Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 8a6aff1d by security tracker role at 2020-03-12T20:10:23+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,299 @@ +CVE-2020-10533 + RESERVED +CVE-2020-10532 (The AD Helper component in WatchGuard Fireware before 5.8.5.10317 allo ...) + TODO: check +CVE-2020-10531 (An issue was discovered in International Components for Unicode (ICU) ...) + TODO: check +CVE-2020-10530 + RESERVED +CVE-2020-10529 + RESERVED +CVE-2020-10528 + RESERVED +CVE-2020-10527 + RESERVED +CVE-2020-10526 + RESERVED +CVE-2020-10525 + RESERVED +CVE-2020-10524 + RESERVED +CVE-2020-10523 + RESERVED +CVE-2020-10522 + RESERVED +CVE-2020-10521 + RESERVED +CVE-2020-10520 + RESERVED +CVE-2020-10519 + RESERVED +CVE-2020-10518 + RESERVED +CVE-2020-10517 + RESERVED +CVE-2020-10516 + RESERVED +CVE-2020-10515 + RESERVED +CVE-2020-10514 + RESERVED +CVE-2020-10513 + RESERVED +CVE-2020-10512 + RESERVED +CVE-2020-10511 + RESERVED +CVE-2020-10510 + RESERVED +CVE-2020-10509 + RESERVED +CVE-2020-10508 + RESERVED +CVE-2020-10507 + RESERVED +CVE-2020-10506 + RESERVED +CVE-2020-10505 + RESERVED +CVE-2020-10504 (CSRF in admin/edit-comments.php in Chadha PHPKB Standard Multi-Languag ...) + TODO: check +CVE-2020-10503 (CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Langu ...) + TODO: check +CVE-2020-10502 (CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Langu ...) + TODO: check +CVE-2020-10501 (CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-La ...) + TODO: check +CVE-2020-10500 (CSRF in admin/reply-ticket.php in Chadha PHPKB Standard Multi-Language ...) + TODO: check +CVE-2020-10499 (CSRF in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Langua ...) + TODO: check +CVE-2020-10498 (CSRF in admin/edit-category.php in Chadha PHPKB Standard Multi-Languag ...) + TODO: check +CVE-2020-10497 (CSRF in admin/manage-categories.php in Chadha PHPKB Standard Multi-Lan ...) + TODO: check +CVE-2020-10496 (CSRF in admin/edit-article.php in Chadha PHPKB Standard Multi-Language ...) + TODO: check +CVE-2020-10495 (CSRF in admin/edit-template.php in Chadha PHPKB Standard Multi-Languag ...) + TODO: check +CVE-2020-10494 (CSRF in admin/edit-news.php in Chadha PHPKB Standard Multi-Language 9 ...) + TODO: check +CVE-2020-10493 (CSRF in admin/edit-glossary.php in Chadha PHPKB Standard Multi-Languag ...) + TODO: check +CVE-2020-10492 (CSRF in admin/manage-templates.php in Chadha PHPKB Standard Multi-Lang ...) + TODO: check +CVE-2020-10491 (CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-La ...) + TODO: check +CVE-2020-10490 (CSRF in admin/manage-departments.php in Chadha PHPKB Standard Multi-La ...) + TODO: check +CVE-2020-10489 (CSRF in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Langua ...) + TODO: check +CVE-2020-10488 (CSRF in admin/manage-news.php in Chadha PHPKB Standard Multi-Language ...) + TODO: check +CVE-2020-10487 (CSRF in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Langu ...) + TODO: check +CVE-2020-10486 (CSRF in admin/manage-comments.php in Chadha PHPKB Standard Multi-Langu ...) + TODO: check +CVE-2020-10485 (CSRF in admin/manage-articles.php in Chadha PHPKB Standard Multi-Langu ...) + TODO: check +CVE-2020-10484 (CSRF in admin/add-field.php in Chadha PHPKB Standard Multi-Language 9 ...) + TODO: check +CVE-2020-10483 (CSRF in admin/ajax-hub.php in Chadha PHPKB Standard Multi-Language 9 a ...) + TODO: check +CVE-2020-10482 (CSRF in admin/add-template.php in Chadha PHPKB Standard Multi-Language ...) + TODO: check +CVE-2020-10481 (CSRF in admin/add-glossary.php in Chadha PHPKB Standard Multi-Language ...) + TODO: check +CVE-2020-10480 (CSRF in admin/add-category.php in Chadha PHPKB Standard Multi-Language ...) + TODO: check +CVE-2020-10479 (CSRF in admin/add-news.php in Chadha PHPKB Standard Multi-Language 9 a ...) + TODO: check +CVE-2020-10478 (CSRF in admin/manage-settings.php in Chadha PHPKB Standard Multi-Langu ...) + TODO: check +CVE-2020-10477 (Reflected XSS in admin/manage-news.php in Chadha PHPKB Standard Multi- ...) + TODO: check +CVE-2020-10476 (Reflected XSS in admin/manage-glossary.php in Chadha PHPKB Standard Mu ...) + TODO: check +CVE-2020-10475 (Reflected XSS in admin/manage-tickets.php in Chadha PHPKB Standard Mul ...) + TODO: check +CVE-2020-10474 (Reflected XSS in admin/manage-comments.php in Chadha PHPKB Standard Mu ...) + TODO: check +CVE-2020-10473 (Reflected XSS in admin/manage-categories.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10472 (Reflected XSS in admin/manage-templates.php in Chadha PHPKB Standard M ...) + TODO: check +CVE-2020-10471 (Reflected XSS in admin/manage-articles.php in Chadha PHPKB Standard Mu ...) + TODO: check +CVE-2020-10470 (Reflected XSS in admin/manage-fields.php in Chadha PHPKB Standard Mult ...) + TODO: check +CVE-2020-10469 (Reflected XSS in admin/manage-departments.