Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
35c04080 by Salvatore Bonaccorso at 2020-03-26T22:16:40+01:00
Add Debian bug reference for CVE-2020-8866/php-horde-form
- - - - -
e2daded6 by Salvatore Bonaccorso at 2020-03-26T22:17:15+01:00
Add Debian bug reference for CVE-2020-8865/php-horde-trean
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4954,12 +4954,12 @@ CVE-2020-8868 (This vulnerability allows remote
attackers to execute arbitrary c
CVE-2020-8867
RESERVED
CVE-2020-8866 (This vulnerability allows remote attackers to create arbitrary
files o ...)
- - php-horde-form <unfixed>
+ - php-horde-form <unfixed> (bug #955020)
NOTE: https://lists.horde.org/archives/announce/2020/001288.html
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-20-275/
NOTE:
https://github.com/horde/Form/commit/813f8e7e9479fad4546b89c569325ee9eef60b0f
CVE-2020-8865 (This vulnerability allows remote attackers to execute local PHP
files ...)
- - php-horde-trean <unfixed>
+ - php-horde-trean <unfixed> (bug #955019)
[buster] - php-horde-trean <no-dsa> (Minor issue)
[stretch] - php-horde-trean <no-dsa> (Minor issue)
NOTE: https://lists.horde.org/archives/announce/2020/001286.html
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a9e8f6361e3c48f6f26c9b093af7c3ff05db4d0a...e2daded6312725266739137705ad6a2675c15a61
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a9e8f6361e3c48f6f26c9b093af7c3ff05db4d0a...e2daded6312725266739137705ad6a2675c15a61
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
