Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 43238193 by security tracker role at 2024-01-04T08:12:04+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,13 +1,57 @@ -CVE-2024-0225 +CVE-2024-21634 (Amazon Ion is a Java implementation of the Ion data notation. Prior to ...) + TODO: check +CVE-2024-20809 (Improper access control vulnerability in Nearby device scanning prior ...) + TODO: check +CVE-2024-20808 (Improper access control vulnerability in Nearby device scanning prior ...) + TODO: check +CVE-2024-20807 (Implicit intent hijacking vulnerability in Samsung Email prior to vers ...) + TODO: check +CVE-2024-20806 (Improper access control in Notification service prior to SMR Jan-2024 ...) + TODO: check +CVE-2024-20805 (Path traversal vulnerability in ZipCompressor of MyFiles prior to SMR ...) + TODO: check +CVE-2024-20804 (Path traversal vulnerability in FileUriConverter of MyFiles prior to S ...) + TODO: check +CVE-2024-20803 (Improper authentication vulnerability in Bluetooth pairing process pri ...) + TODO: check +CVE-2024-20802 (Improper access control vulnerability in Samsung DeX prior to SMR Jan- ...) + TODO: check +CVE-2023-6738 (The Page Builder: Pagelayer \u2013 Drag and Drop website builder plugi ...) + TODO: check +CVE-2023-6733 (The WP-Members Membership Plugin plugin for WordPress is vulnerable to ...) + TODO: check +CVE-2023-6540 (A vulnerability was reported in the Lenovo Browser Mobile and Lenovo B ...) + TODO: check +CVE-2023-6498 (The Complianz \u2013 GDPR/CCPA Cookie Consent plugin for WordPress is ...) + TODO: check +CVE-2023-6338 (Uncontrolled search path vulnerabilities were reported in the Lenovo U ...) + TODO: check +CVE-2023-5138 (Glitch detection is not enabled by default for the CortexM33 core in S ...) + TODO: check +CVE-2023-52141 + REJECTED +CVE-2023-52140 + REJECTED +CVE-2023-50630 (Cross Site Scripting (XSS) vulnerability in xiweicheng TMS v.2.28.0 al ...) + TODO: check +CVE-2023-50256 (Froxlor is open source server administration software. Prior to versio ...) + TODO: check +CVE-2023-50082 (Aoyun Technology pbootcms V3.1.2 is vulnerable to Incorrect Access Con ...) + TODO: check +CVE-2023-49442 (Deserialization of Untrusted Data in jeecgFormDemoController in JEECG ...) + TODO: check +CVE-2023-41784 (Permissions and Access Control Vulnerability in ZTE Red Magic 8 Pro) + TODO: check +CVE-2024-0225 (Use after free in WebGPU in Google Chrome prior to 120.0.6099.199 allo ...) - chromium <unfixed> [buster] - chromium <end-of-life> (see DSA 5046) -CVE-2024-0224 +CVE-2024-0224 (Use after free in WebAudio in Google Chrome prior to 120.0.6099.199 al ...) - chromium <unfixed> [buster] - chromium <end-of-life> (see DSA 5046) -CVE-2024-0223 +CVE-2024-0223 (Heap buffer overflow in ANGLE in Google Chrome prior to 120.0.6099.199 ...) - chromium <unfixed> [buster] - chromium <end-of-life> (see DSA 5046) -CVE-2024-0222 +CVE-2024-0222 (Use after free in ANGLE in Google Chrome prior to 120.0.6099.199 allow ...) - chromium <unfixed> [buster] - chromium <end-of-life> (see DSA 5046) CVE-2024-21911 (TinyMCE versions before 5.6.0 are affected by a stored cross-site scri ...) @@ -1591,7 +1635,7 @@ CVE-2023-42017 (IBM Planning Analytics Local 2.0 could allow a remote attacker t NOT-FOR-US: IBM CVE-2023-39251 (Dell BIOS contains an Improper Input Validation vulnerability. A local ...) NOT-FOR-US: Dell -CVE-2023-52322 [XSS issue fixed in 4.1.13 upstream] +CVE-2023-52322 (ecrire/public/assembler.php in SPIP before 4.1.3 and 4.2.x before 4.2. ...) - spip 4.1.13+dfsg-1 (bug #1059331) [bookworm] - spip <no-dsa> (Minor issue) [bullseye] - spip <no-dsa> (Minor issue) @@ -39369,8 +39413,8 @@ CVE-2023-29964 RESERVED CVE-2023-29963 (S-CMS v5.0 was discovered to contain an authenticated remote code exec ...) NOT-FOR-US: S-CMS -CVE-2023-29962 - RESERVED +CVE-2023-29962 (S-CMS v5.0 was discovered to contain an arbitrary file read vulnerabil ...) + TODO: check CVE-2023-29961 (D-Link DIR-605L firmware version 1.17B01 BETA is vulnerable to stack o ...) NOT-FOR-US: D-Link CVE-2023-29960 @@ -82266,7 +82310,7 @@ CVE-2022-43377 (A CWE-307: Improper Restriction of Excessive Authentication Atte CVE-2022-43376 (A CWE-79: Improper Neutralization of Input During Web Page Generation ...) NOT-FOR-US: Schneider CVE-2022-43375 - RESERVED + REJECTED CVE-2022-43374 RESERVED CVE-2022-43373 @@ -297966,7 +298010,7 @@ CVE-2020-1599 (Windows Spoofing Vulnerability) NOT-FOR-US: Microsoft CVE-2020-1598 (<p>An elevation of privilege vulnerability exists when the Windows Uni ...) NOT-FOR-US: Microsoft -CVE-2020-1597 (A denial of service vulnerability exists when ASP.NET Core improperly ...) +CVE-2020-1597 (<p>A denial of service vulnerability exists when ASP.NET Core improper ...) NOT-FOR-US: Microsoft CVE-2020-1596 (<p>A information disclosure vulnerability exists when TLS components u ...) NOT-FOR-US: Microsoft @@ -297978,7 +298022,7 @@ CVE-2020-1593 (<p>A remote code execution vulnerability exists when Windows Medi NOT-FOR-US: Microsoft CVE-2020-1592 (<p>An information disclosure vulnerability exists when the Windows ker ...) NOT-FOR-US: Microsoft -CVE-2020-1591 (A cross site scripting vulnerability exists when Microsoft Dynamics 36 ...) +CVE-2020-1591 (<p>A cross site scripting vulnerability exists when Microsoft Dynamics ...) NOT-FOR-US: Microsoft CVE-2020-1590 (<p>An elevation of privilege vulnerability exists when the Connected U ...) NOT-FOR-US: Microsoft @@ -297986,163 +298030,163 @@ CVE-2020-1589 (<p>An information disclosure vulnerability exists when the Window NOT-FOR-US: Microsoft CVE-2020-1588 RESERVED -CVE-2020-1587 (An elevation of privilege vulnerability exists when the Windows Ancill ...) +CVE-2020-1587 (<p>An elevation of privilege vulnerability exists when the Windows Anc ...) NOT-FOR-US: Microsoft CVE-2020-1586 RESERVED -CVE-2020-1585 (A remote code execution vulnerability exists in the way that Microsoft ...) +CVE-2020-1585 (<p>A remote code execution vulnerability exists in the way that Micros ...) NOT-FOR-US: Microsoft -CVE-2020-1584 (An elevation of privilege vulnerability exists in the way that the dns ...) +CVE-2020-1584 (<p>An elevation of privilege vulnerability exists in the way that the ...) NOT-FOR-US: Microsoft -CVE-2020-1583 (An information disclosure vulnerability exists when Microsoft Word imp ...) +CVE-2020-1583 (<p>An information disclosure vulnerability exists when Microsoft Word ...) NOT-FOR-US: Microsoft -CVE-2020-1582 (A remote code execution vulnerability exists in Microsoft Access softw ...) +CVE-2020-1582 (<p>A remote code execution vulnerability exists in Microsoft Access so ...) NOT-FOR-US: Microsoft -CVE-2020-1581 (An elevation of privilege vulnerability exists in the way that Microso ...) +CVE-2020-1581 (<p>An elevation of privilege vulnerability exists in the way that Micr ...) NOT-FOR-US: Microsoft -CVE-2020-1580 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...) +CVE-2020-1580 (<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft Sh ...) NOT-FOR-US: Microsoft -CVE-2020-1579 (An elevation of privilege vulnerability exists when the Windows Functi ...) +CVE-2020-1579 (<p>An elevation of privilege vulnerability exists when the Windows Fun ...) NOT-FOR-US: Microsoft -CVE-2020-1578 (An information disclosure vulnerability exists in the Windows kernel t ...) +CVE-2020-1578 (<p>An information disclosure vulnerability exists in the Windows kerne ...) NOT-FOR-US: Microsoft -CVE-2020-1577 (An information disclosure vulnerability exists when DirectWrite improp ...) +CVE-2020-1577 (<p>An information disclosure vulnerability exists when DirectWrite imp ...) NOT-FOR-US: Microsoft CVE-2020-1576 (<p>A remote code execution vulnerability exists in Microsoft SharePoin ...) NOT-FOR-US: Microsoft CVE-2020-1575 (<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft Sh ...) NOT-FOR-US: Microsoft -CVE-2020-1574 (A remote code execution vulnerability exists in the way that Microsoft ...) +CVE-2020-1574 (<p>A remote code execution vulnerability exists in the way that Micros ...) NOT-FOR-US: Microsoft -CVE-2020-1573 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...) +CVE-2020-1573 (<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft Sh ...) NOT-FOR-US: Microsoft CVE-2020-1572 RESERVED -CVE-2020-1571 (An elevation of privilege vulnerability exists in Windows Setup in the ...) +CVE-2020-1571 (<p>An elevation of privilege vulnerability exists in Windows Setup in ...) NOT-FOR-US: Microsoft -CVE-2020-1570 (A remote code execution vulnerability exists in the way that the scrip ...) +CVE-2020-1570 (<p>A remote code execution