Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
31261c7c by Salvatore Bonaccorso at 2020-12-04T21:32:21+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21,7 +21,7 @@ CVE-2020-29562 (The iconv function in the GNU C Library (aka
glibc or libc6) 2.3
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=26923
NOTE:
https://sourceware.org/pipermail/libc-alpha/2020-November/119822.html
CVE-2020-29561 (An issue was discovered in SonicBOOM riscv-boom 3.0.0. For LR,
it does ...)
- TODO: check
+ NOT-FOR-US: SonicBOOM riscv-boom
CVE-2020-29560
RESERVED
CVE-2020-29559
@@ -841,7 +841,7 @@ CVE-2020-29284 (The file view-chair-list.php in Multi
Restaurant Table Reservati
CVE-2020-29283 (An SQL injection vulnerability was discovered in Online Doctor
Appoint ...)
NOT-FOR-US: Online Doctor Appointment Booking System
CVE-2020-29282 (SQL injection vulnerability in BloodX 1.0 allows attackers to
bypass a ...)
- TODO: check
+ NOT-FOR-US: BloodX
CVE-2020-29281
RESERVED
CVE-2020-29280 (The Victor CMS v1.0 application is vulnerable to SQL injection
via the ...)
@@ -8318,9 +8318,9 @@ CVE-2020-27411
CVE-2020-27410
RESERVED
CVE-2020-27409 (OpenSIS Community Edition before 7.5 is affected by a
cross-site scrip ...)
- TODO: check
+ NOT-FOR-US: OS4Ed openSIS
CVE-2020-27408 (OpenSIS Community Edition through 7.6 is affected by incorrect
access ...)
- TODO: check
+ NOT-FOR-US: OS4Ed openSIS
CVE-2020-27407
RESERVED
CVE-2020-27406
@@ -12829,15 +12829,15 @@ CVE-2020-25467
CVE-2020-25466 (A SSRF vulnerability exists in the downloadimage interface of
CRMEB 3. ...)
NOT-FOR-US: CRMEB
CVE-2020-25465 (Null Pointer Dereference. in xObjectBindingFromExpression at
moddable/ ...)
- TODO: check
+ NOT-FOR-US: Moddable SDK
CVE-2020-25464 (Heap buffer overflow at moddable/xs/sources/xsDebug.c in
Moddable SDK ...)
- TODO: check
+ NOT-FOR-US: Moddable SDK
CVE-2020-25463 (Invalid Memory Access in fxUTF8Decode at
moddable/xs/sources/xsCommon. ...)
- TODO: check
+ NOT-FOR-US: Moddable SDK
CVE-2020-25462 (Heap buffer overflow in the fxCheckArrowFunction function at
moddable/ ...)
- TODO: check
+ NOT-FOR-US: Moddable SDK
CVE-2020-25461 (Invalid Memory Access in the fxProxyGetter function in
moddable/xs/sou ...)
- TODO: check
+ NOT-FOR-US: Moddable SDK
CVE-2020-25460
RESERVED
CVE-2020-25459
@@ -60571,7 +60571,7 @@ CVE-2020-5677 (Reflected cross-site scripting
vulnerability in GROWI v4.0.0 and
CVE-2020-5676 (GROWI v4.1.3 and earlier allow remote attackers to obtain
information ...)
NOT-FOR-US: GROWI
CVE-2020-5675 (Out-of-bounds read issue in GT21 model of GOT2000 series
(GT2107-WTBD ...)
- TODO: check
+ NOT-FOR-US: Mitsubishi
CVE-2020-5674 (Untrusted search path vulnerability in the installers of
multiple SEIK ...)
NOT-FOR-US: SEIKO EPSON products
CVE-2020-5673
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/31261c7c8be9c82f5910627ebe1049b223e3a611
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/31261c7c8be9c82f5910627ebe1049b223e3a611
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
