[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Tue, 16 Jun 2020 01:11:16 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
b7bc1851 by security tracker role at 2020-06-16T08:10:20+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,5 @@
+CVE-2020-14163 (An issue was discovered in 
ecma/operations/ecma-container-object.c in  ...)
+       TODO: check
 CVE-2020-14162
        RESERVED
 CVE-2020-14161
@@ -1292,7 +1294,7 @@ CVE-2020-13648
        RESERVED
 CVE-2020-13647
        RESERVED
-CVE-2020-13646 (In the cheetah free wifi 5.1 driver file liebaonat.sys, local 
users ar ...)
+CVE-2020-13646 (In Cheetah free WiFi 5.1, the driver file (liebaonat.sys) 
allows local ...)
        NOT-FOR-US: cheetah free wifi
 CVE-2020-13645 (In GNOME glib-networking through 2.64.2, the implementation of 
GTlsCli ...)
        - glib-networking <unfixed> (bug #961756)
@@ -5213,20 +5215,20 @@ CVE-2020-12007
        RESERVED
 CVE-2020-12006 (Advantech WebAccess Node, Version 8.4.4 and prior, Version 
9.0.0. Mult ...)
        NOT-FOR-US: Advantech WebAccess Node
-CVE-2020-12005
-       RESERVED
+CVE-2020-12005 (FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic 
v4.11.0 ...)
+       TODO: check
 CVE-2020-12004 (The affected product lacks proper authentication required to 
query the ...)
        NOT-FOR-US: Inductive Automation Ignition
-CVE-2020-12003
-       RESERVED
+CVE-2020-12003 (FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic 
v4.11.0 ...)
+       TODO: check
 CVE-2020-12002 (Advantech WebAccess Node, Version 8.4.4 and prior, Version 
9.0.0. Mult ...)
        NOT-FOR-US: Advantech WebAccess Node
-CVE-2020-12001
-       RESERVED
+CVE-2020-12001 (FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic 
v4.11.0 ...)
+       TODO: check
 CVE-2020-12000 (The affected product is vulnerable to the handling of 
serialized data. ...)
        NOT-FOR-US: Inductive Automation Ignition
-CVE-2020-11999
-       RESERVED
+CVE-2020-11999 (FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic 
v4.11.0 ...)
+       TODO: check
 CVE-2020-11998
        RESERVED
 CVE-2020-11997
@@ -6220,7 +6222,7 @@ CVE-2020-11846
        RESERVED
 CVE-2020-11845 (Cross Site Scripting vulnerability in Micro Focus Service 
Manager prod ...)
        NOT-FOR-US: Micro Focus
-CVE-2020-11844 (There is an Incorrect Authorization vulnerability in Micro 
Focus Servi ...)
+CVE-2020-11844 (Incorrect Authorization vulnerability in Micro Focus Container 
Deploym ...)
        NOT-FOR-US: Micro Focus
 CVE-2020-11843
        RESERVED
@@ -21730,10 +21732,10 @@ CVE-2020-5757
        RESERVED
 CVE-2020-5756
        RESERVED
-CVE-2020-5755
-       RESERVED
-CVE-2020-5754
-       RESERVED
+CVE-2020-5755 (Webroot endpoint agents prior to version v9.0.28.48 did not 
protect th ...)
+       TODO: check
+CVE-2020-5754 (Webroot endpoint agents prior to version v9.0.28.48 allows 
remote atta ...)
+       TODO: check
 CVE-2020-5753 (Signal Private Messenger Android v4.59.0 and up and iOS 
v3.8.1.5 and u ...)
        NOT-FOR-US: Signal Private Messenger (Android and iOS version)
 CVE-2020-5752 (Relative path traversal in Druva inSync Windows Client 6.6.3 
allows a  ...)
@@ -21756,8 +21758,8 @@ CVE-2020-5744 (Relative Path Traversal in TCExam 14.2.2 
allows a remote, authent
        NOT-FOR-US: TCExam
 CVE-2020-5743 (Improper Control of Resource Identifiers in TCExam 14.2.2 
allows a rem ...)
        NOT-FOR-US: TCExam
-CVE-2020-5742
-       RESERVED
+CVE-2020-5742 (Improper Access Control in Plex Media Server prior to June 15, 
2020 al ...)
+       TODO: check
 CVE-2020-5741 (Deserialization of Untrusted Data in Plex Media Server on 
Windows allo ...)
        NOT-FOR-US: Plex Media Server on Windows
 CVE-2020-5740 (Improper Input Validation in Plex Media Server on Windows 
allows a loc ...)
@@ -22609,8 +22611,8 @@ CVE-2020-5360
        RESERVED
 CVE-2020-5359
        RESERVED
-CVE-2020-5358
-       RESERVED
+CVE-2020-5358 (Dell Encryption versions prior to 10.7 and Dell Endpoint 
Security Suit ...)
+       TODO: check
 CVE-2020-5357 (Dell Dock Firmware Update Utilities for Dell Client Consumer 
and Comme ...)
        NOT-FOR-US: Dell
 CVE-2020-5356
@@ -25813,8 +25815,8 @@ CVE-2020-4053
        RESERVED
 CVE-2020-4052
        RESERVED
-CVE-2020-4051
-       RESERVED
+CVE-2020-4051 (In Dijit before versions 1.11.11, and greater than or equal to 
1.12.0  ...)
+       TODO: check
 CVE-2020-4045 (SSB-DB version 20.0.0 has an information disclosure 
vulnerability. The ...)
        NOT-FOR-US: SSB-DB
 CVE-2020-4044



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7bc18518b482d84ea8bbe23096d0a9b4a7fecc7

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7bc18518b482d84ea8bbe23096d0a9b4a7fecc7
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to