Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
654c6ed6 by security tracker role at 2020-03-30T20:10:21+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,203 @@
+CVE-2020-11099
+ RESERVED
+CVE-2020-11098
+ RESERVED
+CVE-2020-11097
+ RESERVED
+CVE-2020-11096
+ RESERVED
+CVE-2020-11095
+ RESERVED
+CVE-2020-11094
+ RESERVED
+CVE-2020-11093
+ RESERVED
+CVE-2020-11092
+ RESERVED
+CVE-2020-11091
+ RESERVED
+CVE-2020-11090
+ RESERVED
+CVE-2020-11089
+ RESERVED
+CVE-2020-11088
+ RESERVED
+CVE-2020-11087
+ RESERVED
+CVE-2020-11086
+ RESERVED
+CVE-2020-11085
+ RESERVED
+CVE-2020-11084
+ RESERVED
+CVE-2020-11083
+ RESERVED
+CVE-2020-11082
+ RESERVED
+CVE-2020-11081
+ RESERVED
+CVE-2020-11080
+ RESERVED
+CVE-2020-11079
+ RESERVED
+CVE-2020-11078
+ RESERVED
+CVE-2020-11077
+ RESERVED
+CVE-2020-11076
+ RESERVED
+CVE-2020-11075
+ RESERVED
+CVE-2020-11074
+ RESERVED
+CVE-2020-11073
+ RESERVED
+CVE-2020-11072
+ RESERVED
+CVE-2020-11071
+ RESERVED
+CVE-2020-11070
+ RESERVED
+CVE-2020-11069
+ RESERVED
+CVE-2020-11068
+ RESERVED
+CVE-2020-11067
+ RESERVED
+CVE-2020-11066
+ RESERVED
+CVE-2020-11065
+ RESERVED
+CVE-2020-11064
+ RESERVED
+CVE-2020-11063
+ RESERVED
+CVE-2020-11062
+ RESERVED
+CVE-2020-11061
+ RESERVED
+CVE-2020-11060
+ RESERVED
+CVE-2020-11059
+ RESERVED
+CVE-2020-11058
+ RESERVED
+CVE-2020-11057
+ RESERVED
+CVE-2020-11056
+ RESERVED
+CVE-2020-11055
+ RESERVED
+CVE-2020-11054
+ RESERVED
+CVE-2020-11053
+ RESERVED
+CVE-2020-11052
+ RESERVED
+CVE-2020-11051
+ RESERVED
+CVE-2020-11050
+ RESERVED
+CVE-2020-11049
+ RESERVED
+CVE-2020-11048
+ RESERVED
+CVE-2020-11047
+ RESERVED
+CVE-2020-11046
+ RESERVED
+CVE-2020-11045
+ RESERVED
+CVE-2020-11044
+ RESERVED
+CVE-2020-11043
+ RESERVED
+CVE-2020-11042
+ RESERVED
+CVE-2020-11041
+ RESERVED
+CVE-2020-11040
+ RESERVED
+CVE-2020-11039
+ RESERVED
+CVE-2020-11038
+ RESERVED
+CVE-2020-11037
+ RESERVED
+CVE-2020-11036
+ RESERVED
+CVE-2020-11035
+ RESERVED
+CVE-2020-11034
+ RESERVED
+CVE-2020-11033
+ RESERVED
+CVE-2020-11032
+ RESERVED
+CVE-2020-11031
+ RESERVED
+CVE-2020-11030
+ RESERVED
+CVE-2020-11029
+ RESERVED
+CVE-2020-11028
+ RESERVED
+CVE-2020-11027
+ RESERVED
+CVE-2020-11026
+ RESERVED
+CVE-2020-11025
+ RESERVED
+CVE-2020-11024
+ RESERVED
+CVE-2020-11023
+ RESERVED
+CVE-2020-11022
+ RESERVED
+CVE-2020-11021
+ RESERVED
+CVE-2020-11020
+ RESERVED
+CVE-2020-11019
+ RESERVED
+CVE-2020-11018
+ RESERVED
+CVE-2020-11017
+ RESERVED
+CVE-2020-11016
+ RESERVED
+CVE-2020-11015
+ RESERVED
+CVE-2020-11014
+ RESERVED
+CVE-2020-11013
+ RESERVED
+CVE-2020-11012
+ RESERVED
+CVE-2020-11011
+ RESERVED
+CVE-2020-11010
+ RESERVED
+CVE-2020-11009
+ RESERVED
+CVE-2020-11008
+ RESERVED
+CVE-2020-11007
+ RESERVED
+CVE-2020-11006
+ RESERVED
+CVE-2020-11005
+ RESERVED
+CVE-2020-11004
+ RESERVED
+CVE-2020-11003
+ RESERVED
+CVE-2020-11002
+ RESERVED
+CVE-2020-11001
+ RESERVED
+CVE-2020-11000
+ RESERVED
CVE-2020-10999
RESERVED
CVE-2020-10998
@@ -1238,8 +1438,8 @@ CVE-2020-10562 (An issue was discovered in DEVOME GRR
before 3.4.1c. admin_edit_
NOT-FOR-US: DEVOME GRR
CVE-2020-10561
RESERVED
-CVE-2020-10560
- RESERVED
+CVE-2020-10560 (An issue was discovered in Open Source Social Network (OSSN)
through 5 ...)
+ TODO: check
CVE-2020-10559
RESERVED
CVE-2020-10558 (The driving interface of Tesla Model 3 vehicles in any release
before ...)
@@ -5885,8 +6085,8 @@ CVE-2020-8511 (In Artica Pandora FMS through 7.42, Web
Admin users can execute a
NOT-FOR-US: Artica Pandora FMS
CVE-2020-8510 (An issue was discovered in phpABook 0.9 Intermediate. On the
login pag ...)
NOT-FOR-US: phpABook
-CVE-2020-8509
- RESERVED
+CVE-2020-8509 (Zoho ManageEngine Desktop Central allows unauthenticated users
to acce ...)
+ TODO: check
CVE-2020-8508 (nsak64.sys in Norman Malware Cleaner 2.08.08 allows users to
call arbi ...)
NOT-FOR-US: Norman Malware Cleaner
CVE-2020-8507 (The Citytv Video application 4.08.0 for Android and 3.35 for
iOS sends ...)
@@ -7952,8 +8152,8 @@ CVE-2020-7612
RESERVED
CVE-2020-7611
RESERVED
-CVE-2020-7610
- RESERVED
+CVE-2020-7610 (All versions of bson before 1.1.4 are vulnerable to
Deserialization of ...)
+ TODO: check
CVE-2020-7609
RESERVED
CVE-2020-7608 (yargs-parser could be tricked into adding or modifying
properties of O ...)
@@ -7979,8 +8179,8 @@ CVE-2020-7601 (gulp-scss-lint through 1.0.0 allows
execution of arbitrary comman
NOT-FOR-US: Node gulp-scss-lint
CVE-2020-7600 (querymen prior to 2.1.4 allows modification of object
properties. The ...)
NOT-FOR-US: querymen nodejs module
-CVE-2020-7599
- RESERVED
+CVE-2020-7599 (All versions of com.gradle.plugin-publish before 0.11.0 are
vulnerable ...)
+ TODO: check
CVE-2020-7598 (minimist before 1.2.2 could be tricked into adding or modifying
proper ...)
- node-minimist 1.2.5-1 (bug #953762)
[buster] - node-minimist <no-dsa> (Minor issue)
@@ -12228,14 +12428,14 @@ CVE-2020-5728
RESERVED
CVE-2020-5727
RESERVED
-CVE-2020-5726
- RESERVED
-CVE-2020-5725
- RESERVED
-CVE-2020-5724
- RESERVED
-CVE-2020-5723
- RESERVED
+CVE-2020-5726 (The Grandstream UCM6200 series before 1.0.20.22 is vulnerable
to an SQ ...)
+ TODO: check
+CVE-2020-5725 (The Grandstream UCM6200 series before 1.0.20.22 is vulnerable
to an SQ ...)
+ TODO: check
+CVE-2020-5724 (The Grandstream UCM6200 series before 1.0.20.22 is vulnerable
to an SQ ...)
+ TODO: check
+CVE-2020-5723 (The UCM6200 series 1.0.20.22 and below stores unencrypted user
passwor ...)
+ TODO: check
CVE-2020-5722 (The HTTP interface of the Grandstream UCM6200 series is
vulnerable to ...)
NOT-FOR-US: Grandstream
CVE-2020-5721
@@ -12628,8 +12828,8 @@ CVE-2020-5529 (HtmlUnit prior to 2.37.0 contains code
execution vulnerabilities.
TODO: check details, might affect jenkins-htmlunit
CVE-2020-5528 (Cross-site scripting vulnerability in Movable Type series
(Movable Typ ...)
- movabletype-opensource <removed>
-CVE-2020-5527
- RESERVED
+CVE-2020-5527 (When MELSOFT transmission port (UDP/IP) of Mitsubishi Electric
MELSEC ...)
+ TODO: check
CVE-2020-5526 (The AWMS Mobile App for Android 2.0.0 to 2.0.5 and for iOS
2.0.0 to 2. ...)
NOT-FOR-US: AWMS Mobile App for Android and iOS
CVE-2020-5525 (Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier,
Aterm WG120 ...)
@@ -31247,10 +31447,10 @@ CVE-2019-17563 (When using FORM authentication with
Apache Tomcat 9.0.0.M1 to 9.
NOTE:
https://github.com/apache/tomcat/commit/ab72a106fe5d992abddda954e30849d7cf8cc583
(7.0.99)
CVE-2019-17562
RESERVED
-CVE-2019-17561
- RESERVED
-CVE-2019-17560
- RESERVED
+CVE-2019-17561 (The "Apache NetBeans" autoupdate system does not fully
validate code s ...)
+ TODO: check
+CVE-2019-17560 (The "Apache NetBeans" autoupdate system does not validate SSL
certific ...)
+ TODO: check
CVE-2019-17559 (There is a vulnerability in Apache Traffic Server 6.0.0 to
6.2.3, 7.0. ...)
- trafficserver 8.0.6+ds-1
NOTE:
https://lists.apache.org/thread.html/r99d18d0bc4daa05e7d0e5a63e0e22701a421b2ef5a8f4f7694c43869%40%3Cannounce.trafficserver.apache.org%3E
@@ -61689,8 +61889,8 @@ CVE-2019-7757
RESERVED
CVE-2019-7756
RESERVED
-CVE-2019-7755
- RESERVED
+CVE-2019-7755 (In webERP 4.15, the Import Bank Transactions function fails to
sanitiz ...)
+ TODO: check
CVE-2019-7754
RESERVED
CVE-2019-7753 (Verydows 2.0 has XSS via the
index.php?m=api&c=stats&a=count r ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/654c6ed685b149e95ae95a555127d5ef4b1c0a7d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/654c6ed685b149e95ae95a555127d5ef4b1c0a7d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