vulnerability exists in the way that the sc ...) NOT-FOR-US: Microsoft -CVE-2020-1569 (A remote code execution vulnerability exists when Microsoft Edge impro ...) +CVE-2020-1569 (<p>A remote code execution vulnerability exists when Microsoft Edge im ...) NOT-FOR-US: Microsoft -CVE-2020-1568 (A remote code execution vulnerability exists when Microsoft Edge PDF R ...) +CVE-2020-1568 (<p>A remote code execution vulnerability exists when Microsoft Edge PD ...) NOT-FOR-US: Microsoft -CVE-2020-1567 (A remote code execution vulnerability exists in the way that the MSHTM ...) +CVE-2020-1567 (<p>A remote code execution vulnerability exists in the way that the MS ...) NOT-FOR-US: Microsoft -CVE-2020-1566 (An elevation of privilege vulnerability exists when the Windows kernel ...) +CVE-2020-1566 (<p>An elevation of privilege vulnerability exists when the Windows ker ...) NOT-FOR-US: Microsoft -CVE-2020-1565 (An elevation of privilege vulnerability exists when the "Public A ...) +CVE-2020-1565 (<p>An elevation of privilege vulnerability exists when the "Publi ...) NOT-FOR-US: Microsoft -CVE-2020-1564 (A remote code execution vulnerability exists when the Windows Jet Data ...) +CVE-2020-1564 (<p>A remote code execution vulnerability exists when the Windows Jet D ...) NOT-FOR-US: Microsoft -CVE-2020-1563 (A remote code execution vulnerability exists in Microsoft Office softw ...) +CVE-2020-1563 (<p>A remote code execution vulnerability exists in Microsoft Office so ...) NOT-FOR-US: Microsoft -CVE-2020-1562 (A remote code execution vulnerability exists in the way that Microsoft ...) +CVE-2020-1562 (<p>A remote code execution vulnerability exists in the way that Micros ...) NOT-FOR-US: Microsoft -CVE-2020-1561 (A remote code execution vulnerability exists in the way that Microsoft ...) +CVE-2020-1561 (<p>A remote code execution vulnerability exists in the way that Micros ...) NOT-FOR-US: Microsoft -CVE-2020-1560 (A remote code execution vulnerability exists in the way that Microsoft ...) +CVE-2020-1560 (<p>A remote code execution vulnerability exists in the way that Micros ...) NOT-FOR-US: Microsoft CVE-2020-1559 (<p>An elevation of privilege vulnerability exists when the Windows Sto ...) NOT-FOR-US: Microsoft -CVE-2020-1558 (A remote code execution vulnerability exists when the Windows Jet Data ...) +CVE-2020-1558 (<p>A remote code execution vulnerability exists when the Windows Jet D ...) NOT-FOR-US: Microsoft -CVE-2020-1557 (A remote code execution vulnerability exists when the Windows Jet Data ...) +CVE-2020-1557 (<p>A remote code execution vulnerability exists when the Windows Jet D ...) NOT-FOR-US: Microsoft -CVE-2020-1556 (An elevation of privilege vulnerability exists in the way that the Win ...) +CVE-2020-1556 (<p>An elevation of privilege vulnerability exists in the way that the ...) NOT-FOR-US: Microsoft -CVE-2020-1555 (A remote code execution vulnerability exists in the way that the scrip ...) +CVE-2020-1555 (<p>A remote code execution vulnerability exists in the way that the sc ...) NOT-FOR-US: Microsoft -CVE-2020-1554 (A memory corruption vulnerability exists when Windows Media Foundation ...) +CVE-2020-1554 (<p>A memory corruption vulnerability exists when Windows Media Foundat ...) NOT-FOR-US: Microsoft -CVE-2020-1553 (An elevation of privilege vulnerability exists when the Windows Runtim ...) +CVE-2020-1553 (<p>An elevation of privilege vulnerability exists when the Windows Run ...) NOT-FOR-US: Microsoft -CVE-2020-1552 (An elevation of privilege vulnerability exists when the Windows Work F ...) +CVE-2020-1552 (<p>An elevation of privilege vulnerability exists when the Windows Wor ...) NOT-FOR-US: Microsoft -CVE-2020-1551 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1551 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1550 (An elevation of privilege vulnerability exists when the Windows CDP Us ...) +CVE-2020-1550 (<p>An elevation of privilege vulnerability exists when the Windows CDP ...) NOT-FOR-US: Microsoft -CVE-2020-1549 (An elevation of privilege vulnerability exists when the Windows CDP Us ...) +CVE-2020-1549 (<p>An elevation of privilege vulnerability exists when the Windows CDP ...) NOT-FOR-US: Microsoft -CVE-2020-1548 (An information disclosure vulnerability exists when the Windows WaasMe ...) +CVE-2020-1548 (<p>An information disclosure vulnerability exists when the Windows Waa ...) NOT-FOR-US: Microsoft -CVE-2020-1547 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1547 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1546 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1546 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1545 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1545 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1544 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1544 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1543 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1543 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1542 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1542 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1541 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1541 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1540 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1540 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1539 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1539 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1538 (An elevation of privilege vulnerability exists when the Windows UPnP D ...) +CVE-2020-1538 (<p>An elevation of privilege vulnerability exists when the Windows UPn ...) NOT-FOR-US: Microsoft -CVE-2020-1537 (An elevation of privilege vulnerability exists when the Windows Remote ...) +CVE-2020-1537 (<p>An elevation of privilege vulnerability exists when the Windows Rem ...) NOT-FOR-US: Microsoft -CVE-2020-1536 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1536 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1535 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1535 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1534 (An elevation of privilege vulnerability exists when the Windows Backup ...) +CVE-2020-1534 (<p>An elevation of privilege vulnerability exists when the Windows Bac ...) NOT-FOR-US: Microsoft -CVE-2020-1533 (An elevation of privilege vulnerability exists in the way that the Win ...) +CVE-2020-1533 (<p>An elevation of privilege vulnerability exists in the way that the ...) NOT-FOR-US: Microsoft CVE-2020-1532 (<p>An elevation of privilege vulnerability exists when the Windows Ins ...) NOT-FOR-US: Microsoft -CVE-2020-1531 (An elevation of privilege vulnerability exists when the Windows Accoun ...) +CVE-2020-1531 (<p>An elevation of privilege vulnerability exists when the Windows Acc ...) NOT-FOR-US: Microsoft -CVE-2020-1530 (An elevation of privilege vulnerability exists when Windows Remote Acc ...) +CVE-2020-1530 (<p>An elevation of privilege vulnerability exists when Windows Remote ...) NOT-FOR-US: Microsoft -CVE-2020-1529 (An elevation of privilege vulnerability exists in the way that the Win ...) +CVE-2020-1529 (<p>An elevation of privilege vulnerability exists in the way that the ...) NOT-FOR-US: Microsoft -CVE-2020-1528 (An elevation of privilege vulnerability exists when the Windows Radio ...) +CVE-2020-1528 (<p>An elevation of privilege vulnerability exists when the Windows Rad ...) NOT-FOR-US: Microsoft -CVE-2020-1527 (An elevation of privilege vulnerability exists when the Windows Custom ...) +CVE-2020-1527 (<p>An elevation of privilege vulnerability exists when the Windows Cus ...) NOT-FOR-US: Microsoft -CVE-2020-1526 (An elevation of privilege vulnerability exists when the Windows Networ ...) +CVE-2020-1526 (<p>An elevation of privilege vulnerability exists when the Windows Net ...) NOT-FOR-US: Microsoft -CVE-2020-1525 (A memory corruption vulnerability exists when Windows Media Foundation ...) +CVE-2020-1525 (<p>A memory corruption vulnerability exists when Windows Media Foundat ...) NOT-FOR-US: Microsoft -CVE-2020-1524 (An elevation of privilege vulnerability exists when the Windows Speech ...) +CVE-2020-1524 (<p>An elevation of privilege vulnerability exists when the Windows Spe ...) NOT-FOR-US: Microsoft CVE-2020-1523 (<p>A tampering vulnerability exists when Microsoft SharePoint Server f ...) NOT-FOR-US: Microsoft -CVE-2020-1522 (An elevation of privilege vulnerability exists when the Windows Speech ...) +CVE-2020-1522 (<p>An elevation of privilege vulnerability exists when the Windows Spe ...) NOT-FOR-US: Microsoft -CVE-2020-1521 (An elevation of