[Git][security-tracker-team/security-tracker][master] 2 commits: Take libproxy from dsa-needed list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 330d1873 by Salvatore Bonaccorso at 2020-11-27T06:36:54+01:00 Take libproxy from dsa-needed list - - - - - a5aa8c67 by Salvatore Bonaccorso at 2020-11-27T06:37:05+01:00 Add x11vnc to dsa-needed list - - - - - 1 changed file: - data/dsa-needed.txt Changes: = data/dsa-needed.txt = @@ -19,7 +19,7 @@ chromium knot-resolver Santiago Ruano Rincón proposed a debdiff for review -- -libproxy +libproxy (carnil) -- linux (carnil) Wait until more issues have piled up, though try to regulary rebase for point @@ -31,6 +31,8 @@ pdns-recursor -- salt -- +x11vnc (carnil) +-- xcftools Hugo proposed to work on this update -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d663980a7a1d5db3d6bf3ef7a1a490a9bc080e4f...a5aa8c67409b606ead1ccc2215d06a0b4a421723 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d663980a7a1d5db3d6bf3ef7a1a490a9bc080e4f...a5aa8c67409b606ead1ccc2215d06a0b4a421723 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2020-28924/rclone
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d663980a by Salvatore Bonaccorso at 2020-11-27T06:32:55+01:00 Add fixed version via unstable for CVE-2020-28924/rclone - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -458,7 +458,7 @@ CVE-2020-28926 CVE-2020-28925 RESERVED CVE-2020-28924 (An issue was discovered in Rclone before 1.53.3. Due to the use of a w ...) - - rclone (bug #975324) + - rclone 1.53.3-1 (bug #975324) [buster] - rclone (Vulnerable code introduced later) [stretch] - rclone (Vulnerable code introduced later) NOTE: https://github.com/rclone/rclone/issues/4783 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d663980a7a1d5db3d6bf3ef7a1a490a9bc080e4f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d663980a7a1d5db3d6bf3ef7a1a490a9bc080e4f You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add CVE-2020-291{29,30}/libslirp
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9e901ef1 by Salvatore Bonaccorso at 2020-11-27T06:02:37+01:00 Add CVE-2020-291{29,30}/libslirp - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,7 +1,13 @@ CVE-2020-29130 (slirp.c in libslirp through 4.3.1 has a buffer over-read because it tr ...) - TODO: check + - libslirp + - qemu 1:4.1-2 + NOTE: https://lists.freedesktop.org/archives/slirp/2020-November/000115.html + NOTE: qemu 1:4.1-2 switched to system libslirp, marking that version as fixed. CVE-2020-29129 (ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tri ...) - TODO: check + - libslirp + - qemu 1:4.1-2 + NOTE: https://lists.freedesktop.org/archives/slirp/2020-November/000115.html + NOTE: qemu 1:4.1-2 switched to system libslirp, marking that version as fixed. CVE-2020-29128 (petl before 1.68, in some configurations, allows resolution of entitie ...) TODO: check CVE-2020-29127 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e901ef17bcb0d31a6196bd7b598c1b8ace4d601 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e901ef17bcb0d31a6196bd7b598c1b8ace4d601 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] golang-github-go-ethereum: Replace some NFUs with ITP referenced entry
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 21e65b51 by Salvatore Bonaccorso at 2020-11-27T05:54:47+01:00 golang-github-go-ethereum: Replace some NFUs with ITP referenced entry - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -9662,11 +9662,11 @@ CVE-2020-26243 (Nanopb is a small code-size Protocol Buffers implementation. In NOTE: https://github.com/nanopb/nanopb/commit/edf6dcbffee4d614ac0c2c1b258ab95185bdb6e9 (0.4.4) NOTE: https://github.com/nanopb/nanopb/issues/615 CVE-2020-26242 (Go Ethereum, or "Geth", is the official Golang implementation of the E ...) - NOT-FOR-US: Go Ethereum + - golang-github-go-ethereum (bug #890541) CVE-2020-26241 (Go Ethereum, or "Geth", is the official Golang implementation of the E ...) - NOT-FOR-US: Go Ethereum + - golang-github-go-ethereum (bug #890541) CVE-2020-26240 (Go Ethereum, or "Geth", is the official Golang implementation of the E ...) - NOT-FOR-US: Go Ethereum + - golang-github-go-ethereum (bug #890541) CVE-2020-26239 (Scratch Addons is a WebExtension that supports both Chrome and Firefox ...) NOT-FOR-US: Scratch Addons CVE-2020-26238 (Cron-utils is a Java library to parse, validate, migrate crons as well ...) @@ -120988,7 +120988,7 @@ CVE-2018-20423 (Discuz! DiscuzX 3.4, when WeChat login is enabled, allows remote CVE-2018-20422 (Discuz! DiscuzX 3.4, when WeChat login is enabled, allows remote attac ...) NOT-FOR-US: DiscuzX CVE-2018-20421 (Go Ethereum (aka geth) 1.8.19 allows attackers to cause a denial of se ...) - NOT-FOR-US: Go Ethereum + - golang-github-go-ethereum (bug #890541) CVE-2018-20420 (In webERP 4.15, Z_CreateCompanyTemplateFile.php has Incorrect Access C ...) NOT-FOR-US: webERP CVE-2018-20419 (DouCo DouPHP 1.5 has upload/admin/manager.php?rec=insert CSRF to add a ...) @@ -131877,7 +131877,7 @@ CVE-2018-19186 (The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2 CVE-2018-19185 (An issue has been found in libIEC61850 v1.3. It is a heap-based buffer ...) NOT-FOR-US: libIEC61850 CVE-2018-19184 (cmd/evm/runner.go in Go Ethereum (aka geth) 1.8.17 allows attackers to ...) - NOT-FOR-US: Go Ethereum + - golang-github-go-ethereum (bug #890541) CVE-2018-19183 (ethereumjs-vm 2.4.0 allows attackers to cause a denial of service (vm. ...) NOT-FOR-US: ethereumjs-vm CVE-2018-19182 (Engelsystem before commit hash 2e28336 allows CSRF. ...) @@ -138448,7 +138448,7 @@ CVE-2018-16735 CVE-2018-16734 RESERVED CVE-2018-16733 (In Go Ethereum (aka geth) before 1.8.14, TraceChain in eth/api_tracer. ...) - NOT-FOR-US: Go Ethereum + - golang-github-go-ethereum (bug #890541) CVE-2018-16732 (\upload\plugins\sys\admin\Setting.php in CScms 4.1 allows CSRF via adm ...) NOT-FOR-US: CScms CVE-2018-16731 (CScms 4.1 allows arbitrary file upload by (for example) adding the php ...) @@ -150906,7 +150906,7 @@ CVE-2018-12019 (The signature verification routine in Enigmail before 2.0.7 inte NOTE: https://www.openwall.com/lists/oss-security/2018/06/13/10 NOTE: https://neopg.io/blog/enigmail-signature-spoof/ CVE-2018-12018 (The GetBlockHeadersMsg handler in the LES protocol implementation in G ...) - NOT-FOR-US: Go Ethereum + - golang-github-go-ethereum (bug #890541) CVE-2018-12017 RESERVED CVE-2018-12016 (libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows rem ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/21e65b511b0d8523617bdba4901ca61d62129b24 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/21e65b511b0d8523617bdba4901ca61d62129b24 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] CVE-2020-26232: Reference commit directly
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0593aaeb by Salvatore Bonaccorso at 2020-11-27T05:49:52+01:00 CVE-2020-26232: Reference commit directly - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -9686,7 +9686,7 @@ CVE-2020-26233 CVE-2020-26232 (Jupyter Server before version 1.0.6 has an Open redirect vulnerability ...) - jupyter-server 1.0.7-1 NOTE: https://github.com/jupyter-server/jupyter_server/security/advisories/GHSA-grfj-wjv9-4f9v - NOTE: https://github.com/jupyter-server/jupyter_server/commit/3d83e49090289c431da253e2bdb8dc479cbcb157 + NOTE: https://github.com/jupyter-server/jupyter_server/commit/61ab548bf9186ab7323d8fa7bd0e12ae23555a28 (1.0.6) CVE-2020-26231 (October is a free, open-source, self-hosted CMS platform based on the ...) NOT-FOR-US: October CMS CVE-2020-26230 (Radar COVID is the official COVID-19 exposure notification app for Spa ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0593aaebcd26ddb9fc72ff08a571c4eef8d5355a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0593aaebcd26ddb9fc72ff08a571c4eef8d5355a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new kamailio, jupyter-server issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 11584f78 by Moritz Muehlenhoff at 2020-11-26T22:37:38+01:00 new kamailio, jupyter-server issues NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -320,7 +320,7 @@ CVE-2020-28984 (prive/formulaires/configurer_preferences.php in SPIP before 3.2. - spip 3.2.8-1 NOTE: https://git.spip.net/spip/spip/commit/ae4267eba1022dabc12831ddb021c5d6e09040f8 CVE-2020-28975 (** DISPUTED ** svm_predict_values in svm.cpp in Libsvm v324, as used i ...) - TODO: check + NOTE: disputed libsvm non issue CVE-2020-28973 RESERVED CVE-2020-28972 @@ -2797,7 +2797,9 @@ CVE-2020-28974 (A slab-out-of-bounds read in fbcon in the Linux kernel before 5. NOTE: https://git.kernel.org/linus/3c4e0dff2095c579b142d5a0693257f1c58b4804 NOTE: https://www.openwall.com/lists/oss-security/2020/11/09/2 CVE-2020-28361 (Kamailio before 5.4.0, as used in Sip Express Router (SER) in Sippy So ...) - TODO: check, this might be specific to Kamailio as used in the specified product + - kamailio 5.4.0-1 + [buster] - kamailio (Minor issue) + NOTE: https://packetstormsecurity.com/files/159030/Kamailio-5.4.0-Header-Smuggling.html CVE-2020-28360 (Insufficient RegEx in private-ip npm package v1.0.5 and below insuffic ...) NOT-FOR-US: Node private-ip CVE-2020-28359 @@ -7523,7 +7525,7 @@ CVE-2020-27209 CVE-2020-27208 RESERVED CVE-2020-27207 (Zetetic SQLCipher 4.x before 4.4.1 has a use-after-free, related to sq ...) - TODO: check + NOT-FOR-US: Zetetic SQLCipher CVE-2020-27206 RESERVED CVE-2020-27205 @@ -9660,11 +9662,11 @@ CVE-2020-26243 (Nanopb is a small code-size Protocol Buffers implementation. In NOTE: https://github.com/nanopb/nanopb/commit/edf6dcbffee4d614ac0c2c1b258ab95185bdb6e9 (0.4.4) NOTE: https://github.com/nanopb/nanopb/issues/615 CVE-2020-26242 (Go Ethereum, or "Geth", is the official Golang implementation of the E ...) - TODO: check + NOT-FOR-US: Go Ethereum CVE-2020-26241 (Go Ethereum, or "Geth", is the official Golang implementation of the E ...) - TODO: check + NOT-FOR-US: Go Ethereum CVE-2020-26240 (Go Ethereum, or "Geth", is the official Golang implementation of the E ...) - TODO: check + NOT-FOR-US: Go Ethereum CVE-2020-26239 (Scratch Addons is a WebExtension that supports both Chrome and Firefox ...) NOT-FOR-US: Scratch Addons CVE-2020-26238 (Cron-utils is a Java library to parse, validate, migrate crons as well ...) @@ -9682,7 +9684,9 @@ CVE-2020-26234 CVE-2020-26233 RESERVED CVE-2020-26232 (Jupyter Server before version 1.0.6 has an Open redirect vulnerability ...) - TODO: check + - jupyter-server 1.0.7-1 + NOTE: https://github.com/jupyter-server/jupyter_server/security/advisories/GHSA-grfj-wjv9-4f9v + NOTE: https://github.com/jupyter-server/jupyter_server/commit/3d83e49090289c431da253e2bdb8dc479cbcb157 CVE-2020-26231 (October is a free, open-source, self-hosted CMS platform based on the ...) NOT-FOR-US: October CMS CVE-2020-26230 (Radar COVID is the official COVID-19 exposure notification app for Spa ...) @@ -39396,7 +39400,6 @@ CVE-2020-12912 (A potential vulnerability in the AMD extension to Linux "hwmon" NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1897402 NOTE: https://support.lenovo.com/lu/uk/product_security/LEN-50481 NOTE: CONFIG_SENSORS_AMD_ENERGY not enabled in Debian builds - TODO: check, correctness CVE-2020-12911 (A denial of service vulnerability exists in the D3DKMTCreateAllocation ...) NOT-FOR-US: AMD ATIKMDAG.SYS CVE-2020-12910 @@ -41006,7 +41009,7 @@ CVE-2020-12340 CVE-2020-12339 RESERVED CVE-2020-12338 (Insufficient control flow management in the Open WebRTC Toolkit before ...) - TODO: check + NOT-FOR-US: Intel CVE-2020-12337 (Improper buffer restrictions in firmware for some Intel(R) NUCs may al ...) NOT-FOR-US: Intel CVE-2020-12336 (Insecure default variable initialization in firmware for some Intel(R) ...) @@ -54088,9 +54091,9 @@ CVE-2020-7781 CVE-2020-7780 RESERVED CVE-2020-7779 (All versions of package djvalidator are vulnerable to Regular Expressi ...) - TODO: check + NOT-FOR-US: Node djvalidator CVE-2020-7778 (This affects the package systeminformation before 4.30.2. The attacker ...) - TODO: check + NOT-FOR-US: Node systeminformation CVE-2020- (This affects all versions of package jsen. If an attacker can control ...) NOT-FOR-US: Node jsen CVE-2020-7776 @@ -276092,7 +276095,7 @@ CVE-2015-5438 CVE-2015-5437 REJECTED CVE-2015-5436 (A potential security vulnerability has been identified with HP Integra ...) - TODO:
[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-26160/golang-github-dgrijalva-jwt-go via unstable
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 22e710b3 by Salvatore Bonaccorso at 2020-11-26T21:40:21+01:00 Add fixed version for CVE-2020-26160/golang-github-dgrijalva-jwt-go via unstable - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -9845,7 +9845,7 @@ CVE-2020-26162 (Xerox WorkCentre EC7836 before 073.050.059.25300 and EC7856 befo CVE-2020-26161 (In Octopus Deploy through 2020.4.2, an attacker could redirect users t ...) NOT-FOR-US: Octopus Deploy CVE-2020-26160 (jwt-go before 4.0.0-preview1 allows attackers to bypass intended acces ...) - - golang-github-dgrijalva-jwt-go (bug #971556) + - golang-github-dgrijalva-jwt-go 3.2.0-3 (bug #971556) NOTE: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMDGRIJALVAJWTGO-596515 NOTE: https://github.com/dgrijalva/jwt-go/issues/422 NOTE: https://github.com/dgrijalva/jwt-go/pull/426 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22e710b3732a1cb26a4178f5509dcecc90775208 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22e710b3732a1cb26a4178f5509dcecc90775208 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Track linux CVEs fixed with buster-pu upload
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ce64e052 by Salvatore Bonaccorso at 2020-11-26T21:35:59+01:00 Track linux CVEs fixed with buster-pu upload - - - - - 1 changed file: - data/next-point-update.txt Changes: = data/next-point-update.txt = @@ -101,3 +101,39 @@ CVE-2020-7595 CVE-2020-28896 [buster] - mutt 1.10.1-2.1+deb10u4 [buster] - neomutt 20180716+dfsg.1-1+deb10u2 +CVE-2019-19039 + [buster] - linux 4.19.160-1 +CVE-2019-19377 + [buster] - linux 4.19.160-1 +CVE-2019-19770 + [buster] - linux 4.19.160-1 +CVE-2019-19816 + [buster] - linux 4.19.160-1 +CVE-2020-0423 + [buster] - linux 4.19.160-1 +CVE-2020-14351 + [buster] - linux 4.19.160-1 +CVE-2020-25656 + [buster] - linux 4.19.160-1 +CVE-2020-25668 + [buster] - linux 4.19.160-1 +CVE-2020-25669 + [buster] - linux 4.19.160-1 +CVE-2020-25704 + [buster] - linux 4.19.160-1 +CVE-2020-25705 + [buster] - linux 4.19.160-1 +CVE-2020-27673 + [buster] - linux 4.19.160-1 +CVE-2020-27675 + [buster] - linux 4.19.160-1 +CVE-2020-2 + [buster] - linux 4.19.160-1 +CVE-2020-28941 + [buster] - linux 4.19.160-1 +CVE-2020-28974 + [buster] - linux 4.19.160-1 +CVE-2020-4788 + [buster] - linux 4.19.160-1 +CVE-2020-8694 + [buster] - linux 4.19.160-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ce64e0526afc84b2ca5495079f41d4f78f93ea38 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ce64e0526afc84b2ca5495079f41d4f78f93ea38 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 16b5066f by Salvatore Bonaccorso at 2020-11-26T21:13:13+01:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -178,9 +178,9 @@ CVE-2020-29045 CVE-2020-29044 RESERVED CVE-2020-29043 (An issue was discovered in BigBlueButton through 2.2.29. When at attac ...) - TODO: check + NOT-FOR-US: BigBlueButton CVE-2020-29042 (An issue was discovered in BigBlueButton through 2.2.29. A brute-force ...) - TODO: check + NOT-FOR-US: BigBlueButton CVE-2020-29041 RESERVED CVE-2020-29040 (An issue was discovered in Xen through 4.14.x allowing x86 HVM guest O ...) @@ -8180,7 +8180,7 @@ CVE-2020-26938 CVE-2020-26937 RESERVED CVE-2020-26936 (Cloudera Data Engineering (CDE) before 1.1 was vulnerable to a CSRF at ...) - TODO: check + NOT-FOR-US: Cloudera Data Engineering (CDE) CVE-2020-26935 (An issue was discovered in SearchController in phpMyAdmin before 4.9.6 ...) {DLA-2413-1} - phpmyadmin 4:4.9.7+dfsg1-1 (bug #972000) @@ -36948,7 +36948,7 @@ CVE-2020-13895 (Crypt::Perl::ECDSA in the Crypt::Perl (aka p5-Crypt-Perl) module NOTE: https://github.com/FGasper/p5-Crypt-Perl/issues/14 NOTE: https://github.com/FGasper/p5-Crypt-Perl/commit/f960ce75502acf7404187231a706672f8369acb2 CVE-2020-13886 (Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 6 ...) - TODO: check + NOT-FOR-US: Intelbras TIP CVE-2020-13885 (Citrix Workspace App before 1912 on Windows has Insecure Permissions w ...) NOT-FOR-US: Citrix CVE-2020-13884 (Citrix Workspace App before 1912 on Windows has Insecure Permissions a ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16b5066f03fc576751ebc135f9e08c8e33135cfa -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16b5066f03fc576751ebc135f9e08c8e33135cfa You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add CVE-2020-2766{2,3}/glpi
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c44a75d5 by Salvatore Bonaccorso at 2020-11-26T21:14:01+01:00 Add CVE-2020-2766{2,3}/glpi - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -6550,9 +6550,9 @@ CVE-2020-27665 (In Strapi before 3.2.5, there is no admin::hasPermissions restri CVE-2020-27664 (admin/src/containers/InputModalStepperProvider/index.js in Strapi befo ...) NOT-FOR-US: Strapi CVE-2020-27663 (In GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct ...) - TODO: check + - glpi CVE-2020-27662 (In GLPI before 9.5.3, ajax/comments.php has an Insecure Direct Object ...) - TODO: check + - glpi CVE-2020-27661 [divide by zero in dwc2_handle_packet() in hw/usb/hcd-dwc2.c] RESERVED - qemu (bug #972864) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c44a75d5cfe54f1cff4d52e04a099142676d2c9d -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c44a75d5cfe54f1cff4d52e04a099142676d2c9d You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d7e008b6 by security tracker role at 2020-11-26T20:10:24+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,7 @@ +CVE-2020-29130 (slirp.c in libslirp through 4.3.1 has a buffer over-read because it tr ...) + TODO: check +CVE-2020-29129 (ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tri ...) + TODO: check CVE-2020-29128 (petl before 1.68, in some configurations, allows resolution of entitie ...) TODO: check CVE-2020-29127 @@ -126,7 +130,7 @@ CVE-2020-29067 CVE-2020-29066 RESERVED CVE-2020-29065 - RESERVED + REJECTED CVE-2020-29064 RESERVED CVE-2020-29063 (An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, ...) @@ -173,10 +177,10 @@ CVE-2020-29045 RESERVED CVE-2020-29044 RESERVED -CVE-2020-29043 - RESERVED -CVE-2020-29042 - RESERVED +CVE-2020-29043 (An issue was discovered in BigBlueButton through 2.2.29. When at attac ...) + TODO: check +CVE-2020-29042 (An issue was discovered in BigBlueButton through 2.2.29. A brute-force ...) + TODO: check CVE-2020-29041 RESERVED CVE-2020-29040 (An issue was discovered in Xen through 4.14.x allowing x86 HVM guest O ...) @@ -5728,6 +5732,7 @@ CVE-2020-27784 RESERVED CVE-2020-27783 RESERVED + {DLA-2467-1} - lxml 4.6.1-1 NOTE: https://github.com/lxml/lxml/commit/89e7aad6e7ff9ecd88678ff25f885988b184b26e (lxml-4.6.1) CVE-2020-27782 @@ -6544,10 +6549,10 @@ CVE-2020-27665 (In Strapi before 3.2.5, there is no admin::hasPermissions restri NOT-FOR-US: Strapi CVE-2020-27664 (admin/src/containers/InputModalStepperProvider/index.js in Strapi befo ...) NOT-FOR-US: Strapi -CVE-2020-27663 - RESERVED -CVE-2020-27662 - RESERVED +CVE-2020-27663 (In GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct ...) + TODO: check +CVE-2020-27662 (In GLPI before 9.5.3, ajax/comments.php has an Insecure Direct Object ...) + TODO: check CVE-2020-27661 [divide by zero in dwc2_handle_packet() in hw/usb/hcd-dwc2.c] RESERVED - qemu (bug #972864) @@ -7517,8 +7522,8 @@ CVE-2020-27209 RESERVED CVE-2020-27208 RESERVED -CVE-2020-27207 - RESERVED +CVE-2020-27207 (Zetetic SQLCipher 4.x before 4.4.1 has a use-after-free, related to sq ...) + TODO: check CVE-2020-27206 RESERVED CVE-2020-27205 @@ -8174,8 +8179,8 @@ CVE-2020-26938 RESERVED CVE-2020-26937 RESERVED -CVE-2020-26936 - RESERVED +CVE-2020-26936 (Cloudera Data Engineering (CDE) before 1.1 was vulnerable to a CSRF at ...) + TODO: check CVE-2020-26935 (An issue was discovered in SearchController in phpMyAdmin before 4.9.6 ...) {DLA-2413-1} - phpmyadmin 4:4.9.7+dfsg1-1 (bug #972000) @@ -36942,8 +36947,8 @@ CVE-2020-13895 (Crypt::Perl::ECDSA in the Crypt::Perl (aka p5-Crypt-Perl) module - libcrypt-perl-perl (bug #907353) NOTE: https://github.com/FGasper/p5-Crypt-Perl/issues/14 NOTE: https://github.com/FGasper/p5-Crypt-Perl/commit/f960ce75502acf7404187231a706672f8369acb2 -CVE-2020-13886 - RESERVED +CVE-2020-13886 (Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 6 ...) + TODO: check CVE-2020-13885 (Citrix Workspace App before 1912 on Windows has Insecure Permissions w ...) NOT-FOR-US: Citrix CVE-2020-13884 (Citrix Workspace App before 1912 on Windows has Insecure Permissions a ...) @@ -54082,10 +54087,10 @@ CVE-2020-7781 RESERVED CVE-2020-7780 RESERVED -CVE-2020-7779 - RESERVED -CVE-2020-7778 - RESERVED +CVE-2020-7779 (All versions of package djvalidator are vulnerable to Regular Expressi ...) + TODO: check +CVE-2020-7778 (This affects the package systeminformation before 4.30.2. The attacker ...) + TODO: check CVE-2020- (This affects all versions of package jsen. If an attacker can control ...) NOT-FOR-US: Node jsen CVE-2020-7776 @@ -127075,7 +127080,7 @@ CVE-2018-19788 (A flaw was found in PolicyKit (aka polkit) 0.115 that allows a u NOTE: https://gitlab.freedesktop.org/polkit/polkit/commit/2cb40c4d5feeaa09325522bd7d97910f1b59e379 NOTE: https://gitlab.freedesktop.org/polkit/polkit/commit/b534a10727455409acd54018a9c91000e7626126 CVE-2018-19787 (An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in th ...) - {DLA-1604-1} + {DLA-2467-1 DLA-1604-1} - lxml 4.2.5-1 NOTE: Fixed by: https://github.com/lxml/lxml/commit/6be1d081b49c97cfd7b3fbd934a193b668629109 (lxml-4.2.5) CVE-2018-19786 (HashiCorp Vault before 1.0.0 writes the master key to the server log i ...) View it on GitLab:
[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-15947/bitcoin
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: db4cba11 by Salvatore Bonaccorso at 2020-11-26T21:05:23+01:00 Add fixed version for CVE-2019-15947/bitcoin - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -83393,7 +83393,7 @@ CVE-2019-15949 (Nagios XI before 5.6.6 allows remote command execution as root. CVE-2019-15948 (Texas Instruments CC256x and WL18xx dual-mode Bluetooth controller dev ...) NOT-FOR-US: Texas Instruments CC256x and WL18xx dual-mode Bluetooth controller devices CVE-2019-15947 (In Bitcoin Core 0.18.0, bitcoin-qt stores wallet.dat data unencrypted ...) - - bitcoin (bug #939608) + - bitcoin 0.20.1~dfsg-1 (bug #939608) CVE-2019-15946 (OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet ...) {DLA-1916-1} - opensc 0.20.0-1 (bug #939669) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db4cba11a141ac160cd5259c7a5ad7d0f0172a4d -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db4cba11a141ac160cd5259c7a5ad7d0f0172a4d You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Reserve DLA-2467-1 for lxml
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: d90c3f91 by Abhijith PA at 2020-11-26T23:23:06+05:30 Reserve DLA-2467-1 for lxml - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: = data/DLA/list = @@ -1,3 +1,6 @@ +[26 Nov 2020] DLA-2467-1 lxml - security update + {CVE-2018-19787 CVE-2020-27783} + [stretch] - lxml 3.7.1-1+deb9u1 [26 Nov 2020] DLA-2466-1 drupal7 - security update {CVE-2020-28948 CVE-2020-28949} [stretch] - drupal7 7.52-2+deb9u13 = data/dla-needed.txt = @@ -82,8 +82,6 @@ linux (Ben Hutchings) -- linux-4.19 (Ben Hutchings) -- -lxml (Abhijith PA) --- mariadb-10.1 (Adrian Bunk) -- mumble View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d90c3f91f32ea7c24311522a92e8bed60aff7085 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d90c3f91f32ea7c24311522a92e8bed60aff7085 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Remove no-dsa tag for CVE-2018-19787
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: ac16616e by Abhijith PA at 2020-11-26T22:09:36+05:30 Remove no-dsa tag for CVE-2018-19787 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -127077,7 +127077,6 @@ CVE-2018-19788 (A flaw was found in PolicyKit (aka polkit) 0.115 that allows a u CVE-2018-19787 (An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in th ...) {DLA-1604-1} - lxml 4.2.5-1 - [stretch] - lxml (Minor issue) NOTE: Fixed by: https://github.com/lxml/lxml/commit/6be1d081b49c97cfd7b3fbd934a193b668629109 (lxml-4.2.5) CVE-2018-19786 (HashiCorp Vault before 1.0.0 writes the master key to the server log i ...) NOT-FOR-US: HashiCorp Vault View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac16616e2d8041d8807aa88c8e50c6b5484c342e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac16616e2d8041d8807aa88c8e50c6b5484c342e You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-25707 as postponed for Stretch
