Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d454ebc6 by Salvatore Bonaccorso at 2020-06-27T17:43:39+02:00
Process several NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13208,7 +13208,7 @@ CVE-2020-10630 (SAE IT-systems FW-50 Remote Telemetry
Unit (RTU). The software d
CVE-2020-10629 (WebAccess/NMS (versions prior to 3.0.2) does not sanitize XML
input. S ...)
NOT-FOR-US: WebAccess/NMS
CVE-2020-10628 (ControlEdge PLC (R130.2, R140, R150, and R151) and RTU (R101,
R110, R1 ...)
- TODO: check
+ NOT-FOR-US: ControlEdge PLC
CVE-2020-10627
RESERVED
CVE-2020-10626 (In Fazecast jSerialComm, Version 2.2.2 and prior, an
uncontrolled sear ...)
@@ -13216,7 +13216,7 @@ CVE-2020-10626 (In Fazecast jSerialComm, Version 2.2.2
and prior, an uncontrolle
CVE-2020-10625 (WebAccess/NMS (versions prior to 3.0.2) allows an
unauthenticated remo ...)
NOT-FOR-US: WebAccess/NMS
CVE-2020-10624 (ControlEdge PLC (R130.2, R140, R150, and R151) and RTU (R101,
R110, R1 ...)
- TODO: check
+ NOT-FOR-US: ControlEdge PLC
CVE-2020-10623 (Multiple vulnerabilities could allow an attacker with low
privileges t ...)
NOT-FOR-US: WebAccess/NMS
CVE-2020-10622 (LCDS LAquis SCADA Versions 4.3.1 and prior. The affected
product is vu ...)
@@ -15401,39 +15401,39 @@ CVE-2020-9634 (Adobe Framemaker versions 2019.0.5 and
below have an out-of-bound
CVE-2020-9633 (Adobe Flash Player versions 32.0.0.371 and earlier, 32.0.0.371
and ear ...)
NOT-FOR-US: Adobe
CVE-2020-9632 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9631 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9630 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9629 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9628 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9627 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9626 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9625 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9624 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9623 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9622 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9621 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9620 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9619
RESERVED
CVE-2020-9618 (Adobe Audition versions 13.0.5 and earlier have an
out-of-bounds read ...)
NOT-FOR-US: Adobe
CVE-2020-9617 (Adobe Premiere Rush versions 1.5.8 and earlier have an
out-of-bounds r ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9616 (Adobe Premiere Pro versions 14.1 and earlier have an
out-of-bounds rea ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9615 (Adobe Acrobat and Reader versions 2020.006.20042 and earlier,
2017.011 ...)
NOT-FOR-US: Adobe
CVE-2020-9614 (Adobe Acrobat and Reader versions 2020.006.20042 and earlier,
2017.011 ...)
@@ -15483,83 +15483,83 @@ CVE-2020-9593 (Adobe Acrobat and Reader versions
2020.006.20042 and earlier, 201
CVE-2020-9592 (Adobe Acrobat and Reader versions 2020.006.20042 and earlier,
2017.011 ...)
NOT-FOR-US: Adobe
CVE-2020-9591 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9590 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9589 (Adobe DNG Software Development Kit (SDK) 1.5 and earlier
versions have ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9588 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9587 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9586 (Adobe Character Animator versions 3.2 and earlier have a buffer
overfl ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9585 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9584 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9583 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9582 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9581 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9580 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9579 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9578 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9577 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9576 (Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see
note), 1.1 ...)
- TODO: check
+ NOT-FOR-US: Magento
CVE-2020-9575 (Adobe Illustrator versions 24.1.2 and earlier have a memory
corruption ...)
NOT-FOR-US: Adobe
CVE-2020-9574 (Adobe Illustrator versions 24.0.2 and earlier have a memory
corruption ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9573 (Adobe Illustrator versions 24.0.2 and earlier have a memory
corruption ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9572 (Adobe Illustrator versions 24.0.2 and earlier have a memory
corruption ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9571 (Adobe Illustrator versions 24.0.2 and earlier have a memory
corruption ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9570 (Adobe Illustrator versions 24.0.2 and earlier have a memory
corruption ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9569 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9568 (Adobe Bridge versions 10.0.1 and earlier version have a memory
corrupt ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9567 (Adobe Bridge versions 10.0.1 and earlier version have an use
after fre ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9566 (Adobe Bridge versions 10.0.1 and earlier version have an use
after fre ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9565 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9564 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9563 (Adobe Bridge versions 10.0.1 and earlier version have a heap
overflow ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9562 (Adobe Bridge versions 10.0.1 and earlier version have a heap
overflow ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9561 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9560 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9559 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9558 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9557 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9556 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9555 (Adobe Bridge versions 10.0.1 and earlier version have a
stack-based bu ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9554 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9553 (Adobe Bridge versions 10.0.1 and earlier version have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-9552 (Adobe Bridge versions 10.0 have a heap-based buffer overflow
vulnerabi ...)
NOT-FOR-US: Adobe
CVE-2020-9551 (Adobe Bridge versions 10.0 have an out-of-bounds write
vulnerability. ...)
@@ -30182,7 +30182,7 @@ CVE-2020-3810 (Missing input validation in the ar/tar
implementations of APT bef
NOTE: https://bugs.launchpad.net/bugs/1878177
NOTE:
https://salsa.debian.org/apt-team/apt/-/commit/dceb1e49e4b8e4dadaf056be34088b415939cda6
CVE-2020-3809 (Adobe After Effects versions 17.0.1 and earlier have an
out-of-bounds ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-3808 (Creative Cloud Desktop Application versions 5.0 and earlier
have a tim ...)
NOT-FOR-US: Adobe
CVE-2020-3807 (Adobe Acrobat and Reader versions 2020.006.20034 and earlier,
2017.011 ...)
@@ -30204,11 +30204,11 @@ CVE-2020-3800 (Adobe Acrobat and Reader versions
2020.006.20034 and earlier, 201
CVE-2020-3799 (Adobe Acrobat and Reader versions 2020.006.20034 and earlier,
2017.011 ...)
NOT-FOR-US: Adobe
CVE-2020-3798 (Adobe Digital Editions versions 4.5.11.187212 and below have a
file en ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2020-3797 (Adobe Acrobat and Reader versions 2020.006.20034 and earlier,
2017.011 ...)
NOT-FOR-US: Adobe
CVE-2020-3796 (ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have
an impro ...)
- TODO: check
+ NOT-FOR-US: ColdFusion
CVE-2020-3795 (Adobe Acrobat and Reader versions 2020.006.20034 and earlier,
2017.011 ...)
NOT-FOR-US: Adobe
CVE-2020-3794 (ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a
file i ...)
@@ -30264,9 +30264,9 @@ CVE-2020-3770 (Adobe Photoshop CC 2019 versions 20.0.8
and earlier, and Photosho
CVE-2020-3769 (Adobe Experience Manager versions 6.5 and earlier have a
server-side r ...)
NOT-FOR-US: Adobe
CVE-2020-3768 (ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a
dll se ...)
- TODO: check
+ NOT-FOR-US: ColdFusion
CVE-2020-3767 (ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have
an insuf ...)
- TODO: check
+ NOT-FOR-US: ColdFusion
CVE-2020-3766 (Adobe Genuine Integrity Service versions Version 6.4 and
earlier have ...)
NOT-FOR-US: Adobe
CVE-2020-3765 (Adobe After Effects versions 16.1.2 and earlier have an
out-of-bounds ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d454ebc6f7423250e0397b81a0b5d2cd93dd0230
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d454ebc6f7423250e0397b81a0b5d2cd93dd0230
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
