Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8bf82d38 by Salvatore Bonaccorso at 2020-05-25T13:12:42+02:00
Mark mariadb-10.1 as removed
- - - - -
828847fb by Salvatore Bonaccorso at 2020-05-25T13:47:10+02:00
Add CVE-2020-1343{4,5}/sqlite3
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9,9 +9,12 @@ CVE-2020-13437
CVE-2020-13436
RESERVED
CVE-2020-13435 (SQLite through 3.32.0 has a segmentation fault in
sqlite3ExprCodeTarge ...)
- TODO: check
+ - sqlite3 <unfixed>
+ NOTE: https://www.sqlite.org/src/info/7a5279a25c57adf1
CVE-2020-13434 (SQLite through 3.32.0 has an integer overflow in
sqlite3_str_vappendf ...)
- TODO: check
+ - sqlite3 <unfixed>
+ NOTE: https://www.sqlite.org/src/info/23439ea582241138
+ NOTE: https://www.sqlite.org/src/info/d08d3405878d394e
CVE-2020-13433 (Jason2605 AdminPanel 4.0 allows SQL Injection via the
editPlayer.php h ...)
NOT-FOR-US: Jason2605 AdminPanel
CVE-2020-13432
@@ -403,7 +406,7 @@ CVE-2020-13250
RESERVED
CVE-2020-13249 (libmariadb/mariadb_lib.c in MariaDB Connector/C before 3.1.8
does not ...)
- mariadb-10.3 <unfixed>
- - mariadb-10.1 <unfixed>
+ - mariadb-10.1 <removed>
NOTE:
https://github.com/mariadb-corporation/mariadb-connector-c/commit/2759b87d72926b7c9b5426437a7c8dd15ff57945
CVE-2020-13248
RESERVED
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/09b0a078c5fb98e4d9123bb3be1a4d37eda347db...828847fbb507d39393a4d8cbf5de5fc6b508a0fc
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/09b0a078c5fb98e4d9123bb3be1a4d37eda347db...828847fbb507d39393a4d8cbf5de5fc6b508a0fc
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