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: fd13fe2b by Thorsten Alteholz at 2020-11-26T15:32:37+01:00 mark CVE-2020-25707 as postponed for Stretch - - - - - d852d1d0 by Thorsten Alteholz at 2020-11-26T15:48:08+01:00 add Fixed by: for CVE-2020-25624 - - - - - d7a2bad3 by Thorsten Alteholz at 2020-11-26T16:05:35+01:00 add Fixed by: for CVE-2020-25085 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -10897,6 +10897,7 @@ CVE-2020-25707 [infinite loop in e1000e_write_packet_to_guest() in hw/net/e1000e RESERVED - qemu (bug #974687) [buster] - qemu (Fix along in future DSA) + [stretch] - qemu (Minor issue; reconsider when fixed upstream) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1893895 NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-11/msg03552.html CVE-2020-25706 (A cross-site scripting (XSS) vulnerability exists in templates_import. ...) @@ -11243,6 +11244,7 @@ CVE-2020-25624 [hcd-ohci: out-of-bound access issue while processing transfer de [buster] - qemu (Can be fixed along in next qemu DSA) [stretch] - qemu (Fix along in future DLA) NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-09/msg05492.html + NOTE: Fixed by: https://git.qemu.org/?p=qemu.git;a=commit;h=1328fe0c32d5474604105b8105310e944976b058 CVE-2020-25623 (Erlang/OTP 22.3.x before 22.3.4.6 and 23.x before 23.1 allows Director ...) - erlang 1:23.1+dfsg-1 [buster] - erlang (Vulnerable code introduced later) @@ -12453,6 +12455,7 @@ CVE-2020-25085 (QEMU 5.0.0 has a heap-based Buffer Overflow in flatview_read_con NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-09/msg00733.html NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2020-09/msg01439.html NOTE: https://www.openwall.com/lists/oss-security/2020/09/16/6 + NOTE: Fixed by: https://git.qemu.org/?p=qemu.git;a=patch;h=dfba99f17feb6d4a129da19d38df1bcd8579d1c3 CVE-2020-25084 (QEMU 5.0.0 has a use-after-free in hw/usb/hcd-xhci.c because the usb_p ...) - qemu (bug #970539) [buster] - qemu (Can be fixed along in next qemu DSA) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1e48691798d93298d2c20529d0618a74b1a1956f...d7a2bad31fae638f0a43dfd07460fdb1ba700511 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1e48691798d93298d2c20529d0618a74b1a1956f...d7a2bad31fae638f0a43dfd07460fdb1ba700511 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add lxml x11vnc to dla-needed.txt
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: 1e486917 by Abhijith PA at 2020-11-26T18:23:02+05:30 Add lxml x11vnc to dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -82,6 +82,8 @@ linux (Ben Hutchings) -- linux-4.19 (Ben Hutchings) -- +lxml (Abhijith PA) +-- mariadb-10.1 (Adrian Bunk) -- mumble @@ -183,6 +185,8 @@ wireshark (Adrian Bunk) NOTE: 20201108: buster point release followed by another backport (bunk) NOTE: 20201123: NMU for unstable prepared as first step (bunk) -- +x11vnc +-- xcftools NOTE: 20200111: wrote a patch + reproducer for CVE-2019-5086, waiting for upstream review (hle) NOTE: 20200414: Flurry of activity on/around 20200401 essentially rejecting original patch View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e48691798d93298d2c20529d0618a74b1a1956f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e48691798d93298d2c20529d0618a74b1a1956f You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] mark CVE-2020-26237as postponed
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: d37a5e0f by Abhijith PA at 2020-11-26T18:12:40+05:30 mark CVE-2020-26237as postponed - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -9666,6 +9666,7 @@ CVE-2020-26238 (Cron-utils is a Java library to parse, validate, migrate crons a NOT-FOR-US: cron-utils Java library CVE-2020-26237 (Highlight.js is a syntax highlighter written in JavaScript. Highlight. ...) - highlight.js + [stretch] - highlight.js (Minor issue, workarounds available) NOTE: https://github.com/highlightjs/highlight.js/security/advisories/GHSA-vfrc-7r7c-w9mx NOTE: https://github.com/highlightjs/highlight.js/pull/2636 NOTE: https://github.com/highlightjs/highlight.js/commit/7241013ae011a585983e176ddc0489a7a52f6bb0 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d37a5e0f4dffb868c62257ea44afb0d6da9b201c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d37a5e0f4dffb868c62257ea44afb0d6da9b201c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new ceph issue
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: f864c549 by Moritz Muehlenhoff at 2020-11-26T12:50:04+01:00 new ceph issue NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -10990,8 +10990,11 @@ CVE-2020-25679 RESERVED CVE-2020-25678 RESERVED + - ceph + NOTE: https://tracker.ceph.com/issues/37503 CVE-2020-25677 RESERVED + NOT-FOR-US: ceph Ansible module CVE-2020-25676 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f864c549d6dc61a117512ef6f44f298e563c7fa8 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f864c549d6dc61a117512ef6f44f298e563c7fa8 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] imagemagic: stretch triage
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker Commits: 38572742 by Sylvain Beucler at 2020-11-26T11:47:23+01:00 imagemagic: stretch triage CVE-2020-25666 CVE-2020-25675 CVE-2020-27754 CVE-2020-27757 CVE-2020-27758 CVE-2020-27759 CVE-2020-27761 CVE-2020-27762 CVE-2020-27764 CVE-2020-27767 CVE-2020-27768 CVE-2020-27769 CVE-2020-27771 CVE-2020-27772 CVE-2020-27775 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -5761,6 +5761,7 @@ CVE-2020-27775 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick (Minor issue) + [stretch] - imagemagick (Minor issue, UBSAN outside range) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1737 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/a2166bfb1049bac4c0f7b8b5d3ef86a1f48470b2 NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/78d9987ae80a95865c9f139afde0dcf3fd832ddc @@ -5782,6 +5783,7 @@ CVE-2020-27772 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick (Minor issue) + [stretch] - imagemagick (Minor issue, UBSAN outside range) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1749 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/a1142af44f61c038ad3eccc099c5b9548b507846 NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/7f819ef8855608d9cb1ded5e4f30cdfff1da7c11 @@ -5789,6 +5791,7 @@ CVE-2020-27771 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick (Minor issue) + [stretch] - imagemagick (Minor issue, UBSAN outside range) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1753 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/872ffe6d0131beec8b47568a4874ffaca91a872e NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/9dd1c7e1f8f6c137bfd3293be2554f59456c7b62 @@ -5804,6 +5807,7 @@ CVE-2020-27769 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick (Minor issue) + [stretch] - imagemagick (Minor issue, UBSAN outside range) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1740 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/7b058696133c6d36e0b48a454e357482db71982e NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/7661113a654c9c822c23a8fb8aa1b021fc7fbe9d @@ -5811,6 +5815,7 @@ CVE-2020-27768 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick (Minor issue) + [stretch] - imagemagick (Minor issue, UBSAN outside range) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1751 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/95d4e94e0353e503b71a53f5e6fad173c7c70c90 NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/8c6e86f81968fab1710317d87b00c608108e6a2a @@ -5818,6 +5823,7 @@ CVE-2020-27767 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick (Minor issue) + [stretch] - imagemagick (Minor issue, UBSAN outside range) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1741 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/564f2a35e523e2b6cce9485018157f03ec05a947 NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/c2f66e7fc9189a652f77a021bd047c4146d634d1 @@ -5836,6 +5842,7 @@ CVE-2020-27764 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick (Minor issue) + [stretch] - imagemagick (Minor issue, UBSAN outside range) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1735 NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/3e21bc8a58b4ae38d24c7e283837cc279f35b6a5 CVE-2020-27763 @@ -5849,6 +5856,7 @@ CVE-2020-27762 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick (Minor issue) + [stretch] - imagemagick (Minor issue, UBSAN outside range) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1713 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/7db3fa20893d557259da6e99e111954de83d2495 NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/3e10f7c3c9f0394dfd6ebd372bc34a172dabc8ff @@ -5856,6 +5864,7 @@ CVE-2020-27761 RESERVED - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick (Minor issue) + [stretch] - imagemagick (Minor issue, UBSAN outside range) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1726 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/db5e12e24f1378ce8c93a5c35991dcdd23a67bb0