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10468 (Reflected XSS in admin/edit-news.php in Chadha PHPKB Standard Multi-La ...) + TODO: check +CVE-2020-10467 (Reflected XSS in admin/edit-comment.php in Chadha PHPKB Standard Multi ...) + TODO: check +CVE-2020-10466 (Reflected XSS in admin/edit-glossary.php in Chadha PHPKB Standard Mult ...) + TODO: check +CVE-2020-10465 (Reflected XSS in admin/edit-category.php in Chadha PHPKB Standard Mult ...) + TODO: check +CVE-2020-10464 (Reflected XSS in admin/edit-article.php in Chadha PHPKB Standard Multi ...) + TODO: check +CVE-2020-10463 (Reflected XSS in admin/edit-template.php in Chadha PHPKB Standard Mult ...) + TODO: check +CVE-2020-10462 (Reflected XSS in admin/edit-field.php in Chadha PHPKB Standard Multi-L ...) + TODO: check +CVE-2020-10461 (The way comments in article.php (vulnerable function in include/functi ...) + TODO: check +CVE-2020-10460 (admin/include/operations.php (via admin/email-harvester.php) in Chadha ...) + TODO: check +CVE-2020-10459 (Path Traversal in admin/assetmanager/assetmanager.php (vulnerable func ...) + TODO: check +CVE-2020-10458 (Path Traversal in admin/imagepaster/operations.php in Chadha PHPKB Sta ...) + TODO: check +CVE-2020-10457 (Path Traversal in admin/imagepaster/image-renaming.php in Chadha PHPKB ...) + TODO: check +CVE-2020-10456 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10455 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10454 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10453 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10452 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10451 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10450 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10449 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10448 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10447 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10446 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10445 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10444 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10443 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10442 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10441 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10440 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10439 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10438 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10437 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10436 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10435 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10434 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10433 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10432 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10431 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10430 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10429 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10428 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10427 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10426 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10425 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10424 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10423 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10422 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10421 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10420 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10419 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10418 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10417 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10416 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10415 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10414 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10413 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10412 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10411 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10410 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10409 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10408 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10407 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10406 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10405 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10404 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10403 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10402 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10401 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10400 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10399 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10398 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10397 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10396 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10395 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10394 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10393 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10392 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10391 (The way URIs are handled in admin/header.php in Chadha PHPKB Standard ...) + TODO: check +CVE-2020-10390 (OS Command Injection in export.php (vulnerable function called from in ...) + TODO: check +CVE-2020-10389 (admin/save-settings.php in Chadha PHPKB Standard Multi-Language 9 allo ...) + TODO: check +CVE-2020-10388 (The way the Referer header in article.php is handled in Chadha PHPKB S ...) + TODO: check +CVE-2020-10387 (Path Traversal in admin/download.php in Chadha