privilege vulnerability exists when the Windows Speech ...) +CVE-2020-1521 (<p>An elevation of privilege vulnerability exists when the Windows Spe ...) NOT-FOR-US: Microsoft -CVE-2020-1520 (A remote code execution vulnerability exists when the Windows Font Dri ...) +CVE-2020-1520 (<p>A remote code execution vulnerability exists when the Windows Font ...) NOT-FOR-US: Microsoft -CVE-2020-1519 (An elevation of privilege vulnerability exists when the Windows UPnP D ...) +CVE-2020-1519 (<p>An elevation of privilege vulnerability exists when the Windows UPn ...) NOT-FOR-US: Microsoft -CVE-2020-1518 (An elevation of privilege vulnerability exists when the Windows File S ...) +CVE-2020-1518 (<p>An elevation of privilege vulnerability exists when the Windows Fil ...) NOT-FOR-US: Microsoft -CVE-2020-1517 (An elevation of privilege vulnerability exists when the Windows File S ...) +CVE-2020-1517 (<p>An elevation of privilege vulnerability exists when the Windows Fil ...) NOT-FOR-US: Microsoft -CVE-2020-1516 (An elevation of privilege vulnerability exists when the Windows Work F ...) +CVE-2020-1516 (<p>An elevation of privilege vulnerability exists when the Windows Wor ...) NOT-FOR-US: Microsoft -CVE-2020-1515 (An elevation of privilege vulnerability exists when the Windows Teleph ...) +CVE-2020-1515 (<p>An elevation of privilege vulnerability exists when the Windows Tel ...) NOT-FOR-US: Microsoft CVE-2020-1514 (<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft Sh ...) NOT-FOR-US: Microsoft -CVE-2020-1513 (An elevation of privilege vulnerability exists when the Windows CSC Se ...) +CVE-2020-1513 (<p>An elevation of privilege vulnerability exists when the Windows CSC ...) NOT-FOR-US: Microsoft -CVE-2020-1512 (An information disclosure vulnerability exists when the Windows State ...) +CVE-2020-1512 (<p>An information disclosure vulnerability exists when the Windows Sta ...) NOT-FOR-US: Microsoft -CVE-2020-1511 (An elevation of privilege vulnerability exists when Connected User Exp ...) +CVE-2020-1511 (<p>An elevation of privilege vulnerability exists when Connected User ...) NOT-FOR-US: Microsoft -CVE-2020-1510 (An information disclosure vulnerability exists when the win32k compone ...) +CVE-2020-1510 (<p>An information disclosure vulnerability exists when the win32k comp ...) NOT-FOR-US: Microsoft -CVE-2020-1509 (An elevation of privilege vulnerability exists in the Local Security A ...) +CVE-2020-1509 (<p>An elevation of privilege vulnerability exists in the Local Securit ...) NOT-FOR-US: Microsoft CVE-2020-1508 (<p>A remote code execution vulnerability exists when Windows Media Aud ...) NOT-FOR-US: Microsoft @@ -298150,73 +298194,73 @@ CVE-2020-1507 (<p>An elevation of privilege vulnerability exists in the way that NOT-FOR-US: Microsoft CVE-2020-1506 (<p>An elevation of privilege vulnerability exists in the way that the ...) NOT-FOR-US: Microsoft -CVE-2020-1505 (An information disclosure vulnerability exists when Microsoft SharePoi ...) +CVE-2020-1505 (<p>An information disclosure vulnerability exists when Microsoft Share ...) NOT-FOR-US: Microsoft -CVE-2020-1504 (A remote code execution vulnerability exists in Microsoft Excel softwa ...) +CVE-2020-1504 (<p>A remote code execution vulnerability exists in Microsoft Excel sof ...) NOT-FOR-US: Microsoft -CVE-2020-1503 (An information disclosure vulnerability exists when Microsoft Word imp ...) +CVE-2020-1503 (<p>An information disclosure vulnerability exists when Microsoft Word ...) NOT-FOR-US: Microsoft -CVE-2020-1502 (An information disclosure vulnerability exists when Microsoft Word imp ...) +CVE-2020-1502 (<p>An information disclosure vulnerability exists when Microsoft Word ...) NOT-FOR-US: Microsoft -CVE-2020-1501 (A spoofing vulnerability exists when Microsoft SharePoint Server does ...) +CVE-2020-1501 (<p>A spoofing vulnerability exists when Microsoft SharePoint Server do ...) NOT-FOR-US: Microsoft -CVE-2020-1500 (A spoofing vulnerability exists when Microsoft SharePoint Server does ...) +CVE-2020-1500 (<p>A spoofing vulnerability exists when Microsoft SharePoint Server do ...) NOT-FOR-US: Microsoft -CVE-2020-1499 (A spoofing vulnerability exists when Microsoft SharePoint Server does ...) +CVE-2020-1499 (<p>A spoofing vulnerability exists when Microsoft SharePoint Server do ...) NOT-FOR-US: Microsoft -CVE-2020-1498 (A remote code execution vulnerability exists in Microsoft Excel softwa ...) +CVE-2020-1498 (<p>A remote code execution vulnerability exists in Microsoft Excel sof ...) NOT-FOR-US: Microsoft -CVE-2020-1497 (An information disclosure vulnerability exists when Microsoft Excel im ...) +CVE-2020-1497 (<p>An information disclosure vulnerability exists when Microsoft Excel ...) NOT-FOR-US: Microsoft -CVE-2020-1496 (A remote code execution vulnerability exists in Microsoft Excel softwa ...) +CVE-2020-1496 (<p>A remote code execution vulnerability exists in Microsoft Excel sof ...) NOT-FOR-US: Microsoft -CVE-2020-1495 (A remote code execution vulnerability exists in Microsoft Excel softwa ...) +CVE-2020-1495 (<p>A remote code execution vulnerability exists in Microsoft Excel sof ...) NOT-FOR-US: Microsoft -CVE-2020-1494 (A remote code execution vulnerability exists in Microsoft Excel softwa ...) +CVE-2020-1494 (<p>A remote code execution vulnerability exists in Microsoft Excel sof ...) NOT-FOR-US: Microsoft -CVE-2020-1493 (An information disclosure vulnerability exists when attaching files to ...) +CVE-2020-1493 (<p>An information disclosure vulnerability exists when attaching files ...) NOT-FOR-US: Microsoft -CVE-2020-1492 (A memory corruption vulnerability exists when Windows Media Foundation ...) +CVE-2020-1492 (<p>A memory corruption vulnerability exists when Windows Media Foundat ...) NOT-FOR-US: Microsoft CVE-2020-1491 (<p>An elevation of privilege vulnerability exists in the way that the ...) NOT-FOR-US: Microsoft -CVE-2020-1490 (An elevation of privilege vulnerability exists when the Storage Servic ...) +CVE-2020-1490 (<p>An elevation of privilege vulnerability exists when the Storage Ser ...) NOT-FOR-US: Microsoft -CVE-2020-1489 (An elevation of privilege vulnerability exists when the Windows CSC Se ...) +CVE-2020-1489 (<p>An elevation of privilege vulnerability exists when the Windows CSC ...) NOT-FOR-US: Microsoft -CVE-2020-1488 (An elevation of privilege vulnerability exists when the Windows AppX D ...) +CVE-2020-1488 (<p>An elevation of privilege vulnerability exists when the Windows App ...) NOT-FOR-US: Microsoft -CVE-2020-1487 (An information disclosure vulnerability exists when Media Foundation i ...) +CVE-2020-1487 (<p>An information disclosure vulnerability exists when Media Foundatio ...) NOT-FOR-US: Microsoft -CVE-2020-1486 (An elevation of privilege vulnerability exists when the Windows kernel ...) +CVE-2020-1486 (<p>An elevation of privilege vulnerability exists when the Windows ker ...) NOT-FOR-US: Microsoft -CVE-2020-1485 (An information disclosure vulnerability exists when the Windows Image ...) +CVE-2020-1485 (<p>An information disclosure vulnerability exists when the Windows Ima ...) NOT-FOR-US: Microsoft -CVE-2020-1484 (An elevation of privilege vulnerability exists when the Windows Work F ...) +CVE-2020-1484 (<p>An elevation of privilege vulnerability exists when the Windows Wor ...) NOT-FOR-US: Microsoft -CVE-2020-1483 (A remote code execution vulnerability exists in Microsoft Outlook when ...) +CVE-2020-1483 (<p>A remote code execution vulnerability exists in Microsoft Outlook w ...) NOT-FOR-US: Microsoft CVE-2020-1482 (<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft Sh ...) NOT-FOR-US: Microsoft CVE-2020-1481 (A remote code execution vulnerability exists in the ESLint extension f ...) NOT-FOR-US: Microsoft -CVE-2020-1480 (An elevation of privilege vulnerability exists in the way that the Win ...) +CVE-2020-1480 (<p>An elevation of privilege vulnerability exists in the way that the ...) NOT-FOR-US: Microsoft -CVE-2020-1479 (An elevation of privilege vulnerability exists when DirectX improperly ...) +CVE-2020-1479 (<p>An elevation of privilege vulnerability exists when DirectX imprope ...) NOT-FOR-US: Microsoft -CVE-2020-1478 (A memory corruption vulnerability exists when Windows Media Foundation ...) +CVE-2020-1478 (<p>A memory corruption vulnerability exists when Windows Media Foundat ...) NOT-FOR-US: Microsoft -CVE-2020-1477 (A memory corruption vulnerability exists when Windows Media Foundation ...) +CVE-2020-1477 (<p>A memory corruption vulnerability exists when Windows Media Foundat ...) NOT-FOR-US: Microsoft -CVE-2020-1476 (An elevation of privilege vulnerability exists when ASP.NET or .NET we ...) +CVE-2020-1476 (<p>An elevation of privilege vulnerability exists when ASP.NET or .NET ...) NOT-FOR-US: Microsoft -CVE-2020-1475 (An elevation of privilege vulnerability exists in the way that the srm ...) +CVE-2020-1475 (<p>An elevation of privilege vulnerability exists in the way that the ...) NOT-FOR-US: Microsoft -CVE-2020-1474 (An information disclosure vulnerability exists when the Windows Image ...) +CVE-2020-1474 (<p>An information disclosure vulnerability exists when the Windows Ima ...) NOT-FOR-US: Microsoft -CVE-2020-1473 (A remote code execution vulnerability exists when the Windows Jet Data ...) +CVE-2020-1473 (<p>A remote code execution vulnerability exists when the Windows Jet D ...) NOT-FOR-US: Microsoft -CVE-2020-1472 (An elevation of privilege vulnerability exists when an attacker establ ...) +CVE-2020-1472 (<p>An elevation of privilege vulnerability exists when an attacker est ...) {DLA-2463-1} [experimental] - samba 2:4.13.2+dfsg-1 - samba 2:4.13.2+dfsg-2 (bug #971048) @@ -298229,19 +298273,19 @@ CVE-2020-1472 (An elevation of privilege vulnerability exists when an attacker e NOTE: https://www.samba.org/samba/security/CVE-2020-1472.html CVE-2020-1471 (<p>An elevation of privilege vulnerability exists when Microsoft Windo ...) NOT-FOR-US: Microsoft -CVE-2020-1470 (An elevation of privilege vulnerability exists when the Windows Work F ...) +CVE-2020-1470 (<p>An elevation of privilege vulnerability exists when the Windows Wor ...) NOT-FOR-US: Microsoft CVE-2020-1469 (A denial of service vulnerability exists when the .NET implementation ...) NOT-FOR-US: Microsoft CVE-2020-1468 (An information disclosure vulnerability exists when the Windows GDI co ...) NOT-FOR-US: Microsoft -CVE-2020-1467 (An elevation of privilege vulnerability exists when Windows improperly ...) +CVE-2020-1467 (<p>An elevation of privilege vulnerability exists when Windows imprope ...) NOT-FOR-US: Microsoft -CVE-2020-1466 (A denial of service vulnerability exists in Windows Remote Desktop Gat ...) +CVE-2020-1466 (<p>A denial of service vulnerability exists in Windows Remote Desktop ...) NOT-FOR-US: Microsoft CVE-2020-1465 (An elevation of privilege vulnerability exists in Microsoft OneDrive t ...) NOT-FOR-US: Microsoft -CVE-2020-1464 (A spoofing vulnerability exists when Windows incorrectly validates fil ...) +CVE-2020-1464 (<p>A spoofing vulnerability exists when Windows incorrectly validates ...) NOT-FOR-US: Microsoft CVE-2020-1463 (An elevation of privilege vulnerability exists in the way that the Sha ...) NOT-FOR-US: Microsoft @@ -298251,7 +298295,7 @@ CVE-2020-1461 (An elevation of privilege vulnerability exists when the MpSigStub NOT-FOR-US: Microsoft CVE-2020-1460 (<p>A remote code execution vulnerability exists in Microsoft SharePoin ...) NOT-FOR-US: Microsoft -CVE-2020-1459 (An information disclosure vulnerability exists on ARM implementations ...) +CVE-2020-1459 (<p>An information disclosure vulnerability exists on ARM implementatio ...) NOT-FOR-US: Microsoft CVE-2020-1458 (A remote code execution vulnerability exists when Microsoft Office imp ...) NOT-FOR-US: Microsoft @@ -298259,7 +298303,7 @@ CVE-2020-1457 (A remote code execution vulnerability exists in the way that Micr NOT-FOR-US: Microsoft CVE-2020-1456 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...) NOT-FOR-US: Microsoft -CVE-2020-1455 (A denial of service vulnerability exists when Microsoft SQL Server Man ...) +CVE-2020-1455 (<p>A denial of service vulnerability exists when Microsoft SQL Server ...) NOT-FOR-US: Microsoft CVE-2020-1454 (This vulnerability is caused when SharePoint Server does not properly ...) NOT-FOR-US: Microsoft @@ -298335,7 +298379,7 @@ CVE-2020-1419 (An information disclosure vulnerability exists when the Windows k NOT-FOR-US: Microsoft CVE-2020-1418 (An elevation of privilege vulnerability exists when the Windows Diagno ...) NOT-FOR-US: Microsoft -CVE-2020-1417 (An elevation of privilege vulnerability exists when the Windows kernel ...) +CVE-2020-1417 (<p>An elevation of privilege vulnerability exists when the Windows ker ...) NOT-FOR-US: Microsoft CVE-2020-1416 (An elevation of privilege vulnerability exists in Visual Studio and Vi ...) NOT-FOR-US: Microsoft @@ -298403,19 +298447,19 @@ CVE-2020-1385 (An elevation of privilege vulnerability exists in the way that th NOT-FOR-US: Microsoft CVE-2020-1384 (An elevation of privilege vulnerability exists when the Windows Crypto ...) NOT-FOR-US: Microsoft -CVE-2020-1383 (An information disclosure vulnerability exists in RPC if the server ha ...) +CVE-2020-1383 (<p>An information disclosure vulnerability exists in RPC if the server ...) NOT-FOR-US: Microsoft CVE-2020-1382 (An elevation of privilege vulnerability exists when the Windows Graphi ...) NOT-FOR-US: Microsoft CVE-2020-1381 (An elevation of privilege vulnerability exists when the Windows Graphi ...) NOT-FOR-US: Microsoft -CVE-2020-1380 (A remote code execution vulnerability exists in the way that the scrip ...) +CVE-2020-1380 (<p>A remote code execution vulnerability exists in the way that the sc ...) NOT-FOR-US: Microsoft -CVE-2020-1379 (A memory corruption vulnerability exists when Windows Media Foundation ...) +CVE-2020-1379 (<p>A memory corruption vulnerability exists when Windows Media Foundat ...) NOT-FOR-US: Microsoft -CVE-2020-1378 (An elevation of privilege vulnerability exists when the Windows Kernel ...) +CVE-2020-1378 (<p>An elevation of privilege vulnerability exists when the Windows Ker ...) NOT-FOR-US: Microsoft -CVE-2020-1377 (An elevation of privilege vulnerability exists when the Windows Kernel ...) +CVE-2020-1377 (<p>An elevation of privilege vulnerability exists when the Windows Ker ...) NOT-FOR-US: Microsoft CVE-2020-1376 (<p>An elevation of privilege vulnerability exists in the way that fdSS ...) NOT-FOR-US: Microsoft @@ -298491,11 +298535,11 @@ CVE-2020-1341 RESERVED CVE-2020-1340 (A spoofing vulnerability exists when the NuGetGallery does not properl ...) NOT-FOR-US: Microsoft -CVE-2020-1339 (A remote code execution vulnerability exists when Windows Media Audio ...) +CVE-2020-1339 (<p>A remote code execution vulnerability exists when Windows Media Aud ...) NOT-FOR-US: Microsoft CVE-2020-1338 (<p>A remote code execution vulnerability exists in Microsoft Word soft ...) NOT-FOR-US: Microsoft -CVE-2020-1337 (An elevation of privilege vulnerability exists when the Windows Print ...) +CVE-2020-1337 (<p>An elevation of privilege vulnerability exists when the Windows Pri ...) NOT-FOR-US: Microsoft CVE-2020-1336 (An elevation of privilege vulnerability exists in the way that the Win ...) NOT-FOR-US: Microsoft @@ -298805,7 +298849,7 @@ CVE-2020-1184 (An elevation of privilege vulnerability exists when the Windows S NOT-FOR-US: Microsoft CVE-2020-1183 (A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...) NOT-FOR-US: Microsoft -CVE-2020-1182 (A remote code execution vulnerability exists in Microsoft Dynamics 365 ...) +CVE-2020-1182 (<p>A remote code execution vulnerability exists in Microsoft Dynamics ...) NOT-FOR-US: Microsoft CVE-2020-1181 (A remote code execution vulnerability exists in Microsoft SharePoint S ...) NOT-FOR-US: Microsoft @@ -299077,7 +299121,7 @@ CVE-2020-1048 (An elevation of privilege vulnerability exists when the Windows P NOT-FOR-US: Microsoft CVE-2020-1047 (<p>An elevation of privilege vulnerability exists when Windows Hyper-V ...) NOT-FOR-US: Microsoft -CVE-2020-1046 (A remote code execution vulnerability exists when Microsoft .NET Frame ...) +CVE-2020-1046 (<p>A remote code execution vulnerability exists when Microsoft .NET Fr ...) NOT-FOR-US: Microsoft CVE-2020-1045 (<p>A security feature bypass vulnerability exists in the way Microsoft ...) - dotnet-core-3.1 <itp> (bug #968921) @@ -299961,7 +300005,7 @@ CVE-2020-0606 (A remote code execution vulnerability exists in .NET software whe NOT-FOR-US: Microsoft CVE-2020-0605 (A remote code execution vulnerability exists in .NET software when the ...) NOT-FOR-US: Microsoft -CVE-2020-0604 (A remote code execution vulnerability exists in Visual Studio Code whe ...) +CVE-2020-0604 (<p>A remote code execution vulnerability exists in Visual Studio Code ...) NOT-FOR-US: Microsoft CVE-2020-0603 (A remote code execution vulnerability exists in ASP.NET Core software ...) NOT-FOR-US: Microsoft View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/43238193abf73e9ae8f279c571de5fba49cd4166 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/43238193abf73e9ae8f279c571de5fba49cd4166 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits