[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Thu, 10 Dec 2020 12:10:54 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
84cf3720 by security tracker role at 2020-12-10T20:10:27+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2020-29670
+       RESERVED
+CVE-2020-29669
+       RESERVED
+CVE-2020-29668 (Sympa before 6.2.59b.2 allows remote attackers to obtain full 
SOAP API ...)
+       TODO: check
 CVE-2021-2485
        RESERVED
 CVE-2021-2484
@@ -998,10 +1004,10 @@ CVE-2021-1987
        RESERVED
 CVE-2021-1986
        RESERVED
-CVE-2020-29667
-       RESERVED
-CVE-2020-29666
-       RESERVED
+CVE-2020-29667 (In Lan ATMService M3 ATM Monitoring System 6.1.0, a remote 
attacker ab ...)
+       TODO: check
+CVE-2020-29666 (In Lan ATMService M3 ATM Monitoring System 6.1.0, due to a 
directory-l ...)
+       TODO: check
 CVE-2020-29665
        RESERVED
 CVE-2020-29664
@@ -54190,10 +54196,10 @@ CVE-2020-8922
        RESERVED
 CVE-2020-8921
        RESERVED
-CVE-2020-8920
-       RESERVED
-CVE-2020-8919
-       RESERVED
+CVE-2020-8920 (An information leak vulnerability exists in Gerrit versions 
prior to 2 ...)
+       TODO: check
+CVE-2020-8919 (An information leak vulnerability exists in Gerrit versions 
prior to 2 ...)
+       TODO: check
 CVE-2020-8918 (An improperly initialized 'migrationAuth' value in Google's 
go-tpm TPM ...)
        NOT-FOR-US: go-tpm TPM1.2 library
 CVE-2020-8917
@@ -97393,7 +97399,7 @@ CVE-2019-12906
        RESERVED
 CVE-2019-12905 (FileRun 2019.05.21 allows XSS via the filename to the 
?module=fileman& ...)
        NOT-FOR-US: FileRun
-CVE-2019-12904 (In Libgcrypt 1.8.4, the C implementation of AES is vulnerable 
to a flu ...)
+CVE-2019-12904 (** DISPUTED ** In Libgcrypt 1.8.4, the C implementation of AES 
is vuln ...)
        NOTE: Issue disputed by libgcrypt upstream, see 
https://dev.gnupg.org/T4541
 CVE-2019-12903 (Pydio Cells before 1.5.0, when supplied with a Name field in 
an unexpe ...)
        NOT-FOR-US: Pydio Cells (relates to Pydio product)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/84cf37208cac5c6325b02d69b5291398bf82ac00

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/84cf37208cac5c6325b02d69b5291398bf82ac00
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to