Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 7824c05e by Salvatore Bonaccorso at 2020-11-15T15:16:59+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -10909,7 +10909,7 @@ CVE-2020-25157 (The R-SeeNet webpage (1.5.1 through 2.4.10) suffers from SQL inj CVE-2020-25156 RESERVED CVE-2020-25155 (The affected product transmits unencrypted sensitive information, whic ...) - TODO: check + NOT-FOR-US: NEXCOM CVE-2020-25154 RESERVED CVE-2020-25153 @@ -10917,7 +10917,7 @@ CVE-2020-25153 CVE-2020-25152 RESERVED CVE-2020-25151 (The affected product does not properly validate input, which may allow ...) - TODO: check + NOT-FOR-US: NEXCOM CVE-2020-25150 RESERVED CVE-2020-25149 (An issue was discovered in Observium Professional, Enterprise & Co ...) @@ -31085,7 +31085,7 @@ CVE-2020-15483 (An issue was discovered on Nescomed Multipara Monitor M1000 devi CVE-2020-15482 (An issue was discovered on Nescomed Multipara Monitor M1000 devices. T ...) NOT-FOR-US: Nescomed Multipara Monitor M1000 devices CVE-2020-15481 (An issue was discovered in PassMark BurnInTest v9.1 Build 1008, OSFore ...) - TODO: check + NOT-FOR-US: PassMark CVE-2020-15480 (An issue was discovered in PassMark BurnInTest through 9.1, OSForensic ...) NOT-FOR-US: PassMark CVE-2020-15479 (An issue was discovered in PassMark BurnInTest through 9.1, OSForensic ...) @@ -36195,7 +36195,7 @@ CVE-2020-13640 (A SQL injection issue in the gVectors wpDiscuz plugin 5.3.5 and CVE-2020-13639 RESERVED CVE-2020-13638 (lib/crud/userprocess.php in rConfig 3.9.x before 3.9.7 has an authenti ...) - TODO: check + NOT-FOR-US: rConfig CVE-2020-13637 (An issue was discovered in the stashcat app through 3.9.2 for macOS, W ...) NOT-FOR-US: stashcat app CVE-2020-13636 @@ -39562,7 +39562,7 @@ CVE-2020-12320 (Uncontrolled search path in Intel(R) SCS Add-on for Microsoft* S CVE-2020-12319 (Insufficient control flow management in some Intel(R) PROSet/Wireless ...) TODO: check CVE-2020-12318 (Protection mechanism failure in some Intel(R) PROSet/Wireless WiFi pro ...) - TODO: check + NOT-FOR-US: Intel PROSet/Wireless WiFi products (not applicable to Linux) CVE-2020-12317 (Improper buffer restriction in some Intel(R) PROSet/Wireless WiFi prod ...) TODO: check CVE-2020-12316 (Insufficiently protected credentials in the Intel(R) EMA before versio ...) @@ -39570,7 +39570,7 @@ CVE-2020-12316 (Insufficiently protected credentials in the Intel(R) EMA before CVE-2020-12315 (Path traversal in the Intel(R) EMA before version 1.3.3 may allow an u ...) NOT-FOR-US: Intel CVE-2020-12314 (Improper input validation in some Intel(R) PROSet/Wireless WiFi produc ...) - TODO: check + NOT-FOR-US: Intel PROSet/Wireless WiFi products (not applicable to Linux) CVE-2020-12313 (Insufficient control flow management in some Intel(R) PROSet/Wireless ...) TODO: check CVE-2020-12312 (Improper buffer restrictions in the Intel(R) Stratix(R) 10 FPGA firmwa ...) @@ -49121,11 +49121,11 @@ CVE-2020-9131 CVE-2020-9130 RESERVED CVE-2020-9129 (HUAWEI Mate 30 versions earlier than 10.1.0.159(C00E159R7P2) have a vu ...) - TODO: check + NOT-FOR-US: Huawei CVE-2020-9128 (FusionCompute versions 8.0.0 have an insecure encryption algorithm vul ...) NOT-FOR-US: Uawei FusionCompute CVE-2020-9127 (Some Huawei products have a command injection vulnerability. Due to in ...) - TODO: check + NOT-FOR-US: Huawei CVE-2020-9126 RESERVED CVE-2020-9125 @@ -50477,9 +50477,9 @@ CVE-2020-8585 CVE-2020-8584 RESERVED CVE-2020-8583 (Element Software versions prior to 12.2 and HCI versions prior to 1.8P ...) - TODO: check + NOT-FOR-US: HCI CVE-2020-8582 (Element Software versions prior to 12.2 and HCI versions prior to 1.8P ...) - TODO: check + NOT-FOR-US: HCI CVE-2020-8581 RESERVED CVE-2020-8580 (SANtricity OS Controller Software versions 11.30 and higher are suscep ...) @@ -52059,7 +52059,7 @@ CVE-2015-9541 (Qt through 5.14 allows an exponential XML entity expansion attack NOTE: https://code.qt.io/cgit/qt/qtbase.git/commit/?id=fd4be84d23a0db4186cb42e736a9de3af722c7f7 NOTE: https://code.qt.io/cgit/qt/qtbase.git/commit/?id=f432c08882ffebe5074ea28de871559a98a4d094 (5.12 backport) CVE-2020-7962 (An issue was discovered in One Identity Password Manager 5.8. An attac ...) - TODO: check + NOT-FOR-US: One Identity Password Manager CVE-2020-7961 (Deserialization of Untrusted Data in Liferay Portal prior to 7.2.1 CE ...) NOT-FOR-US: Liferay Portal CVE-2020-7960 @@ -56711,11 +56711,11 @@ CVE-2020-6159 CVE-2020-6158 RESERVED CVE-2020-6157 (Opera Touch for iOS before version 2.4.5 is vulnerable to an address b ...) - TODO: check + NOT-FOR-US: Opera Touch for iOS CVE-2020-6156 (A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the s ...) - TODO: check + NOT-FOR-US: Pixar OpenUSD CVE-2020-6155 (A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 while ...) - TODO: check + NOT-FOR-US: Pixar OpenUSD CVE-2020-6154 RESERVED CVE-2020-6153 @@ -56725,13 +56725,13 @@ CVE-2020-6152 (A code execution vulnerability exists in the DICOM parse_dicom_me CVE-2020-6151 (A memory corruption vulnerability exists in the TIFF handle_COMPRESSIO ...) NOT-FOR-US: Accusoft CVE-2020-6150 (A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the s ...) - TODO: check + NOT-FOR-US: Pixar OpenUSD CVE-2020-6149 (A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the s ...) - TODO: check + NOT-FOR-US: Pixar OpenUSD CVE-2020-6148 (A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the s ...) - TODO: check + NOT-FOR-US: Pixar OpenUSD CVE-2020-6147 (A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the s ...) - TODO: check + NOT-FOR-US: Pixar OpenUSD CVE-2020-6146 (An exploitable code execution vulnerability exists in the rendering fu ...) NOT-FOR-US: Nitro Pro CVE-2020-6145 (An SQL injection vulnerability exists in the frappe.desk.reportview.ge ...) @@ -57534,7 +57534,7 @@ CVE-2020-5798 CVE-2020-5797 RESERVED CVE-2020-5796 (Improper preservation of permissions in Nagios XI 5.7.4 allows a local ...) - TODO: check + NOT-FOR-US: Nagios XI CVE-2020-5795 (UNIX Symbolic Link (Symlink) Following in TP-Link Archer A7(US)_V5_200 ...) NOT-FOR-US: TP-Link CVE-2020-5794 (A vulnerability in Nessus Network Monitor versions 5.11.0, 5.11.1, and ...) @@ -68497,7 +68497,7 @@ CVE-2020-1849 CVE-2020-1848 RESERVED CVE-2020-1847 (There is a denial of service vulnerability in some Huawei products. Th ...) - TODO: check + NOT-FOR-US: Huawei CVE-2020-1846 RESERVED CVE-2020-1845 (Huawei PCManager product with versions earlier than 10.0.5.53 have a l ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7824c05eaeb924b0af80222a7c4fdb291ce91b52 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7824c05eaeb924b0af80222a7c4fdb291ce91b52 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits