Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b88f136b by Moritz Muehlenhoff at 2020-07-17T19:55:40+02:00
openjdk-14 fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2619,7 +2619,7 @@ CVE-2020-14623 (Vulnerability in the MySQL Server product
of Oracle MySQL (compo
CVE-2020-14622 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
NOT-FOR-US: Oracle
CVE-2020-14621 (Vulnerability in the Java SE, Java SE Embedded product of
Oracle Java ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
CVE-2020-14620 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
@@ -2677,7 +2677,7 @@ CVE-2020-14595 (Vulnerability in the Oracle iLearning
product of Oracle iLearnin
CVE-2020-14594 (Vulnerability in the Oracle Hospitality Reporting and
Analytics produc ...)
NOT-FOR-US: Oracle
CVE-2020-14593 (Vulnerability in the Java SE, Java SE Embedded product of
Oracle Java ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
CVE-2020-14592 (Vulnerability in the PeopleSoft Enterprise PeopleTools product
of Orac ...)
@@ -2699,27 +2699,27 @@ CVE-2020-14585 (Vulnerability in the Oracle BI
Publisher product of Oracle Fusio
CVE-2020-14584 (Vulnerability in the Oracle BI Publisher product of Oracle
Fusion Midd ...)
NOT-FOR-US: Oracle
CVE-2020-14583 (Vulnerability in the Java SE, Java SE Embedded product of
Oracle Java ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
CVE-2020-14582 (Vulnerability in the Oracle iStore product of Oracle
E-Business Suite ...)
NOT-FOR-US: Oracle
CVE-2020-14581 (Vulnerability in the Java SE, Java SE Embedded product of
Oracle Java ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
CVE-2020-14580 (Vulnerability in the Oracle Communications Session Border
Controller p ...)
NOT-FOR-US: Oracle
CVE-2020-14579 (Vulnerability in the Java SE, Java SE Embedded product of
Oracle Java ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
CVE-2020-14578 (Vulnerability in the Java SE, Java SE Embedded product of
Oracle Java ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
CVE-2020-14577 (Vulnerability in the Java SE, Java SE Embedded product of
Oracle Java ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
CVE-2020-14576 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
@@ -2730,7 +2730,7 @@ CVE-2020-14575 (Vulnerability in the MySQL Server product
of Oracle MySQL (compo
CVE-2020-14574 (Vulnerability in the Oracle Communications Interactive Session
Recorde ...)
NOT-FOR-US: Oracle
CVE-2020-14573 (Vulnerability in the Java SE product of Oracle Java SE
(component: Hot ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
CVE-2020-14572 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
NOT-FOR-US: Oracle
@@ -2754,7 +2754,7 @@ CVE-2020-14564 (Vulnerability in the PeopleSoft
Enterprise PeopleTools product o
CVE-2020-14563 (Vulnerability in the Oracle Enterprise Communications Broker
product o ...)
NOT-FOR-US: Oracle
CVE-2020-14562 (Vulnerability in the Java SE product of Oracle Java SE
(component: Ima ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
CVE-2020-14561 (Vulnerability in the Oracle Hospitality Reporting and
Analytics produc ...)
NOT-FOR-US: Oracle
@@ -2768,7 +2768,7 @@ CVE-2020-14558 (Vulnerability in the PeopleSoft
Enterprise PeopleTools product o
CVE-2020-14557 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
NOT-FOR-US: Oracle
CVE-2020-14556 (Vulnerability in the Java SE, Java SE Embedded product of
Oracle Java ...)
- - openjdk-14 <unfixed>
+ - openjdk-14 14.0.2+12-1
- openjdk-11 <unfixed>
- openjdk-8 <unfixed>
CVE-2020-14555 (Vulnerability in the Oracle Marketing product of Oracle
E-Business Sui ...)
@@ -6284,7 +6284,7 @@ CVE-2020-13254 (An issue was discovered in Django 2.2
before 2.2.13 and 3.0 befo
NOTE:
https://github.com/django/django/commit/07e59caa02831c4569bbebb9eb773bdd9cb4b206
(2.2 branch)
NOTE: Regression https://code.djangoproject.com/ticket/31654
CVE-2020-13253 (sd_wp_addr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated
address, wh ...)
- - qemu 1:5.0-6 (bug #961297)
+ - qemu 1:5.0-8 (bug #961297)
[buster] - qemu <postponed> (Minor issue, can be fixed along in next
DSA)
[stretch] - qemu <postponed> (Minor issue, can be fixed along in next
DSA)
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2020-05/msg05835.html
@@ -69582,7 +69582,7 @@ CVE-2019-9947 (An issue was discovered in urllib2 in
Python 2.x through 2.7.16 a
NOTE: CVE-2019-9947 issue fixed with same fix as for CVE-2019-9740
NOTE: Patch 2.7:
https://github.com/python/cpython/commit/bb8071a4cae5ab3fe321481dd3d73662ffb26052
CVE-2019-9946 (Cloud Native Computing Foundation (CNCF) CNI (Container
Networking Int ...)
- - kubernetes <undetermined>
+ - kubernetes 1.17.4-1
- golang-github-containernetworking-plugins <undetermined>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1692712
TODO: singularity-container seems to embed as well a copy of cni
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b88f136bc51495e44f0941e89f38e759b120bb7d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b88f136bc51495e44f0941e89f38e759b120bb7d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
