Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 6a0bc978 by Salvatore Bonaccorso at 2020-05-18T21:11:32+02:00 Add three new dovecot issues - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -6260,6 +6260,8 @@ CVE-2020-10968 (FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the in NOTE: but still an issue when Default Typing is enabled. CVE-2020-10967 RESERVED + - dovecot <unfixed> + NOTE: https://www.openwall.com/lists/oss-security/2020/05/18/1 CVE-2020-XXXX [RUSTSEC-2020-0006: bumpalo: Flaw in `realloc` allows reading unknown memory] - rust-bumpalo 3.2.1-1 (bug #955151) NOTE: https://rustsec.org/advisories/RUSTSEC-2020-0006.html @@ -6289,8 +6291,12 @@ CVE-2020-10959 [mediawiki: User content can redirect the logout button to differ NOTE: https://lists.wikimedia.org/pipermail/wikitech-l/2020-March/093243.html CVE-2020-10958 RESERVED + - dovecot <unfixed> + NOTE: https://www.openwall.com/lists/oss-security/2020/05/18/1 CVE-2020-10957 RESERVED + - dovecot <unfixed> + NOTE: https://www.openwall.com/lists/oss-security/2020/05/18/1 CVE-2020-10956 (GitLab 8.10 and later through 12.9 is vulnerable to an SSRF in a proje ...) [experimental] - gitlab 12.8.8-1 - gitlab <unfixed> View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a0bc97833e65083baac6a816a3af6510d0b15d4 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a0bc97833e65083baac6a816a3af6510d0b15d4 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits