Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f4a0f3d0 by Salvatore Bonaccorso at 2020-02-25T17:19:04+01:00
Process two NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -58,7 +58,7 @@ CVE-2019-20481 (In MIELE XGW 3000 ZigBee Gateway before
2.4.0, the Password Chan
CVE-2019-20480 (In MIELE XGW 3000 ZigBee Gateway before 2.4.0, a malicious
website vis ...)
NOT-FOR-US: MIELE XGW 3000 ZigBee Gateway
CVE-2016-11020 (Kunena before 5.0.4 does not restrict avatar file extensions
to gif, j ...)
- TODO: check
+ NOT-FOR-US: Kunena
CVE-2020-9366 (A buffer overflow was found in the way GNU Screen before 4.8.0
treated ...)
- screen 4.8.0-1 (bug #950896)
[buster] - screen <not-affected> (Vulnerable code introduced in v4.7.0)
@@ -9212,7 +9212,7 @@ CVE-2020-5246
CVE-2020-5245 (Dropwizard-Validation before 1.3.19, and 2.0.2 may allow
arbitrary cod ...)
TODO: check
CVE-2020-5244 (In BuddyPress before 5.1.2, requests to a certain REST API
endpoint ca ...)
- TODO: check
+ NOT-FOR-US: BuddyPress
CVE-2020-5243 (uap-core before 0.7.3 is vulnerable to a denial of service
attack when ...)
TODO: check
CVE-2020-5242 (openHAB before 2.5.2 allow a remote attacker to use REST calls
to inst ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4a0f3d0fb8d5963829b809b77c2bacee11839bf
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4a0f3d0fb8d5963829b809b77c2bacee11839bf
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
