CVE-2020-5466
- RESERVED
+ REJECTED
CVE-2020-5465
- RESERVED
+ REJECTED
CVE-2020-5464
- RESERVED
+ REJECTED
CVE-2020-5463
- RESERVED
+ REJECTED
CVE-2020-5462
- RESERVED
+ REJECTED
CVE-2020-5461
- RESERVED
+ REJECTED
CVE-2020-5460
- RESERVED
+ REJECTED
CVE-2020-5459
- RESERVED
+ REJECTED
CVE-2020-5458
- RESERVED
+ REJECTED
CVE-2020-5457
- RESERVED
+ REJECTED
CVE-2020-5456
- RESERVED
+ REJECTED
CVE-2020-5455
- RESERVED
+ REJECTED
CVE-2020-5454
- RESERVED
+ REJECTED
CVE-2020-5453
- RESERVED
+ REJECTED
CVE-2020-5452
- RESERVED
+ REJECTED
CVE-2020-5451
- RESERVED
+ REJECTED
CVE-2020-5450
- RESERVED
+ REJECTED
CVE-2020-5449
- RESERVED
+ REJECTED
CVE-2020-5448
- RESERVED
+ REJECTED
CVE-2020-5447
- RESERVED
+ REJECTED
CVE-2020-5446
- RESERVED
+ REJECTED
CVE-2020-5445
- RESERVED
+ REJECTED
CVE-2020-5444
- RESERVED
+ REJECTED
CVE-2020-5443
- RESERVED
+ REJECTED
CVE-2020-5442
- RESERVED
+ REJECTED
CVE-2020-5441
- RESERVED
+ REJECTED
CVE-2020-5440
- RESERVED
+ REJECTED
CVE-2020-5439
- RESERVED
+ REJECTED
CVE-2020-5438
- RESERVED
+ REJECTED
CVE-2020-5437
- RESERVED
+ REJECTED
CVE-2020-5436
- RESERVED
+ REJECTED
CVE-2020-5435
- RESERVED
+ REJECTED
CVE-2020-5434
- RESERVED
+ REJECTED
CVE-2020-5433
- RESERVED
+ REJECTED
CVE-2020-5432
- RESERVED
+ REJECTED
CVE-2020-5431
- RESERVED
+ REJECTED
CVE-2020-5430
- RESERVED
+ REJECTED
CVE-2020-5429
- RESERVED
+ REJECTED
CVE-2020-5428
RESERVED
CVE-2020-5427
@@ -96001,8 +96192,8 @@ CVE-2020-0238 (In updatePreferenceIntents of AccountTypePreferenceLoader, there
NOT-FOR-US: Android
CVE-2020-0237
RESERVED
-CVE-2020-0236
- RESERVED
+CVE-2020-0236 (In A2DP_GetCodecType of a2dp_codec_config, there is a possible out-of- ...)
+ TODO: check
CVE-2020-0235 (In crus_sp_shared_ioctl we first copy 4 bytes from userdata into "size ...)
NOT-FOR-US: Pixel kernel drivers
CVE-2020-0234 (In crus_afe_get_param of msm-cirrus-playback.c, there is a possible ou ...)
@@ -117910,51 +118101,51 @@ CVE-2019-11319 (An issue was discovered in Motorola CX2 1.01 and M2 1.01. There
CVE-2019-11318 (Zimbra Collaboration before 8.8.12 Patch 1 has persistent XSS. ...)
NOT-FOR-US: Zimbra Collaboration
CVE-2019-11317
- RESERVED
+ REJECTED
CVE-2019-11316
- RESERVED
+ REJECTED
CVE-2019-11315
- RESERVED
+ REJECTED
CVE-2019-11314
- RESERVED
+ REJECTED
CVE-2019-11313
- RESERVED
+ REJECTED
CVE-2019-11312
- RESERVED
+ REJECTED
CVE-2019-11311
- RESERVED
+ REJECTED
CVE-2019-11310
- RESERVED
+ REJECTED
CVE-2019-11309
- RESERVED
+ REJECTED
CVE-2019-11308
- RESERVED
+ REJECTED
CVE-2019-11307
- RESERVED
+ REJECTED
CVE-2019-11306
- RESERVED
+ REJECTED
CVE-2019-11305
- RESERVED
+ REJECTED
CVE-2019-11304
- RESERVED
+ REJECTED
CVE-2019-11303
- RESERVED
+ REJECTED
CVE-2019-11302
- RESERVED
+ REJECTED
CVE-2019-11301
- RESERVED
+ REJECTED
CVE-2019-11300
- RESERVED
+ REJECTED
CVE-2019-11299
- RESERVED
+ REJECTED
CVE-2019-11298
- RESERVED
+ REJECTED
CVE-2019-11297
- RESERVED
+ REJECTED
CVE-2019-11296
- RESERVED
+ REJECTED
CVE-2019-11295
- RESERVED
+ REJECTED
CVE-2019-11294 (Cloud Foundry Cloud Controller API (CAPI), version 1.88.0, allows spac ...)
NOT-FOR-US: Cloud Foundry
CVE-2019-11293 (Cloud Foundry UAA Release, versions prior to v74.10.0, when set to log ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca6ac054fd65566453aaf3603cc7711281593357
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca6ac054fd65566453aaf3603cc7711281593357
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210125/a18ea59d/attachment.html>
More information about the debian-security-tracker-commits
mailing list