Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2706349b by security tracker role at 2020-02-03T08:10:16+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20,8 +20,8 @@ CVE-2020-8510
RESERVED
CVE-2020-8509
RESERVED
-CVE-2020-8508
- RESERVED
+CVE-2020-8508 (nsak64.sys in Norman Malware Cleaner 2.08.08 allows users to
call arbi ...)
+ TODO: check
CVE-2020-8507
RESERVED
CVE-2020-8506
@@ -3234,7 +3234,7 @@ CVE-2020-7040 (storeBackup.pl in storeBackup through 3.5
relies on the /tmp/stor
NOTE: https://www.openwall.com/lists/oss-security/2020/01/20/3
NOTE: SuSE provided patch:
https://www.openwall.com/lists/oss-security/2020/01/20/3/1
CVE-2020-7039 (tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0,
misman ...)
- {DLA-2090-1 DLA-2076-1}
+ {DSA-4616-1 DLA-2090-1 DLA-2076-1}
- libslirp 4.1.0-2 (bug #949084)
- qemu 1:4.1-2
- qemu-kvm <removed>
@@ -29282,7 +29282,7 @@ CVE-2019-15893 (Sonatype Nexus Repository Manager 2.x
before 2.14.15 allows Remo
CVE-2019-15891 (An issue was discovered in CKFinder through 2.6.2.1 and 3.x
through 3. ...)
NOT-FOR-US: CKFinder
CVE-2019-15890 (libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in
ip_reas ...)
- {DLA-1927-1}
+ {DSA-4616-1 DLA-1927-1}
- slirp4netns 0.4.1-1 (bug #939868)
[buster] - slirp4netns <no-dsa> (Minor issue)
- qemu 1:4.1-2 (bug #939869)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/2706349b007d548db217e54faab8aa60fadf5dd7
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/2706349b007d548db217e54faab8aa60fadf5dd7
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