PHPKB Standard Multi-La ...) + TODO: check +CVE-2020-10386 (admin/imagepaster/image-upload.php in Chadha PHPKB Standard Multi-Lang ...) + TODO: check CVE-2020-10385 (A stored cross-site scripting (XSS) vulnerability exists in the WPForm ...) NOT-FOR-US: WPForms Contact Form plugin for WordPress CVE-2020-10384 @@ -424,7 +720,7 @@ CVE-2020-10188 (utility.c in telnetd in netkit telnet through 0.17 allows remote NOTE: https://appgateresearch.blogspot.com/2020/02/bravestarr-fedora-31-netkit-telnetd_28.html TODO: check further details CVE-2019-20503 (usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_address ...) - {DSA-4639-1} + {DSA-4639-1 DLA-2140-1} - libusrsctp <unfixed> (bug #953270) - firefox <unfixed> - firefox-esr 68.6.0esr-1 @@ -604,10 +900,10 @@ CVE-2020-10111 (Citrix Gateway 11.1, 12.0, and 12.1 has an Inconsistent Interpre NOT-FOR-US: Citrix CVE-2020-10110 (Citrix Gateway 11.1, 12.0, and 12.1 allows Information Exposure Throug ...) NOT-FOR-US: Citrix -CVE-2020-10109 - RESERVED -CVE-2020-10108 - RESERVED +CVE-2020-10109 (In Twisted Web through 19.10.0, there was an HTTP request splitting vu ...) + TODO: check +CVE-2020-10108 (In Twisted Web through 19.10.0, there was an HTTP request splitting vu ...) + TODO: check CVE-2020-10107 (PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XS ...) NOT-FOR-US: PHPGurukul Daily Expense Tracker System CVE-2020-10106 (PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to SQL injec ...) @@ -1788,8 +2084,7 @@ CVE-2020-9545 (Pale Moon 28.x before 28.8.4 has a segmentation fault related to NOT-FOR-US: Pale Moon CVE-2020-9544 (An issue was discovered on D-Link DSL-2640B E1 EU_1.01 devices. The ad ...) NOT-FOR-US: D-Link -CVE-2020-9543 [Unprivileged users can retrieve, use and manipulate share networks] - RESERVED +CVE-2020-9543 (OpenStack Manila <7.4.1, >=8.0.0 <8.1.1, and >=9.0.0 <9 ...) - manila 1:9.0.0-5 (bug #953581) [buster] - manila <no-dsa> (Minor issue) [stretch] - manila <no-dsa> (Minor issue) @@ -1961,8 +2256,8 @@ CVE-2020-9466 (The Export Users to CSV plugin through 1.4.2 for WordPress allows NOT-FOR-US: Export Users to CSV plugin for WordPress CVE-2020-9465 (An issue was discovered in EyesOfNetwork eonweb 5.1 through 5.3 before ...) NOT-FOR-US: EyesOfNetwork (EON) -CVE-2020-9464 - RESERVED +CVE-2020-9464 (A Denial-of-Service vulnerability exists in BECKHOFF Ethernet TCP/IP B ...) + TODO: check CVE-2020-9463 (Centreon 19.10 allows remote authenticated users to execute arbitrary ...) - centreon-web <itp> (bug #913903) CVE-2020-9462 @@ -2024,10 +2319,10 @@ CVE-2020-9438 RESERVED CVE-2020-9437 RESERVED -CVE-2020-9436 - RESERVED -CVE-2020-9435 - RESERVED +CVE-2020-9436 (PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER 2002T-3G ...) + TODO: check +CVE-2020-9435 (PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER 2002T-3G ...) + TODO: check CVE-2020-9434 (openssl_x509_check_ip_asc in lua-openssl 0.7.7-1 mishandles X.509 cert ...) NOT-FOR-US: lua-openssl (different from lua-luaossl) CVE-2020-9433 (openssl_x509_check_email in lua-openssl 0.7.7-1 mishandles X.509 certi ...) @@ -2111,8 +2406,8 @@ CVE-2020-9410 RESERVED CVE-2020-9409 RESERVED -CVE-2020-9408 - RESERVED +CVE-2020-9408 (The Spotfire library component of TIBCO Software Inc.'s TIBCO Spotfire ...) + TODO: check CVE-2020-9407 (IBL Online Weather before 4.3.5a allows attackers to obtain sensitive ...) NOT-FOR-US: IBL Online Weather CVE-2020-9406 (IBL Online Weather before 4.3.5a allows unauthenticated eval injection ...) @@ -4112,7 +4407,7 @@ CVE-2020-8542 RESERVED CVE-2020-8541 RESERVED -CVE-2020-8540 (An XML external entity (XXE) vulnerability iin Zoho ManageEngine Deskt ...) +CVE-2020-8540 (An XML external entity (XXE) vulnerability in Zoho ManageEngine Deskto ...) NOT-FOR-US: Zoho ManageEngine Desktop Central CVE-2020-8539 RESERVED @@ -4359,10 +4654,10 @@ CVE-2020-8438 (Ruckus ZoneFlex R500 104.0.0.0.1347 devices allow an authenticate NOT-FOR-US: Ruckus devices CVE-2020-8437 (The bencoding parser in BitTorrent uTorrent through 3.5.5 (build 45505 ...) NOT-FOR-US: uTorrent -CVE-2020-8436 - RESERVED -CVE-2020-8435 - RESERVED +CVE-2020-8436 (XSS was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPre ...) + TODO: check +CVE-2020-8435 (An issue was discovered in the RegistrationMagic plugin 4.6.0.0 for Wo ...) + TODO: check CVE-2020-8434 RESERVED CVE-2020-8433 @@ -5480,8 +5775,8 @@ CVE-2020-7945 RESERVED CVE-2020-7944 RESERVED -CVE-2020-7943 - RESERVED +CVE-2020-7943 (Puppet Server and PuppetDB provide useful performance and debugging in ...) + TODO: check CVE-2020-7942 (Previously, Puppet operated on a model that a node with a valid certif ...) - puppet <unfixed> (unimportant) NOTE: This CVE assignment is for switching the default setting of strict_hostname_checking, @@ -6271,8 +6566,8 @@ CVE-2020-7600 RESERVED CVE-2020-7599 RESERVED -CVE-2020-7598 - RESERVED +CVE-2020-7598 (minimist before 1.2.2 could be tricked into adding or modifying proper ...) + TODO: check CVE-2020-7597 (codecov-node npm module before 3.6.5 allows remote attackers to execut ...) NOT-FOR-US: codecov-node nodejs module CVE-2020-7596 (Codecov npm module before 3.6.2 allows remote attackers to execute arb ...) @@ -6986,10 +7281,10 @@ CVE-2020-7256 RESERVED