[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8736c8fc by Salvatore Bonaccorso at 2020-11-26T09:39:26+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -7402,15 +7402,15 @@ CVE-2020-27257 CVE-2020-27256 RESERVED CVE-2020-27255 (A heap overflow vulnerability exists within FactoryTalk Linx Version 6 ...) - TODO: check + NOT-FOR-US: FactoryTalk CVE-2020-27254 RESERVED CVE-2020-27253 (A flaw exists in the Ingress/Egress checks routine of FactoryTalk Linx ...) - TODO: check + NOT-FOR-US: FactoryTalk CVE-2020-27252 RESERVED CVE-2020-27251 (A heap overflow vulnerability exists within FactoryTalk Linx Version 6 ...) - TODO: check + NOT-FOR-US: FactoryTalk CVE-2020-27250 RESERVED CVE-2020-27249 @@ -36086,9 +36086,9 @@ CVE-2020-14193 CVE-2020-14192 RESERVED CVE-2020-14191 (Affected versions of Atlassian Fisheye/Crucible allow remote attackers ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2020-14190 (Affected versions of Atlassian Fisheye/Crucible allow remote attackers ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2020-14189 (The execute function in in the Atlassian gajira-comment GitHub Action ...) NOT-FOR-US: Atlassian CVE-2020-14188 (The preprocessArgs function in the Atlassian gajira-create GitHub Acti ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8736c8fce31712a545d41fa09a56dcb5218f9383 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8736c8fce31712a545d41fa09a56dcb5218f9383 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f9405438 by security tracker role at 2020-11-26T08:10:19+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,4 +1,112 @@ -CVE-2020-29074 [creates shared memory segments world-writable] +CVE-2020-29128 (petl before 1.68, in some configurations, allows resolution of entitie ...) + TODO: check +CVE-2020-29127 + RESERVED +CVE-2020-29126 + RESERVED +CVE-2020-29125 + RESERVED +CVE-2020-29124 + RESERVED +CVE-2020-29123 + RESERVED +CVE-2020-29122 + RESERVED +CVE-2020-29121 + RESERVED +CVE-2020-29120 + RESERVED +CVE-2020-29119 + RESERVED +CVE-2020-29118 + RESERVED +CVE-2020-29117 + RESERVED +CVE-2020-29116 + RESERVED +CVE-2020-29115 + RESERVED +CVE-2020-29114 + RESERVED +CVE-2020-29113 + RESERVED +CVE-2020-29112 + RESERVED +CVE-2020-29111 + RESERVED +CVE-2020-29110 + RESERVED +CVE-2020-29109 + RESERVED +CVE-2020-29108 + RESERVED +CVE-2020-29107 + RESERVED +CVE-2020-29106 + RESERVED +CVE-2020-29105 + RESERVED +CVE-2020-29104 + RESERVED +CVE-2020-29103 + RESERVED +CVE-2020-29102 + RESERVED +CVE-2020-29101 + RESERVED +CVE-2020-29100 + RESERVED +CVE-2020-29099 + RESERVED +CVE-2020-29098 + RESERVED +CVE-2020-29097 + RESERVED +CVE-2020-29096 + RESERVED +CVE-2020-29095 + RESERVED +CVE-2020-29094 + RESERVED +CVE-2020-29093 + RESERVED +CVE-2020-29092 + RESERVED +CVE-2020-29091 + RESERVED +CVE-2020-29090 + RESERVED +CVE-2020-29089 + RESERVED +CVE-2020-29088 + RESERVED +CVE-2020-29087 + RESERVED +CVE-2020-29086 + RESERVED +CVE-2020-29085 + RESERVED +CVE-2020-29084 + RESERVED +CVE-2020-29083 + RESERVED +CVE-2020-29082 + RESERVED +CVE-2020-29081 + RESERVED +CVE-2020-29080 + RESERVED +CVE-2020-29079 + RESERVED +CVE-2020-29078 + RESERVED +CVE-2020-29077 + RESERVED +CVE-2020-29076 + RESERVED +CVE-2020-29075 + RESERVED +CVE-2020-29074 (scan.c in x11vnc 0.9.16 uses IPC_CREAT|0777 in shmget calls, which all ...) - x11vnc (bug #975875) NOTE: https://github.com/LibVNC/x11vnc/commit/69eeb9f7baa14ca03b16c9de821f9876def7a36a CVE-2020-29073 @@ -269,14 +377,14 @@ CVE-2020-28951 (libuci in OpenWrt before 18.06.9 and 19.x before 19.07.5 may enc CVE-2020-28950 RESERVED CVE-2020-28949 (Archive_Tar through 1.4.10 has :// filename sanitization only to addre ...) - {DLA-2465-1} + {DLA-2466-1 DLA-2465-1} - drupal7 - php-pear NOTE: https://github.com/pear/Archive_Tar/issues/33 NOTE: https://github.com/pear/Archive_Tar/commit/0670a05fdab997036a3fc3ef113b8f5922e574da NOTE: https://www.drupal.org/sa-core-2020-013 CVE-2020-28948 (Archive_Tar through 1.4.10 allows an unserialization attack because ph ...) - {DLA-2465-1} + {DLA-2466-1 DLA-2465-1} - drupal7 - php-pear NOTE: https://github.com/pear/Archive_Tar/issues/33 @@ -7293,16 +7401,16 @@ CVE-2020-27257 RESERVED CVE-2020-27256 RESERVED -CVE-2020-27255 - RESERVED +CVE-2020-27255 (A heap overflow vulnerability exists within FactoryTalk Linx Version 6 ...) + TODO: check CVE-2020-27254 RESERVED -CVE-2020-27253 - RESERVED +CVE-2020-27253 (A flaw exists in the Ingress/Egress checks routine of FactoryTalk Linx ...) + TODO: check CVE-2020-27252 RESERVED -CVE-2020-27251 - RESERVED +CVE-2020-27251 (A heap overflow vulnerability exists within FactoryTalk Linx Version 6 ...) + TODO: check CVE-2020-27250 RESERVED CVE-2020-27249 @@ -10993,20 +11101,17 @@ CVE-2020-25654 (An ACL bypass flaw was found in pacemaker before 1.1.24-rc1 and - pacemaker 2.0.5~rc2-1 (bug #973254) NOTE: https://www.openwall.com/lists/oss-security/2020/10/27/1 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1888191 -CVE-2020-25653 [UNIX Doman Socket Peer PID Retrieved via SO_PEERCRED is Subject to Race Condition] - RESERVED +CVE-2020-25653 (A race condition vulnerability was found in the way the spice-vdagentd ...) - spice-vdagent (bug #973769) NOTE: https://www.openwall.com/lists/oss-security/2020/11/04/1 NOTE: https://gitlab.freedesktop.org/spice/linux/vd_agent/-/commit/51c415df82a52e9ec033225783c77df95f387891 NOTE: https://gitlab.freedesktop.org/spice/linux/vd_agent/-/commit/5c50131797e985d0a5654c1fd7000ae945ed29a7 -CVE-2020-25652 [Possibility to Exhaust File Descriptors in vdagentd] - RESERVED +CVE-2020-25652 (A flaw was found in the spice-vdagentd daemon, where it did not proper ...) - spice-vdagent