CVE-2020-7255 RESERVED -CVE-2020-7254 - RESERVED -CVE-2020-7253 - RESERVED +CVE-2020-7254 (Privilege Escalation vulnerability in the command line interface in Mc ...) + TODO: check +CVE-2020-7253 (Improper access control vulnerability in masvc.exe in McAfee Agent (MA ...) + TODO: check CVE-2020-7252 (Unquoted service executable path in DXL Broker in McAfee Data eXchange ...) NOT-FOR-US: McAfee CVE-2020-7251 (Improper access control vulnerability in Configuration Tool in McAfee ...) @@ -7929,8 +8224,8 @@ CVE-2020-6860 (libmysofa 0.9.1 has a stack-based buffer overflow in readDataVar NOTE: https://github.com/hoene/libmysofa/commit/c31120a4ddfe3fc705cfdd74da7e884e1866da85 CVE-2020-6859 (Multiple Insecure Direct Object Reference vulnerabilities in includes/ ...) NOT-FOR-US: Ultimate Member plugin for WordPress -CVE-2020-6858 - RESERVED +CVE-2020-6858 (Hotels Styx through 1.0.0.beta8 allows HTTP response splitting due to ...) + TODO: check CVE-2020-6857 (CarbonFTP v1.4 uses insecure proprietary password encryption with a ha ...) NOT-FOR-US: CarbonFTP CVE-2020-6856 (An XML External Entity (XEE) vulnerability exists in the JOC Cockpit c ...) @@ -8049,7 +8344,7 @@ CVE-2020-6815 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6815 CVE-2020-6814 RESERVED - {DSA-4639-1} + {DSA-4639-1 DLA-2140-1} - firefox <unfixed> - firefox-esr 68.6.0esr-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6814 @@ -8060,14 +8355,14 @@ CVE-2020-6813 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6813 CVE-2020-6812 RESERVED - {DSA-4639-1} + {DSA-4639-1 DLA-2140-1} - firefox <unfixed> - firefox-esr 68.6.0esr-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6812 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6812 CVE-2020-6811 RESERVED - {DSA-4639-1} + {DSA-4639-1 DLA-2140-1} - firefox <unfixed> - firefox-esr 68.6.0esr-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6811 @@ -8086,21 +8381,21 @@ CVE-2020-6808 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6808 CVE-2020-6807 RESERVED - {DSA-4639-1} + {DSA-4639-1 DLA-2140-1} - firefox <unfixed> - firefox-esr 68.6.0esr-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6807 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6807 CVE-2020-6806 RESERVED - {DSA-4639-1} + {DSA-4639-1 DLA-2140-1} - firefox <unfixed> - firefox-esr 68.6.0esr-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6806 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2020-6806 CVE-2020-6805 RESERVED - {DSA-4639-1} + {DSA-4639-1 DLA-2140-1} - firefox <unfixed> - firefox-esr 68.6.0esr-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2020-6805 @@ -10005,8 +10300,8 @@ CVE-2020-5960 RESERVED CVE-2020-5959 RESERVED -CVE-2020-5958 - RESERVED +CVE-2020-5958 (NVIDIA Windows GPU Display Driver, all versions, contains a vulnerabil ...) + TODO: check CVE-2020-5957 (NVIDIA Windows GPU Display Driver, all versions, contains a vulnerabil ...) NOT-FOR-US: Nvidia driver for Windows CVE-2019-20358 (Trend Micro Anti-Threat Toolkit (ATTK) versions 1.62.0.1218 and below ...) @@ -20561,8 +20856,7 @@ CVE-2020-1949 RESERVED CVE-2020-1948 RESERVED -CVE-2020-1947 - RESERVED +CVE-2020-1947 (In Apache ShardingSphere(incubator) 4.0.0-RC3 and 4.0.0, the ShardingS ...) NOT-FOR-US: Apache ShardingSphere CVE-2020-1946 RESERVED @@ -21406,8 +21700,7 @@ CVE-2020-1740 [secrets readable after ansible-vault edit] - ansible <unfixed> NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1802193 NOTE: https://github.com/ansible/ansible/issues/67798 -CVE-2020-1739 [svn module leaks password when specified as a parameter] - RESERVED +CVE-2020-1739 (A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9 ...) - ansible <unfixed> NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1802178 NOTE: https://github.com/ansible/ansible/issues/67797 @@ -24778,138 +25071,138 @@ CVE-2020-0907 RESERVED CVE-2020-0906 RESERVED -CVE-2020-0905 - RESERVED +CVE-2020-0905 (An remote code execution vulnerability exists in Microsoft Dynamics Bu ...) + TODO: check CVE-2020-0904 RESERVED -CVE-2020-0903 - RESERVED -CVE-2020-0902 - RESERVED +CVE-2020-0903 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Excha ...) + TODO: check +CVE-2020-0902 (An elevation of privilege vulnerability exists in Service Fabric File ...) + TODO: check CVE-2020-0901 RESERVED CVE-2020-0900 RESERVED CVE-2020-0899 RESERVED -CVE-2020-0898 - RESERVED -CVE-2020-0897 - RESERVED -CVE-2020-0896 - RESERVED +CVE-2020-0898 (An elevation of privilege vulnerability exists when the Windows Graphi ...) + TODO: check +CVE-2020-0897 (An elevation of privilege vulnerability exists when the Windows Work F ...) + TODO: check +CVE-2020-0896 (An elevation of privilege vulnerability exists when Windows improperly ...) + TODO: check CVE-2020-0895 RESERVED -CVE-2020-0894 - RESERVED -CVE-2020-0893 - RESERVED -CVE-2020-0892 - RESERVED -CVE-2020-0891 - RESERVED +CVE-2020-0894 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...) + TODO: check +CVE-2020-0893 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...) + TODO: check +CVE-2020-0892 (A remote code execution vulnerability exists in Microsoft Word softwar ...) + TODO: check +CVE-2020-0891 (This vulnerability is caused when SharePoint Server does not properly ...) + TODO: check CVE-2020-0890 RESERVED CVE-2020-0889 RESERVED CVE-2020-0888 RESERVED -CVE-2020-0887 - RESERVED +CVE-2020-0887 (An elevation of privilege vulnerability exists in Windows when the Win ...) + TODO: check CVE-2020-0886 RESERVED -CVE-2020-0885 - RESERVED -CVE-2020-0884 - RESERVED -CVE-2020-0883 - RESERVED -CVE-2020-0882 - RESERVED -CVE-2020-0881 - RESERVED -CVE-2020-0880 - RESERVED -CVE-2020-0879 - RESERVED +CVE-2020-0885 (An information disclosure vulnerability exists when the Windows GDI co ...) + TODO: check +CVE-2020-0884 (A spoofing vulnerability exists in Microsoft Visual Studio as it inclu ...) + TODO: check +CVE-2020-0883 (A remote code execution vulnerability exists in the way that the Windo ...) + TODO: check +CVE-2020-0882 (An information disclosure vulnerability exists when the Windows GDI co ...) + TODO: check +CVE-2020-0881 (A remote code execution vulnerability exists in the way that the Windo ...) + TODO: check +CVE-2020-0880 (An information disclosure vulnerability exists when the Windows GDI co ...) + TODO: check +CVE-2020-0879 (An information disclosure vulnerability exists in the way that the Win ...) + TODO: check CVE-2020-0878 RESERVED -CVE-2020-0877 - RESERVED -CVE-2020-0876 - RESERVED +CVE-2020-0877 (An elevation of privilege vulnerability exists in Windows when the Win ...) + TODO: check +CVE-2020-0876 (An information disclosure vulnerability exists when the win32k compone ...) + TODO: check CVE-2020-0875 RESERVED -CVE-2020-0874 - RESERVED +CVE-2020-0874 (An information disclosure vulnerability exists in the way that the Win ...) + TODO: check CVE-2020-0873 RESERVED -CVE-2020-0872 - RESERVED -CVE-2020-0871 - RESERVED +CVE-2020-0872 (A remote code execution vulnerability exists in Application Inspector ...) + TODO: check +CVE-2020-0871 (An information disclosure vulnerability exists when Windows Network Co ...) + TODO: check CVE-2020-0870 RESERVED -CVE-2020-0869 - RESERVED -CVE-2020-0868 - RESERVED -CVE-2020-0867 - RESERVED -CVE-2020-0866 - RESERVED -CVE-2020-0865 - RESERVED -CVE-2020-0864 - RESERVED -CVE-2020-0863 - RESERVED +CVE-2020-0869 (A memory corruption vulnerability exists when Windows Media Foundation ...) + TODO: check +CVE-2020-0868 (An elevation of privilege vulnerability exists when the Windows Update ...) + TODO: check +CVE-2020-0867 (An elevation of privilege vulnerability exists when the Windows Update ...) + TODO: check +CVE-2020-0866 (An elevation of privilege vulnerability exists when the Windows Work F ...) + TODO: check +CVE-2020-0865 (An elevation of privilege vulnerability exists when the Windows Work F ...) + TODO: check +CVE-2020-0864 (An elevation of privilege vulnerability exists when the Windows Work F ...) + TODO: check +CVE-2020-0863 (An information vulnerability exists when Windows Connected User Experi ...) + TODO: check CVE-2020-0862 RESERVED -CVE-2020-0861 - RESERVED -CVE-2020-0860 - RESERVED -CVE-2020-0859 - RESERVED -CVE-2020-0858 - RESERVED -CVE-2020-0857 - RESERVED +CVE-2020-0861 (An information disclosure vulnerability exists when the Windows Networ ...) + TODO: check +CVE-2020-0860 (An elevation of privilege vulnerability exists when the Windows Active ...) + TODO: check +CVE-2020-0859 (An information vulnerability exists when Windows Modules Installer Ser ...) + TODO: check +CVE-2020-0858 (An elevation of privilege vulnerability exists when the &quot;Publ ...) + TODO: check +CVE-2020-0857 (An elevation of privilege vulnerability exists in the way that the Win ...) + TODO: check CVE-2020-0856 RESERVED -CVE-2020-0855 - RESERVED -CVE-2020-0854 - RESERVED -CVE-2020-0853 - RESERVED -CVE-2020-0852 - RESERVED -CVE-2020-0851 - RESERVED -CVE-2020-0850 - RESERVED -CVE-2020-0849 - RESERVED -CVE-2020-0848 - RESERVED -CVE-2020-0847 - RESERVED +CVE-2020-0855 (A remote code execution vulnerability exists in Microsoft Word softwar ...) + TODO: check +CVE-2020-0854 (An elevation of privilege vulnerability exists when Windows Mobile Dev ...) + TODO: check +CVE-2020-0853 (An information disclosure vulnerability exists in Windows when the Win ...) + TODO: check +CVE-2020-0852 (A remote code execution vulnerability exists in Microsoft Word softwar ...) + TODO: check +CVE-2020-0851 (A remote code execution vulnerability exists in Microsoft Word softwar ...) + TODO: check +CVE-2020-0850 (A remote code execution vulnerability exists in Microsoft Word softwar ...) + TODO: check +CVE-2020-0849 (An elevation of privilege vulnerability exists when Windows improperly ...) + TODO: check +CVE-2020-0848 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0847 (A remote code execution vulnerability exists in the way that the VBScr ...) + TODO: check CVE-2020-0846 RESERVED -CVE-2020-0845 - RESERVED -CVE-2020-0844 - RESERVED -CVE-2020-0843 - RESERVED -CVE-2020-0842 - RESERVED -CVE-2020-0841 - RESERVED -CVE-2020-0840 - RESERVED +CVE-2020-0845 (An elevation of privilege vulnerability exists in the way that the Win ...) + TODO: check +CVE-2020-0844 (An elevation of privilege vulnerability exists when Connected User Exp ...) + TODO: check +CVE-2020-0843 (An elevation of privilege vulnerability exists in Windows Installer be ...) + TODO: check +CVE-2020-0842 (An elevation of privilege vulnerability exists in Windows Installer be ...) + TODO: check +CVE-2020-0841 (An elevation of privilege vulnerability exists when Windows improperly ...) + TODO: check +CVE-2020-0840 (An elevation of privilege vulnerability exists when Windows improperly ...) + TODO: check CVE-2020-0839 RESERVED CVE-2020-0838 @@ -24920,160 +25213,160 @@ CVE-2020-0836 RESERVED CVE-2020-0835 RESERVED -CVE-2020-0834 - RESERVED -CVE-2020-0833 - RESERVED -CVE-2020-0832 - RESERVED -CVE-2020-0831 - RESERVED -CVE-2020-0830 - RESERVED -CVE-2020-0829 - RESERVED -CVE-2020-0828 - RESERVED -CVE-2020-0827 - RESERVED -CVE-2020-0826 - RESERVED -CVE-2020-0825 - RESERVED -CVE-2020-0824 - RESERVED -CVE-2020-0823 - RESERVED -CVE-2020-0822 - RESERVED +CVE-2020-0834 (An elevation of privilege vulnerability exists when Windows improperly ...) + TODO: check +CVE-2020-0833 (A remote code execution vulnerability exists in the way that the scrip ...) + TODO: check +CVE-2020-0832 (A remote code execution vulnerability exists in the way that the scrip ...) + TODO: check +CVE-2020-0831 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0830 (A remote code execution vulnerability exists in the way the scripting ...) + TODO: check +CVE-2020-0829 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0828 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0827 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0826 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0825 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0824 (A remote code execution vulnerability exists when Internet Explorer im ...) + TODO: check +CVE-2020-0823 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0822 (An elevation of privilege vulnerability exists when the Windows Langua ...) + TODO: check CVE-2020-0821 RESERVED -CVE-2020-0820 - RESERVED -CVE-2020-0819 - RESERVED +CVE-2020-0820 (An information disclosure vulnerability exists when Media Foundation i ...) + TODO: check +CVE-2020-0819 (An elevation of privilege vulnerability exists when the Windows Device ...) + TODO: check CVE-2020-0818 RESERVED CVE-2020-0817 RESERVED -CVE-2020-0816 - RESERVED -CVE-2020-0815 - RESERVED -CVE-2020-0814 - RESERVED -CVE-2020-0813 - RESERVED -CVE-2020-0812 - RESERVED -CVE-2020-0811 - RESERVED -CVE-2020-0810 - RESERVED -CVE-2020-0809 - RESERVED -CVE-2020-0808 - RESERVED -CVE-2020-0807 - RESERVED -CVE-2020-0806 - RESERVED +CVE-2020-0816 (A remote code execution vulnerability exists when Microsoft Edge impro ...) + TODO: check +CVE-2020-0815 (An elevation of privilege vulnerability exists when Azure DevOps Serve ...) + TODO: check +CVE-2020-0814 (An elevation of privilege vulnerability exists in Windows Installer be ...) + TODO: check +CVE-2020-0813 (An information disclosure vulnerability exists when Chakra improperly ...) + TODO: check +CVE-2020-0812 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0811 (A remote code execution vulnerability exists in the way that the Chakr ...) + TODO: check +CVE-2020-0810 (An elevation of privilege vulnerability exists when the Diagnostics Hu ...) + TODO: check +CVE-2020-0809 (A memory corruption vulnerability exists when Windows Media Foundation ...) + TODO: check +CVE-2020-0808 (An elevation of privilege vulnerability exists in the way the Provisio ...) + TODO: check +CVE-2020-0807 (A memory corruption vulnerability exists when Windows Media Foundation ...) + TODO: check +CVE-2020-0806 (An elevation of privilege vulnerability exists in Windows Error Report ...) + TODO: check CVE-2020-0805 RESERVED -CVE-2020-0804 - RESERVED -CVE-2020-0803 - RESERVED -CVE-2020-0802 - RESERVED -CVE-2020-0801 - RESERVED -CVE-2020-0800 - RESERVED -CVE-2020-0799 - RESERVED -CVE-2020-0798 - RESERVED -CVE-2020-0797 - RESERVED -CVE-2020-0796 - RESERVED -CVE-2020-0795 - RESERVED +CVE-2020-0804 (An elevation of privilege vulnerability exists in the way that the Win ...) + TODO: check +CVE-2020-0803 (An elevation of privilege vulnerability exists in the way that the Win ...) + TODO: check +CVE-2020-0802 (An elevation of privilege vulnerability exists in the way that the Win ...) + TODO: check +CVE-2020-0801 (A memory corruption vulnerability exists when Windows Media Foundation ...) + TODO: check +CVE-2020-0800 (An elevation of privilege vulnerability exists when the Windows Work F ...) + TODO: check +CVE-2020-0799 (An elevation of privilege vulnerability exists in Microsoft Windows wh ...) + TODO: check +CVE-2020-0798 (An elevation of privilege vulnerability exists in the Windows Installe ...) + TODO: check +CVE-2020-0797 (An elevation of privilege vulnerability exists when the Windows Work F ...) + TODO: check +CVE-2020-0796 (A remote code execution vulnerability exists in the way that the Micro ...) + TODO: check +CVE-2020-0795 (This vulnerability is caused when SharePoint Server does not properly ...) + TODO: check CVE-2020-0794 RESERVED -CVE-2020-0793 - RESERVED +CVE-2020-0793 (An elevation of privilege vulnerability exists when the Diagnostics Hu ...) + TODO: check CVE-2020-0792 (An elevation of privilege vulnerability exists when the Windows Graphi ...) NOT-FOR-US: Microsoft -CVE-2020-0791 - RESERVED +CVE-2020-0791 (An elevation of privilege vulnerability exists when the Windows Graphi ...) + TODO: check CVE-2020-0790 RESERVED -CVE-2020-0789 - RESERVED -CVE-2020-0788 - RESERVED -CVE-2020-0787 - RESERVED -CVE-2020-0786 - RESERVED -CVE-2020-0785 - RESERVED +CVE-2020-0789 (A denial of service vulnerability exists when the Visual Studio Extens ...) + TODO: check +CVE-2020-0788 (An elevation of privilege vulnerability exists in Windows when the Win ...) + TODO: check +CVE-2020-0787 (An elevation of privilege vulnerability exists when the Windows Backgr ...) + TODO: check +CVE-2020-0786 (A denial of service vulnerability exists when the Windows Tile Object ...) + TODO: check +CVE-2020-0785 (An elevation of privilege vulnerability exists when the Windows User P ...) + TODO: check CVE-2020-0784 RESERVED -CVE-2020-0783 - RESERVED +CVE-2020-0783 (An elevation of privilege vulnerability exists when the Windows Univer ...) + TODO: check CVE-2020-0782 RESERVED -CVE-2020-0781 - RESERVED -CVE-2020-0780 - RESERVED -CVE-2020-0779 - RESERVED -CVE-2020-0778 - RESERVED -CVE-2020-0777 - RESERVED -CVE-2020-0776 - RESERVED -CVE-2020-0775 - RESERVED -CVE-2020-0774 - RESERVED -CVE-2020-0773 - RESERVED -CVE-2020-0772 - RESERVED -CVE-2020-0771 - RESERVED -CVE-2020-0770 - RESERVED -CVE-2020-0769 - RESERVED -CVE-2020-0768 - RESERVED +CVE-2020-0781 (An elevation of privilege vulnerability exists when the Windows Univer ...) + TODO: check +CVE-2020-0780 (An elevation of privilege vulnerability exists in the way that the Win ...) + TODO: check +CVE-2020-0779 (An elevation of privilege vulnerability exists in the Windows Installe ...) + TODO: check +CVE-2020-0778 (An elevation of privilege vulnerability exists in the way that the Win ...) + TODO: check +CVE-2020-0777 (An elevation of privilege vulnerability exists when the Windows Work F ...) + TODO: check +CVE-2020-0776 (An elevation of privilege vulnerability exists when the Windows AppX D ...) + TODO: check +CVE-2020-0775 (An information disclosure vulnerability exists when Windows Error Repo ...) + TODO: check +CVE-2020-0774 (An information disclosure vulnerability exists when the Windows GDI co ...) + TODO: check +CVE-2020-0773 (An elevation of privilege vulnerability exists when the Windows Active ...) + TODO: check +CVE-2020-0772 (An elevation of privilege vulnerability exists when Windows Error Repo ...) + TODO: check +CVE-2020-0771 (An elevation of privilege vulnerability exists when the Windows CSC Se ...) + TODO: check +CVE-2020-0770 (An elevation of privilege vulnerability exists when the Windows Active ...) + TODO: check +CVE-2020-0769 (An elevation of privilege vulnerability exists when the Windows CSC Se ...) + TODO: check +CVE-2020-0768 (A remote code execution vulnerability exists in the way the scripting ...) + TODO: check CVE-2020-0767 (A remote code execution vulnerability exists in the way that the Chakr ...) NOT-FOR-US: Microsoft CVE-2020-0766 RESERVED -CVE-2020-0765 - RESERVED +CVE-2020-0765 (An information disclosure vulnerability exists in the Remote Desktop C ...) + TODO: check CVE-2020-0764 RESERVED -CVE-2020-0763 - RESERVED -CVE-2020-0762 - RESERVED +CVE-2020-0763 (An elevation of privilege vulnerability exists when Windows Defender S ...) + TODO: check +CVE-2020-0762 (An elevation of privilege vulnerability exists when Windows Defender S ...) + TODO: check CVE-2020-0761 RESERVED CVE-2020-0760 RESERVED CVE-2020-0759 (A remote code execution vulnerability exists in Microsoft Excel softwa ...) NOT-FOR-US: Microsoft -CVE-2020-0758 - RESERVED +CVE-2020-0758 (An elevation of privilege vulnerability exists when Azure DevOps Serve ...) + TODO: check CVE-2020-0757 (An elevation of privilege vulnerability exists when Windows improperly ...) NOT-FOR-US: Microsoft CVE-2020-0756 (An information disclosure vulnerability exists in the Cryptography Nex ...) @@ -25188,8 +25481,8 @@ CVE-2020-0702 (A security feature bypass vulnerability exists in Surface Hub whe NOT-FOR-US: Microsoft CVE-2020-0701 (An elevation of privilege vulnerability exists in the way that the Win ...) NOT-FOR-US: Microsoft -CVE-2020-0700 - RESERVED +CVE-2020-0700 (A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Se ...) + TODO: check CVE-2020-0699 RESERVED CVE-2020-0698 (An information disclosure vulnerability exists when the Telephony Serv ...) @@ -25208,8 +25501,8 @@ CVE-2020-0692 (An elevation of privilege vulnerability exists in Microsoft Excha NOT-FOR-US: Microsoft CVE-2020-0691 (An elevation of privilege vulnerability exists in Windows when the Win ...) NOT-FOR-US: Microsoft -CVE-2020-0690 - RESERVED +CVE-2020-0690 (An elevation of privilege vulnerability exists when DirectX improperly ...) + TODO: check CVE-2020-0689 (A security feature bypass vulnerability exists in secure boot, aka 'Mi ...) NOT-FOR-US: Microsoft CVE-2020-0688 (A remote code execution vulnerability exists in Microsoft Exchange sof ...) @@ -25220,8 +25513,8 @@ CVE-2020-0686 (An elevation of privilege vulnerability exists in the Windows Ins NOT-FOR-US: Microsoft CVE-2020-0685 (An elevation of privilege vulnerability exists when Windows improperly ...) NOT-FOR-US: Microsoft -CVE-2020-0684 - RESERVED +CVE-2020-0684 (A remote code execution vulnerability exists in Microsoft Windows that ...) + TODO: check CVE-2020-0683 (An elevation of privilege vulnerability exists in the Windows Installe ...) NOT-FOR-US: Microsoft CVE-2020-0682 (An elevation of privilege vulnerability exists in the way that the Win ...) @@ -25298,8 +25591,8 @@ CVE-2020-0647 (A spoofing vulnerability exists when Office Online does not valid NOT-FOR-US: Microsoft CVE-2020-0646 (A remote code execution vulnerability exists when the Microsoft .NET F ...) NOT-FOR-US: Microsoft -CVE-2020-0645 - RESERVED +CVE-2020-0645 (A tampering vulnerability exists when Microsoft IIS Server improperly ...) + TODO: check CVE-2020-0644 (An elevation of privilege vulnerability exists when Microsoft Windows ...) NOT-FOR-US: Microsoft CVE-2020-0643 (An information disclosure vulnerability exists in the way that the Win ...) @@ -26098,20 +26391,20 @@ CVE-2020-0509 RESERVED CVE-2020-0508 RESERVED -CVE-2020-0507 - RESERVED -CVE-2020-0506 - RESERVED -CVE-2020-0505 - RESERVED -CVE-2020-0504 - RESERVED -CVE-2020-0503 - RESERVED -CVE-2020-0502 - RESERVED -CVE-2020-0501 - RESERVED +CVE-2020-0507 (Unquoted service path in Intel(R) Graphics Drivers before versions 15. ...) + TODO: check +CVE-2020-0506 (Improper initialization in Intel(R) Graphics Drivers before versions 1 ...) + TODO: check +CVE-2020-0505 (Improper conditions check in Intel(R) Graphics Drivers before versions ...) + TODO: check +CVE-2020-0504 (Buffer overflow in Intel(R) Graphics Drivers before versions 15.40.44. ...) + TODO: check +CVE-2020-0503 (Improper access control in Intel(R) Graphics Drivers before version 26 ...) + TODO: check +CVE-2020-0502 (Improper access control in Intel(R) Graphics Drivers before version 26 ...) + TODO: check +CVE-2020-0501 (Buffer overflow in Intel(R) Graphics Drivers before version 26.20.100. ...) + TODO: check CVE-2019-18570 RESERVED CVE-2019-18569 @@ -38393,10 +38686,10 @@ CVE-2019-14628 RESERVED CVE-2019-14627 RESERVED -CVE-2019-14626 - RESERVED -CVE-2019-14625 - RESERVED +CVE-2019-14626 (Improper access control in PCIe function for the Intel® FPGA Prog ...) + TODO: check +CVE-2019-14625 (Improper access control in on-card storage for the Intel® FPGA Pr ...) + TODO: check CVE-2019-14624 RESERVED CVE-2019-14623 @@ -50651,8 +50944,8 @@ CVE-2019-10810 RESERVED CVE-2019-10809 RESERVED -CVE-2019-10808 - RESERVED +CVE-2019-10808 (utilitify prior to 1.0.3 allows modification of object properties. The ...) + TODO: check CVE-2019-10807 (Blamer versions prior to 1.0.1 allows execution of arbitrary commands. ...) TODO: check CVE-2019-10806 (vega-util prior to 1.13.1 allows manipulation of object prototype. The ...) @@ -65458,8 +65751,8 @@ CVE-2019-5650 REJECTED CVE-2019-5649 RESERVED -CVE-2019-5648 - RESERVED +CVE-2019-5648 (Authenticated, administrative access to a Barracuda Load Balancer ADC ...) + TODO: check CVE-2019-5647 (The Chrome Plugin for Rapid7 AppSpider can incorrectly keep browser se ...) NOT-FOR-US: Chrome Plugin for Rapid7 AppSpider CVE-2019-5646 @@ -66508,34 +66801,34 @@ CVE-2019-5184 RESERVED CVE-2019-5183 (An exploitable type confusion vulnerability exists in AMD ATIDXX64.DLL ...) NOT-FOR-US: AMD ATIDXX64.DLL driver -CVE-2019-5182 - RESERVED -CVE-2019-5181 - RESERVED -CVE-2019-5180 - RESERVED -CVE-2019-5179 - RESERVED -CVE-2019-5178 - RESERVED -CVE-2019-5177 - RESERVED -CVE-2019-5176 - RESERVED -CVE-2019-5175 - RESERVED -CVE-2019-5174 - RESERVED -CVE-2019-5173 - RESERVED -CVE-2019-5172 - RESERVED -CVE-2019-5171 - RESERVED -CVE-2019-5170 - RESERVED -CVE-2019-5169 - RESERVED +CVE-2019-5182 (An exploitable stack buffer overflow vulnerability vulnerability exist ...) + TODO: check +CVE-2019-5181 (An exploitable stack buffer overflow vulnerability vulnerability exist ...) + TODO: check +CVE-2019-5180 (An exploitable stack buffer overflow vulnerability vulnerability exist ...) + TODO: check +CVE-2019-5179 (An exploitable stack buffer overflow vulnerability vulnerability exist ...) + TODO: check +CVE-2019-5178 (An exploitable stack buffer overflow vulnerability vulnerability exist ...) + TODO: check +CVE-2019-5177 (An exploitable stack buffer overflow vulnerability vulnerability exist ...) + TODO: check +CVE-2019-5176 (An exploitable stack buffer overflow vulnerability vulnerability exist ...) + TODO: check +CVE-2019-5175 (An exploitable command injection vulnerability exists in the iocheckd ...) + TODO: check +CVE-2019-5174 (An exploitable command injection vulnerability exists in the iocheckd ...) + TODO: check +CVE-2019-5173 (An exploitable command injection vulnerability exists in the iocheckd ...) + TODO: check +CVE-2019-5172 (An exploitable command injection vulnerability exists in the iocheckd ...) + TODO: check +CVE-2019-5171 (An exploitable command injection vulnerability exists in the iocheckd ...) + TODO: check +CVE-2019-5170 (An exploitable command injection vulnerability exists in the iocheckd ...) + TODO: check +CVE-2019-5169 (An exploitable command injection vulnerability exists in the iocheckd ...) + TODO: check CVE-2019-5168 (An exploitable command injection vulnerability exists in the iocheckd ...) TODO: check CVE-2019-5167 (An exploitable command injection vulnerability exists in the iocheckd ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a6aff1d262c64d3fe1b3a9c8db2e6a40f86ce9f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a6aff1d262c64d3fe1b3a9c8db2e6a40f86ce9f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits