[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-25073/plinth in unstable
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 2441a486 by Salvatore Bonaccorso at 2020-09-22T07:12:08+02:00 Track fixed version for CVE-2020-25073/plinth in unstable - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1584,7 +1584,7 @@ CVE-2020-25070 (USVN (aka User-friendly SVN) before 1.0.10 allows CSRF, related CVE-2020-25069 (USVN (aka User-friendly SVN) before 1.0.10 allows attackers to execute ...) NOT-FOR-US: User-friendly SVN CVE-2020-25073 (FreedomBox through 20.13 allows remote attackers to obtain sensitive i ...) - - plinth + - plinth 20.14 [buster] - plinth (Minor issue) [stretch] - plinth (Minor issue) NOTE: https://salsa.debian.org/freedombox-team/freedombox/-/issues/1935 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2441a486e0a0e617c15cf1fcfafe41f8db1de564 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2441a486e0a0e617c15cf1fcfafe41f8db1de564 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add new chromium issues
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: dba1eaa2 by Salvatore Bonaccorso at 2020-09-21T22:22:42+02:00 Add new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -20109,19 +20109,26 @@ CVE-2020-15968 CVE-2020-15967 RESERVED CVE-2020-15966 (Insufficient policy enforcement in extensions in Google Chrome prior t ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15965 (Type confusion in V8 in Google Chrome prior to 85.0.4183.121 allowed a ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15964 (Insufficient data validation in media in Google Chrome prior to 85.0.4 ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15963 (Insufficient policy enforcement in extensions in Google Chrome prior t ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15962 (Insufficient policy validation in serial in Google Chrome prior to 85. ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15961 (Insufficient policy validation in extensions in Google Chrome prior to ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15960 (Heap buffer overflow in storage in Google Chrome prior to 85.0.4183.12 ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15959 (Insufficient policy enforcement in networking in Google Chrome prior t ...) - chromium [stretch] - chromium (see DSA 4562) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dba1eaa2a0827900aa6cecf35de44a694cc6398c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dba1eaa2a0827900aa6cecf35de44a694cc6398c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 205a3a72 by Salvatore Bonaccorso at 2020-09-21T22:14:50+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -50344,7 +50344,7 @@ CVE-2020-4733 CVE-2020-4732 RESERVED CVE-2020-4731 (IBM Aspera Web Application 1.9.14 PL1 is vulnerable to cross-site scri ...) - TODO: check + NOT-FOR-US: IBM CVE-2020-4730 RESERVED CVE-2020-4729 @@ -50520,7 +50520,7 @@ CVE-2020-4645 (IBM Planning Analytics Local 2.0.0 through 2.0.9.1 is vulnerable CVE-2020-4644 (IBM Planning Analytics Local 2.0.0 through 2.0.9.1 could allow a remot ...) NOT-FOR-US: IBM CVE-2020-4643 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable ...) - TODO: check + NOT-FOR-US: IBM CVE-2020-4642 RESERVED CVE-2020-4641 @@ -50626,7 +50626,7 @@ CVE-2020-4592 CVE-2020-4591 (IBM Spectrum Protect Server 8.1.0.000 through 8.1.10.000 could disclos ...) NOT-FOR-US: IBM CVE-2020-4590 (IBM WebSphere Application Server Liberty 17.0.0.3 through 20.0.0.9 run ...) - TODO: check + NOT-FOR-US: IBM CVE-2020-4589 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a ...) NOT-FOR-US: IBM CVE-2020-4588 @@ -50644,11 +50644,11 @@ CVE-2020-4583 CVE-2020-4582 RESERVED CVE-2020-4581 (IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a rem ...) - TODO: check + NOT-FOR-US: IBM CVE-2020-4580 (IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a rem ...) - TODO: check + NOT-FOR-US: IBM CVE-2020-4579 (IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a rem ...) - TODO: check + NOT-FOR-US: IBM CVE-2020-4578 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable ...) NOT-FOR-US: IBM CVE-2020-4577 @@ -51176,7 +51176,7 @@ CVE-2020-4317 (IBM Intelligent Operations Center for Emergency Management, Intel CVE-2020-4316 (IBM Publishing Engine 6.0.6, 6.0.6.1, and 7.0 does not set the secure ...) NOT-FOR-US: IBM CVE-2020-4315 (IBM Business Automation Content Analyzer on Cloud 1.0 does not set the ...) - TODO: check + NOT-FOR-US: IBM CVE-2020-4314 RESERVED CVE-2020-4313 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/205a3a7288653ec9ff7194f65430713cc50de681 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/205a3a7288653ec9ff7194f65430713cc50de681 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1b541bb9 by security tracker role at 2020-09-21T20:10:19+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,13 @@ +CVE-2020-25801 + RESERVED +CVE-2020-25800 + RESERVED +CVE-2020-25799 + RESERVED +CVE-2020-25798 + RESERVED +CVE-2020-25797 + RESERVED CVE-2020-25790 (** DISPUTED ** Typesetter CMS 5.x through 5.1 allows admins to upload ...) NOT-FOR-US: Typesetter CMS CVE-2020-25789 (An issue was discovered in Tiny Tiny RSS (aka tt-rss) before 2020-09-1 ...) @@ -19654,8 +19664,8 @@ CVE-2020-16173 RESERVED CVE-2020-16172 RESERVED -CVE-2020-16171 - RESERVED +CVE-2020-16171 (An issue was discovered in Acronis Cyber Backup before 12.5 Build 1634 ...) + TODO: check CVE-2020-16170 (Use of Hard-coded Credentials in temi Robox OS prior to 120, temi Andr ...) NOT-FOR-US: Temi application fo Android CVE-2020-16169 (Authentication Bypass Using an Alternate Path or Channel in temi Robox ...) @@ -20098,22 +20108,21 @@ CVE-2020-15968 RESERVED CVE-2020-15967 RESERVED -CVE-2020-15966 - RESERVED -CVE-2020-15965 - RESERVED -CVE-2020-15964 - RESERVED -CVE-2020-15963 - RESERVED -CVE-2020-15962 - RESERVED -CVE-2020-15961 - RESERVED -CVE-2020-15960 - RESERVED -CVE-2020-15959 - RESERVED +CVE-2020-15966 (Insufficient policy enforcement in extensions in Google Chrome prior t ...) + TODO: check +CVE-2020-15965 (Type confusion in V8 in Google Chrome prior to 85.0.4183.121 allowed a ...) + TODO: check +CVE-2020-15964 (Insufficient data validation in media in Google Chrome prior to 85.0.4 ...) + TODO: check +CVE-2020-15963 (Insufficient policy enforcement in extensions in Google Chrome prior t ...) + TODO: check +CVE-2020-15962 (Insufficient policy validation in serial in Google Chrome prior to 85. ...) + TODO: check +CVE-2020-15961 (Insufficient policy validation in extensions in Google Chrome prior to ...) + TODO: check +CVE-2020-15960 (Heap buffer overflow in storage in Google Chrome prior to 85.0.4183.12 ...) + TODO: check +CVE-2020-15959 (Insufficient policy enforcement in networking in Google Chrome prior t ...) - chromium [stretch] - chromium (see DSA 4562) CVE-2020-15958 (An issue was discovered in 1CRM System through 8.6.7. An insecure dire ...) @@ -45474,164 +45483,126 @@ CVE-2020-6578 RESERVED CVE-2020-6577 RESERVED -CVE-2020-6576 - RESERVED +CVE-2020-6576 (Use after free in offscreen canvas in Google Chrome prior to 85.0.4183 ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6575 - RESERVED +CVE-2020-6575 (Race in Mojo in Google Chrome prior to 85.0.4183.102 allowed a remote ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6574 - RESERVED +CVE-2020-6574 (Insufficient policy enforcement in installer in Google Chrome on OS X ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6573 - RESERVED +CVE-2020-6573 (Use after free in video in Google Chrome on Android prior to 85.0.4183 ...) - chromium [stretch] - chromium (see DSA 4562) CVE-2020-6572 RESERVED -CVE-2020-6571 - RESERVED +CVE-2020-6571 (Insufficient data validation in Omnibox in Google Chrome prior to 85.0 ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6570 - RESERVED +CVE-2020-6570 (Information leakage in WebRTC in Google Chrome prior to 85.0.4183.83 a ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6569 - RESERVED +CVE-2020-6569 (Integer overflow in WebUSB in Google Chrome prior to 85.0.4183.83 allo ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6568 - RESERVED +CVE-2020-6568 (Insufficient policy enforcement in intent handling in Google Chrome on ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6567 - RESERVED +CVE-2020-6567 (Insufficient validation of untrusted input in command line handling in ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6566 - RESERVED +CVE-2020-6566 (Insufficient policy enforcement in media in Google Chrome prior to 85. ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6565 - RESERVED +CVE-2020-6565 (Inappropriate implementation in Omnibox in Google Chrome on iOS prior ...) - chromium [stretch] - chromium (see DSA 4562) -CVE-2020-6564 - RESERVED +CVE-2020-6564 (Inappropriate implementation in permissions in Google Chrome prior to ...) - chromium [stretch] -
[Git][security-tracker-team/security-tracker][master] Mark CVE-2020-14340 as no-dsa for buster
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e9997846 by Salvatore Bonaccorso at 2020-09-21T22:05:40+02:00 Mark CVE-2020-14340 as no-dsa for buster - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -24401,6 +24401,7 @@ CVE-2020-14341 CVE-2020-14340 RESERVED - jboss-xnio 3.8.2-1 + [buster] - jboss-xnio (Minor issue) [stretch] - jboss-xnio (vulnerable code is not present) NOTE: Fix for 3.8: https://github.com/xnio/xnio/pull/233 NOTE: Fix for 3.7 (Buster): https://github.com/xnio/xnio/pull/234 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e9997846a1467ea948e41c6517fd428963fb0cf1 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e9997846a1467ea948e41c6517fd428963fb0cf1 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Sync some linux CVEs with kernel-sec
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 24747377 by Salvatore Bonaccorso at 2020-09-21T19:37:39+02:00 Sync some linux CVEs with kernel-sec - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64913,19 +64913,24 @@ CVE-2020-0432 (In skb_to_mamac of networking.c, there is a possible out of bound NOTE: https://git.kernel.org/linus/4d1356ac12f4d5180d0df345d85ff0ee42b89c72 NOTE: Staging driver, not enabled/built CVE-2020-0431 (In kbd_keycode of keyboard.c, there is a possible out of bounds write ...) - - linux 5.5.13-1 + - linux 5.4.13-1 + [buster] - linux 4.19.98-1 + [stretch] - linux 4.9.210-1 NOTE: https://git.kernel.org/linus/4f3882177240a1f55e45a3d241d3121341bead78 CVE-2020-0430 (In skb_headlen of /include/linux/skbuff.h, there is a possible out of ...) - - linux 4.18.6-1 + - linux 4.17.8-1 + [stretch] - linux (Vulnerable code introduced later) NOTE: https://git.kernel.org/linus/58990d1ff3f7896ee341030e9a7c2e4002570683 CVE-2020-0429 (In l2tp_session_delete and related functions of l2tp_core.c, there is ...) - linux 4.14.2-1 + [stretch] - linux 4.9.228-1 NOTE: https://git.kernel.org/linus/b228a94066406b6c456321d69643b0d7ce11cfa6 NOTE: https://git.kernel.org/linus/cdd10c9627496ad25c87ce6394e29752253c69d3 CVE-2020-0428 (In CamX code, there is a possible use after free due to a race conditi ...) NOT-FOR-US: Android on Pixel CVE-2020-0427 (In create_pinctrl of core.c, there is a possible out of bounds read du ...) - - linux 5.5.13-1 + - linux 5.4.8-1 + [buster] - linux 4.19.98-1 NOTE: https://git.kernel.org/linus/be4c60b563edee3712d392aaeb0943a768df7023 CVE-2020-0426 (In SyncManager, there is a possible permission bypass due to an unsafe ...) NOT-FOR-US: Android View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/247473779fcca41871dc99a2a229a135584acedd -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/247473779fcca41871dc99a2a229a135584acedd You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] NFUs, one unclear iptables issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: e0fa6481 by Moritz Muehlenhoff at 2020-09-21T18:40:31+02:00 NFUs, one unclear iptables issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64982,51 +64982,51 @@ CVE-2020-0402 RESERVED NOTE: Duplicate assignment for CVE-2019-19769 (Android security informed) CVE-2020-0401 (In setInstallerPackageName of PackageManagerService.java, there is a m ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0400 RESERVED CVE-2020-0399 (In showLimitedSimFunctionWarningNotification of NotificationMgr.java, ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0398 RESERVED CVE-2020-0397 (In getNotificationBuilder of CarrierServiceStateTracker.java, there is ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0396 (In various places in Telephony, there is a possible permission bypass ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0395 (In showNotification of EmergencyCallbackModeService.java, there is a p ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0394 (In onCreate of BluetoothPairingDialog.java, there is a possible tapjac ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0393 (In decrypt and decrypt_1_2 of CryptoPlugin.cpp, there is a possible ou ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0392 (In getLayerDebugInfo of SurfaceFlinger.cpp, there is a possible code e ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0391 (In applyPolicy of PackageManagerService.java, there is possible arbitr ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0390 (In the app zygote SE Policy, there is a possible permissions bypass. T ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0389 (In createSaveNotification of RecordingService.java, there is a possibl ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0388 (In createEmergencyLocationUserNotification of GnssVisibilityControl.ja ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0387 (In manifest files of the SmartSpace package, there is a possible tapja ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0386 (In onCreate of RequestPermissionActivity.java, there is a possible tap ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0385 (In Parse_insh of eas_mdls.c, there is a possible out of bounds write d ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0384 (In Parse_art of eas_mdls.c, there is a possible out of bounds write du ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0383 (In Parse_ins of eas_mdls.c, there is a possible out of bounds write du ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0382 (In RunInternal of dumpstate.cpp, there is a possible user consent bypa ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0381 (In Parse_wave of eas_mdls.c, there is a possible out of bounds write d ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0380 (In allocExcessBits of bitalloc.c, there is a possible out of bounds wr ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0379 (In the Bluetooth service, there is a possible spoofing attack due to a ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0378 RESERVED CVE-2020-0377 @@ -65090,7 +65090,7 @@ CVE-2020-0349 (In NFC, there is a possible out of bounds read due to a missing b CVE-2020-0348 (In NFC, there is a possible out of bounds read due to a missing bounds ...) NOT-FOR-US: Android CVE-2020-0347 (In iptables, there is a possible out of bounds write due to an incorre ...) - TODO: check + - iptables CVE-2020-0346 (In Mediaserver, there is a possible out of bounds write due to an inte ...) NOT-FOR-US: Android Media Framework CVE-2020-0345 (In DocumentsUI, there is a possible permission bypass due to a confuse ...) @@ -65100,7 +65100,7 @@ CVE-2020-0344 (In MediaProvider, there is a possible permissions bypass due to S CVE-2020-0343 (In NetworkStatsService, there is a possible access to protected data d ...) NOT-FOR-US: Android CVE-2020-0342 (There is a possible out of bounds write due to an incorrect bounds che ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0341 (In DisplayManager, there is a possible permission bypass due to a miss ...) NOT-FOR-US: Android CVE-2020-0340 (In libcodec2_soft_mp3dec, there is a possible information disclosure d ...) @@ -65110,7 +65110,7 @@ CVE-2020-0339 CVE-2020-0338 (In AccountManager, there is a possible bypass of a permissions check d ...) NOT-FOR-US: Android CVE-2020-0337 (In MediaProvider, there is a possible bypass of a permissions
[Git][security-tracker-team/security-tracker][master] one more kernel issue from Android
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 3e0e92fe by Moritz Muehlenhoff at 2020-09-21T18:25:24+02:00 one more kernel issue from Android - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64923,9 +64923,10 @@ CVE-2020-0429 (In l2tp_session_delete and related functions of l2tp_core.c, ther NOTE: https://git.kernel.org/linus/b228a94066406b6c456321d69643b0d7ce11cfa6 NOTE: https://git.kernel.org/linus/cdd10c9627496ad25c87ce6394e29752253c69d3 CVE-2020-0428 (In CamX code, there is a possible use after free due to a race conditi ...) - TODO: check + NOT-FOR-US: Android on Pixel CVE-2020-0427 (In create_pinctrl of core.c, there is a possible out of bounds read du ...) - TODO: check + - linux 5.5.13-1 + NOTE: https://git.kernel.org/linus/be4c60b563edee3712d392aaeb0943a768df7023 CVE-2020-0426 (In SyncManager, there is a possible permission bypass due to an unsafe ...) NOT-FOR-US: Android CVE-2020-0425 (There is a possible way to view notifications even when the "Lockdown" ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e0e92fe4bf63748927053ce6636d799dc1e9bcc -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e0e92fe4bf63748927053ce6636d799dc1e9bcc You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] two more kernel issues from Android
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 7245e9ce by Moritz Muehlenhoff at 2020-09-21T18:18:18+02:00 two more kernel issues from Android - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64916,9 +64916,12 @@ CVE-2020-0431 (In kbd_keycode of keyboard.c, there is a possible out of bounds w - linux 5.5.13-1 NOTE: https://git.kernel.org/linus/4f3882177240a1f55e45a3d241d3121341bead78 CVE-2020-0430 (In skb_headlen of /include/linux/skbuff.h, there is a possible out of ...) - TODO: check + - linux 4.18.6-1 + NOTE: https://git.kernel.org/linus/58990d1ff3f7896ee341030e9a7c2e4002570683 CVE-2020-0429 (In l2tp_session_delete and related functions of l2tp_core.c, there is ...) - TODO: check + - linux 4.14.2-1 + NOTE: https://git.kernel.org/linus/b228a94066406b6c456321d69643b0d7ce11cfa6 + NOTE: https://git.kernel.org/linus/cdd10c9627496ad25c87ce6394e29752253c69d3 CVE-2020-0428 (In CamX code, there is a possible use after free due to a race conditi ...) TODO: check CVE-2020-0427 (In create_pinctrl of core.c, there is a possible out of bounds read du ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7245e9cef166a0ced3fc6e3077f1d22b451a7fed -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7245e9cef166a0ced3fc6e3077f1d22b451a7fed You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new linux issue
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: d26fc328 by Moritz Muehlenhoff at 2020-09-21T18:09:02+02:00 new linux issue NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64913,7 +64913,8 @@ CVE-2020-0432 (In skb_to_mamac of networking.c, there is a possible out of bound NOTE: https://git.kernel.org/linus/4d1356ac12f4d5180d0df345d85ff0ee42b89c72 NOTE: Staging driver, not enabled/built CVE-2020-0431 (In kbd_keycode of keyboard.c, there is a possible out of bounds write ...) - TODO: check + - linux 5.5.13-1 + NOTE: https://git.kernel.org/linus/4f3882177240a1f55e45a3d241d3121341bead78 CVE-2020-0430 (In skb_headlen of /include/linux/skbuff.h, there is a possible out of ...) TODO: check CVE-2020-0429 (In l2tp_session_delete and related functions of l2tp_core.c, there is ...) @@ -64965,7 +64966,7 @@ CVE-2020-0407 (In various functions in fscrypt_ice.c and related files in some i CVE-2020-0406 (In libmpeg2dec, there is a possible out of bounds write due to a missi ...) NOT-FOR-US: Android Media Framework CVE-2020-0405 (In NetworkStackNotifier, there is a possible permissions bypass due to ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0404 (In uvc_scan_chain_forward of uvc_driver.c, there is a possible linked ...) - linux 5.4.19-1 [buster] - linux 4.19.118-1 @@ -65029,9 +65030,9 @@ CVE-2020-0377 CVE-2020-0376 RESERVED CVE-2020-0375 (In Telephony, there is a possible permission bypass due to a missing p ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0374 (In NFC, there is a possible permission bypass due to an unsafe Pending ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0373 (In SoundTriggerHwService, there is a possible out of bounds read due t ...) NOT-FOR-US: Android Media Framework CVE-2020-0372 (In ActivityManager, there is a possible access to protected data due t ...) @@ -65049,7 +65050,7 @@ CVE-2020-0367 CVE-2020-0366 (In PackageInstaller, there is a possible permissions bypass due to a t ...) NOT-FOR-US: Android CVE-2020-0365 (In netd, there is a possible out of bounds read due to a missing bound ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0364 (In libDRCdec, there is a possible out of bounds read due to a missing ...) NOT-FOR-US: Android Media Framework CVE-2020-0363 (In libmedia, there is a possible resource exhaustion due to improper i ...) @@ -65071,7 +65072,7 @@ CVE-2020-0356 (In the Audio HAL, there is a possible out of bounds write due to CVE-2020-0355 (In libFraunhoferAAC, there is a possible out of bounds read due to a m ...) NOT-FOR-US: Android Media Framework CVE-2020-0354 (In Bluetooth, there is a possible out of bounds write due to a missing ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0353 (In libmp4extractor, there is a possible resource exhaustion due to a m ...) NOT-FOR-US: Android Media Framework CVE-2020-0352 (In MediaProvider, there is a possible permissions bypass due to SQL in ...) @@ -65079,11 +65080,11 @@ CVE-2020-0352 (In MediaProvider, there is a possible permissions bypass due to S CVE-2020-0351 (In libstagefright, there is possible CPU exhaustion due to improper in ...) NOT-FOR-US: Android Media Framework CVE-2020-0350 (In NFC, there is a possible out of bounds write due to a missing bound ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0349 (In NFC, there is a possible out of bounds read due to a missing bounds ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0348 (In NFC, there is a possible out of bounds read due to a missing bounds ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0347 (In iptables, there is a possible out of bounds write due to an incorre ...) TODO: check CVE-2020-0346 (In Mediaserver, there is a possible out of bounds write due to an inte ...) @@ -65109,15 +65110,15 @@ CVE-2020-0337 (In MediaProvider, there is a possible bypass of a permissions che CVE-2020-0336 (In SurfaceFlinger, there is possible memory corruption due to type con ...) NOT-FOR-US: Android Media Framework CVE-2020-0335 (In NFC, there is a possible out of bounds write due to a missing bound ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0334 (In NFC, there is a possible out of bounds write due to a missing bound ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0333 (In UrlQuerySanitizer, there is a possible improper input validation. T ...) NOT-FOR-US: Android CVE-2020-0332 (In libstagefright, there is a possible dead loop due to an uncaught ex ...) NOT-FOR-US: Android Media Framework CVE-2020-0331 (In Settings, there is a possible permissions bypass. This
[Git][security-tracker-team/security-tracker][master] pulseaudio n/a
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 92cd5ac5 by Moritz Muehlenhoff at 2020-09-21T16:52:11+02:00 pulseaudio n/a - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1235,6 +1235,7 @@ CVE-2020-25219 (url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows - libproxy [buster] - libproxy (Minor issue) NOTE: https://github.com/libproxy/libproxy/issues/134 + NOTE: https://github.com/libproxy/libproxy/commit/836c10b60c65e947ff1e10eb02fbcc676d909ffa CVE-2020-25218 RESERVED CVE-2020-25217 @@ -20741,6 +20742,8 @@ CVE-2020-15711 (In MISP before 2.4.129, setting a favourite homepage was not CSR NOT-FOR-US: MISP CVE-2020-15710 RESERVED + - pulseaudio (Issue in Ubuntu-specific patch) + NOTE: https://bugs.launchpad.net/ubuntu/%2Bsource/pulseaudio/%2Bbug/1884738 CVE-2020-15709 (Versions of add-apt-repository before 0.98.9.2, 0.96.24.32.14, 0.96.20 ...) {DLA-2339-1} - software-properties (bug #968850) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92cd5ac5505a7e04137be3f274423fb771cb221e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92cd5ac5505a7e04137be3f274423fb771cb221e You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new LLVM issue, NFUs
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 55ab2a30 by Moritz Muehlenhoff at 2020-09-21T14:40:45+02:00 new LLVM issue, NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64920,9 +64920,9 @@ CVE-2020-0428 (In CamX code, there is a possible use after free due to a race co CVE-2020-0427 (In create_pinctrl of core.c, there is a possible out of bounds read du ...) TODO: check CVE-2020-0426 (In SyncManager, there is a possible permission bypass due to an unsafe ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0425 (There is a possible way to view notifications even when the "Lockdown" ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0424 RESERVED CVE-2020-0423 @@ -64960,7 +64960,7 @@ CVE-2020-0408 CVE-2020-0407 (In various functions in fscrypt_ice.c and related files in some implem ...) TODO: check CVE-2020-0406 (In libmpeg2dec, there is a possible out of bounds write due to a missi ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0405 (In NetworkStackNotifier, there is a possible permissions bypass due to ...) TODO: check CVE-2020-0404 (In uvc_scan_chain_forward of uvc_driver.c, there is a possible linked ...) @@ -65030,51 +65030,51 @@ CVE-2020-0375 (In Telephony, there is a possible permission bypass due to a miss CVE-2020-0374 (In NFC, there is a possible permission bypass due to an unsafe Pending ...) TODO: check CVE-2020-0373 (In SoundTriggerHwService, there is a possible out of bounds read due t ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0372 (In ActivityManager, there is a possible access to protected data due t ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0371 RESERVED CVE-2020-0370 (In libAACdec, there is a possible out of bounds read due to missing bo ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0369 (In libavb, there is a possible out of bounds write due to an integer o ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0368 RESERVED CVE-2020-0367 RESERVED CVE-2020-0366 (In PackageInstaller, there is a possible permissions bypass due to a t ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0365 (In netd, there is a possible out of bounds read due to a missing bound ...) TODO: check CVE-2020-0364 (In libDRCdec, there is a possible out of bounds read due to a missing ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0363 (In libmedia, there is a possible resource exhaustion due to improper i ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0362 (In libstagefright, there is a possible resource exhaustion due to impr ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0361 (In libDRCdec, there is a possible information disclosure due to uninit ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0360 (In Notification Access Confirmation, there is a possible permissions b ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0359 (In GLESRenderEngine, there is a possible out of bounds read due to a b ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0358 (In SurfaceFlinger, there is a possible use after free due to a race co ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0357 (In SurfaceFlinger, there is a possible use-after-free due to improper ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0356 (In the Audio HAL, there is a possible out of bounds write due to an in ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0355 (In libFraunhoferAAC, there is a possible out of bounds read due to a m ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0354 (In Bluetooth, there is a possible out of bounds write due to a missing ...) TODO: check CVE-2020-0353 (In libmp4extractor, there is a possible resource exhaustion due to a m ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0352 (In MediaProvider, there is a possible permissions bypass due to SQL in ...) - TODO: check + NOT-FOR-US: Android CVE-2020-0351 (In libstagefright, there is possible CPU exhaustion due to improper in ...) - TODO: check + NOT-FOR-US: Android Media Framework CVE-2020-0350 (In NFC, there is a possible out of bounds write due to a missing bound ...) TODO: check CVE-2020-0349 (In NFC, there is a possible out of bounds read due to a missing bounds ...) @@ -65084,43 +65084,43 @@ CVE-2020-0348 (In NFC, there is a possible out of bounds read due
[Git][security-tracker-team/security-tracker][master] Sync information for two CVEs with kernel-sec (updating fixed versions)
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6f9a3883 by Salvatore Bonaccorso at 2020-09-21T12:52:26+02:00 Sync information for two CVEs with kernel-sec (updating fixed versions) - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64889,10 +64889,12 @@ CVE-2020-0437 CVE-2020-0436 RESERVED CVE-2020-0435 (In inline_data_addr of f2fs.h, there is a possible out of bounds write ...) - - linux 5.2.6-1 - NOTE: git.kernel.org/linus/dd6c89b5f2b93ceced4111e7b69d4efd8c312713 + - linux 4.19.9-1 + [stretch] - linux (Vulnerable code introduced later) + NOTE: git.kernel.org/linus/18dd6470c2d14d10f5a2dd926925dc80dbd3abfd NOTE: https://android.googlesource.com/kernel/common/+/d7d9d29a837358636e12fe09c90a7882b53b2220 NOTE: https://source.android.com/security/bulletin/pixel/2020-09-01 + NOTE: Duplicate of CVE-2018-14615 CVE-2020-0434 (In Pixel's use of the Catpipe library, there is possible memory corrup ...) NOT-FOR-US: Catpipe CVE-2020-0433 (In blk_mq_queue_tag_busy_iter of blk-mq-tag.c, there is a possible use ...) @@ -64902,7 +64904,9 @@ CVE-2020-0433 (In blk_mq_queue_tag_busy_iter of blk-mq-tag.c, there is a possibl NOTE: https://git.kernel.org/linus/f5e4d63577026f908a809f22f5fd5a90ea1f NOTE: https://git.kernel.org/linus/530ca2c9bd6949c72c9b5cfc330cb3dbccaa3f5b CVE-2020-0432 (In skb_to_mamac of networking.c, there is a possible out of bounds wri ...) - - linux 5.6.7-1 (unimportant) + - linux 5.4.19-1 (unimportant) + [buster] - linux 4.19.118-1 + [stretch] - linux 4.9.228-1 NOTE: https://git.kernel.org/linus/4d1356ac12f4d5180d0df345d85ff0ee42b89c72 NOTE: Staging driver, not enabled/built CVE-2020-0431 (In kbd_keycode of keyboard.c, there is a possible out of bounds write ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f9a3883c35763ca461ff3557062f8a0a50480df -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f9a3883c35763ca461ff3557062f8a0a50480df You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new kernel issue from Android, staging only
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: fe05c0e9 by Moritz Muehlenhoff at 2020-09-21T12:29:49+02:00 new kernel issue from Android, staging only - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64902,7 +64902,9 @@ CVE-2020-0433 (In blk_mq_queue_tag_busy_iter of blk-mq-tag.c, there is a possibl NOTE: https://git.kernel.org/linus/f5e4d63577026f908a809f22f5fd5a90ea1f NOTE: https://git.kernel.org/linus/530ca2c9bd6949c72c9b5cfc330cb3dbccaa3f5b CVE-2020-0432 (In skb_to_mamac of networking.c, there is a possible out of bounds wri ...) - TODO: check + - linux 5.6.7-1 (unimportant) + NOTE: https://git.kernel.org/linus/4d1356ac12f4d5180d0df345d85ff0ee42b89c72 + NOTE: Staging driver, not enabled/built CVE-2020-0431 (In kbd_keycode of keyboard.c, there is a possible out of bounds write ...) TODO: check CVE-2020-0430 (In skb_headlen of /include/linux/skbuff.h, there is a possible out of ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe05c0e9445ad5f87098db94247e807f3922a730 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe05c0e9445ad5f87098db94247e807f3922a730 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] "new" blk-mq issue, already fixed in all brances
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 0a8bebd7 by Moritz Muehlenhoff at 2020-09-21T12:21:53+02:00 new blk-mq issue, already fixed in all brances NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64894,9 +64894,13 @@ CVE-2020-0435 (In inline_data_addr of f2fs.h, there is a possible out of bounds NOTE: https://android.googlesource.com/kernel/common/+/d7d9d29a837358636e12fe09c90a7882b53b2220 NOTE: https://source.android.com/security/bulletin/pixel/2020-09-01 CVE-2020-0434 (In Pixel's use of the Catpipe library, there is possible memory corrup ...) - TODO: check + NOT-FOR-US: Catpipe CVE-2020-0433 (In blk_mq_queue_tag_busy_iter of blk-mq-tag.c, there is a possible use ...) - TODO: check + - linux 4.19.9-1 + [stretch] - linux 4.9.228-1 + NOTE: https://source.android.com/security/bulletin/pixel/2020-09-01 + NOTE: https://git.kernel.org/linus/f5e4d63577026f908a809f22f5fd5a90ea1f + NOTE: https://git.kernel.org/linus/530ca2c9bd6949c72c9b5cfc330cb3dbccaa3f5b CVE-2020-0432 (In skb_to_mamac of networking.c, there is a possible out of bounds wri ...) TODO: check CVE-2020-0431 (In kbd_keycode of keyboard.c, there is a possible out of bounds write ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a8bebd713ac73f6ccc1bba9150b4f185a93054c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a8bebd713ac73f6ccc1bba9150b4f185a93054c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim kleopatra.
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker Commits: 70d35e0a by Chris Lamb at 2020-09-21T10:48:05+01:00 data/dla-needed.txt: Claim kleopatra. - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -90,7 +90,7 @@ guacamole-client jupyter-notebook NOTE: 20200711: Vulnerable to (at least) CVE-2018-19351. (lamby) -- -kleopatra +kleopatra (Chris Lamb) -- lemonldap-ng NOTE: 20200910: Released a DLA for CVE-2020-24660 a few days ago, so could defer. (lamby) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/70d35e0ad6c67d7e040e7160731786117194e427 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/70d35e0ad6c67d7e040e7160731786117194e427 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new linux issue from Android
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 1864a9e4 by Moritz Muehlenhoff at 2020-09-21T11:35:37+02:00 new linux issue from Android - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -64889,7 +64889,10 @@ CVE-2020-0437 CVE-2020-0436 RESERVED CVE-2020-0435 (In inline_data_addr of f2fs.h, there is a possible out of bounds write ...) - TODO: check + - linux 5.2.6-1 + NOTE: git.kernel.org/linus/dd6c89b5f2b93ceced4111e7b69d4efd8c312713 + NOTE: https://android.googlesource.com/kernel/common/+/d7d9d29a837358636e12fe09c90a7882b53b2220 + NOTE: https://source.android.com/security/bulletin/pixel/2020-09-01 CVE-2020-0434 (In Pixel's use of the Catpipe library, there is possible memory corrup ...) TODO: check CVE-2020-0433 (In blk_mq_queue_tag_busy_iter of blk-mq-tag.c, there is a possible use ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1864a9e44f6aa1414f9c64d8a5a67370fcc16d5e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1864a9e44f6aa1414f9c64d8a5a67370fcc16d5e You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] NFUs (issues affecting src:gradle are listed at...
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: aa0b3060 by Moritz Muehlenhoff at 2020-09-21T11:29:52+02:00 NFUs (issues affecting src:gradle are listed at https://github.com/gradle/gradle/security/advisories) - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -20599,25 +20599,25 @@ CVE-2020-15778 (scp in OpenSSH through 8.3p1 allows command injection in scp.c r CVE-2020-15777 (An issue was discovered in the Maven Extension plugin before 1.6 for G ...) NOT-FOR-US: Maven Extension plugin for Gradle Enterprise CVE-2020-15776 (An issue was discovered in Gradle Enterprise 2018.2 - 2020.2.4. CSRF m ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15775 (An issue was discovered in Gradle Enterprise 2017.1 - 2020.2.4. Unrest ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15774 (An issue was discovered in Gradle Enterprise 2018.5 - 2020.2.4. Becaus ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15773 (An issue was discovered in Gradle Enterprise before 2020.2.4. Because ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15772 (An issue was discovered in Gradle Enterprise 2018.5 - 2020.2.4. There ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15771 (An issue was discovered in Gradle Enterprise 2018.2 and Gradle Enterpr ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15770 (An issue was discovered in Gradle Enterprise 2018.5. There is a lack o ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15769 (An issue was discovered in Gradle Enterprise 2020.2 - 2020.2.4. An XSS ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15768 (An issue was discovered in Gradle Enterprise 2017.3 - 2020.2.4 and Gra ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15767 (An issue was discovered in Gradle Enterprise before 2020.2.5. Lack of ...) - TODO: check + NOT-FOR-US: Gradle Enterprise CVE-2020-15766 RESERVED CVE-2020-15765 @@ -26982,7 +26982,7 @@ CVE-2019-20803 (Gila CMS before 1.11.6 has reflected XSS via the admin/content/p NOT-FOR-US: Gila CMS CVE-2018-21234 (Jodd before 5.0.4 performs Deserialization of Untrusted JSON Data when ...) - jodd (bug #961298) - [buster] - jodd (Minor issue) + [buster] - jodd (Minor issue; upstream fix needs changes in rdeps and none present in Buster) NOTE: https://github.com/oblac/jodd/commit/9bffc3913aeb8472c11bb543243004b4b4376f16 NOTE: https://github.com/oblac/jodd/issues/628 CVE-2017-18868 (Digi XBee 2 devices do not have an effective protection mechanism agai ...) @@ -52131,7 +52131,7 @@ CVE-2019-20094 (An issue was discovered in libsixel 1.8.4. There is a heap-based NOTE: https://github.com/saitoha/libsixel/commit/a18b3789cfd147028403c17fe79a43b169d8f034 CVE-2019-20093 (The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo ...) - libpodofo - [buster] - libpodofo (Minor issue) + [buster] - libpodofo (Minor issue) [stretch] - libpodofo (Minor issue) [jessie] - libpodofo (Minor issue) NOTE: https://sourceforge.net/p/podofo/tickets/75/ View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa0b3060d871cd236263d96925004ad370fe2fbd -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa0b3060d871cd236263d96925004ad370fe2fbd You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] update note of ark
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: 92977402 by Abhijith PA at 2020-09-21T14:48:35+05:30 update note of ark - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -26,6 +26,7 @@ ark NOTE: 20200801: though testing with other PoC's available over internet seems exploitable (abhijith) NOTE: 20200820: pinged upstream for help (abhijith) NOTE: 20200907: patch https://people.debian.org/~abhijith/upload/backport_to_1608.patch crashes (abhijith) + NOTE: 20200921: CLI works but GUI not, It seems the fix is not compatible with the old architecture (abhijith) -- cacti NOTE: 20200529: A patch need to be cooked up. Upstream patch not fit for jessie version (abhijith) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9297740253fd15ececd667bd9d55c704ce5b88c2 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9297740253fd15ececd667bd9d55c704ce5b88c2 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Process three NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 89e38fdd by Salvatore Bonaccorso at 2020-09-21T10:43:52+02:00 Process three NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -24815,13 +24815,13 @@ CVE-2020-14182 CVE-2020-14181 (Affected versions of Atlassian Jira Server and Data Center allow an un ...) NOT-FOR-US: Atlassian CVE-2020-14180 (Affected versions of Atlassian Jira Service Desk Server and Data Cente ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2020-14179 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2020-14178 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) NOT-FOR-US: Atlassian CVE-2020-14177 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) - TODO: check + NOT-FOR-US: Atlassian CVE-2020-14176 RESERVED CVE-2020-14175 (Affected versions of Atlassian Confluence Server and Data Center allow ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89e38fdd3c202a933ffe3c962f0400f459a9d6a3 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89e38fdd3c202a933ffe3c962f0400f459a9d6a3 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] 4 commits: mark CVE-2020-6097 as no-dsa for Stretch
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: 79858139 by Thorsten Alteholz at 2020-09-21T10:38:51+02:00 mark CVE-2020-6097 as no-dsa for Stretch - - - - - aa681846 by Thorsten Alteholz at 2020-09-21T10:38:52+02:00 mark CVE-2020-24750 as no-dsa for Stretch - - - - - 146a0e1b by Thorsten Alteholz at 2020-09-21T10:38:54+02:00 mark CVE-2020-24890 and CVE-2020-24889 as no-dsa for Stretch - - - - - cc8e1cf9 by Thorsten Alteholz at 2020-09-21T10:38:55+02:00 mark CVE-2020-10755 as no-dsa for all affected packages in Stretch - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1960,10 +1960,12 @@ CVE-2020-24891 CVE-2020-24890 (libraw 20.0 has a null pointer dereference vulnerability in parse_tiff ...) - libraw [buster] - libraw (Minor issue) + [stretch] - libraw (Minor issue) NOTE: https://github.com/LibRaw/LibRaw/issues/335 CVE-2020-24889 (A buffer overflow vulnerability in LibRaw version 20.0 LibRaw::Ge ...) - libraw [buster] - libraw (Minor issue) + [stretch] - libraw (Minor issue) NOTE: https://github.com/LibRaw/LibRaw/issues/334 NOTE: https://github.com/LibRaw/LibRaw/commit/78d323ecbe6a9752aee6e97118a76d40704d73ee CVE-2020-24888 @@ -2250,6 +2252,7 @@ CVE-2020-24751 CVE-2020-24750 (FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interact ...) - jackson-databind [buster] - jackson-databind (Minor issue) + [stretch] - jackson-databind (Minor issue) NOTE: https://github.com/FasterXML/jackson-databind/issues/2798 NOTE: Starting from 2.10 series mitigated as Safe Default Typing is enabled by default NOTE: but still an issue when Default Typing is enabled. @@ -35168,6 +35171,7 @@ CVE-2020-10755 (An insecure-credentials flaw was found in all openstack-cinder v [jessie] - cinder (OpenStack component, not supported in jessie LTS) - python-os-brick 3.1.0-1 (low) [buster] - python-os-brick (Minor issue) + [stretch] - python-os-brick (Minor issue) NOTE: https://bugs.launchpad.net/cinder/+bug/1823200 NOTE: https://wiki.openstack.org/wiki/OSSN/OSSN-0086 CVE-2020-10754 (It was found that nmcli, a command line interface to NetworkManager di ...) @@ -46857,6 +46861,7 @@ CVE-2020-6098 (An exploitable denial of service vulnerability exists in the free CVE-2020-6097 (An exploitable denial of service vulnerability exists in the atftpd da ...) - atftp (bug #970066) [buster] - atftp (Minor issue) + [stretch] - atftp (Minor issue) NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1029 CVE-2020-6096 (An exploitable signed comparison vulnerability exists in the ARMv7 mem ...) - glibc 2.31-2 (low; bug #961452) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/aad7bd76a0dc857cd53395095200b3ded21afe1b...cc8e1cf98ac4db7a58d99aa4965d5008ced90838 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/aad7bd76a0dc857cd53395095200b3ded21afe1b...cc8e1cf98ac4db7a58d99aa4965d5008ced90838 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Cleanup no-dsa tagged entries which got an update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: aad7bd76 by Salvatore Bonaccorso at 2020-09-21T10:35:26+02:00 Cleanup no-dsa tagged entries which got an update Those should be removed for consistency. - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -115215,17 +115215,14 @@ CVE-2018-19873 (An issue was discovered in Qt before 5.11.3. QBmpHandler has a b [experimental] - qtbase-opensource-src 5.11.3+dfsg-1 - qtbase-opensource-src 5.11.3+dfsg-2 (low) - qt4-x11 4:4.8.7+dfsg-18 (low; bug #923003) - [stretch] - qt4-x11 (Minor issue) NOTE: https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/ NOTE: https://codereview.qt-project.org/#/c/238749/ NOTE: https://github.com/qt/qtbase/commit/621ab8ab59901cc3f9bd98be709929c9eac997a8 CVE-2018-19872 (An issue was discovered in Qt 5.11. A malformed PPM image causes a div ...) {DLA-2377-1 DLA-2376-1} - qtbase-opensource-src 5.11.2+dfsg-3 (low) - [stretch] - qtbase-opensource-src (Minor issue) [jessie] - qtbase-opensource-src (Minor issue) - qt4-x11 4:4.8.7+dfsg-18 - [stretch] - qt4-x11 (Minor issue) [jessie] - qt4-x11 (Minor issue) NOTE: https://bugreports.qt.io/browse/QTBUG-69449 NOTE: qt4-x11: POC doesn't crash on neither jessie nor stretch, it's possibly incomplete; patch applies though. @@ -115235,7 +115232,6 @@ CVE-2018-19871 (An issue was discovered in Qt before 5.11.3. There is QTgaFile U [stretch] - qtimageformats-opensource-src (Minor issue) [jessie] - qtimageformats-opensource-src (Minor issue) - qt4-x11 4:4.8.7+dfsg-18 (low; bug #923003) - [stretch] - qt4-x11 (Minor issue) NOTE: https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/ NOTE: https://codereview.qt-project.org/#/c/237761/ NOTE: qt4-x11 affected in src/plugins/imageformats/tga/qtgafile.cpp @@ -115245,7 +115241,6 @@ CVE-2018-19870 (An issue was discovered in Qt before 5.11.3. A malformed GIF ima [experimental] - qtbase-opensource-src 5.11.3+dfsg-1 - qtbase-opensource-src 5.11.3+dfsg-2 (low) - qt4-x11 4:4.8.7+dfsg-18 (low; bug #923003) - [stretch] - qt4-x11 (Minor issue) NOTE: https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/ NOTE: https://codereview.qt-project.org/#/c/235998/ NOTE: affected code can be in src/gui/image/qgifhandler.cpp or in @@ -115255,7 +115250,6 @@ CVE-2018-19869 (An issue was discovered in Qt before 5.11.3. A malformed SVG ima {DLA-2377-1 DLA-1786-1} [experimental] - qtsvg-opensource-src 5.11.3-1 - qtsvg-opensource-src 5.11.3-2 (low) - [stretch] - qtsvg-opensource-src (Minor issue) [jessie] - qtsvg-opensource-src (Minor issue) - qt4-x11 4:4.8.7+dfsg-18 (low) [stretch] - qt4-x11 (Minor issue) @@ -130035,7 +130029,6 @@ CVE-2018-15518 (QXmlStream in Qt 5.x before 5.11.3 has a double-free or corrupti [experimental] - qtbase-opensource-src 5.11.3+dfsg-1 - qtbase-opensource-src 5.11.3+dfsg-2 - qt4-x11 4:4.8.7+dfsg-18 (low) - [stretch] - qt4-x11 (Minor issue) NOTE: https://blog.qt.io/blog/2018/12/04/qt-5-11-3-released-important-security-updates/ NOTE: https://codereview.qt-project.org/#/c/236691/ CVE-2018-15517 (The MailConnect feature on D-Link Central WiFiManager CWM-100 1.03 r00 ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aad7bd76a0dc857cd53395095200b3ded21afe1b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aad7bd76a0dc857cd53395095200b3ded21afe1b You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: cb911dd8 by security tracker role at 2020-09-21T08:10:16+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -16841,6 +16841,7 @@ CVE-2020-17509 CVE-2020-17508 RESERVED CVE-2020-17507 (An issue was discovered in Qt through 5.12.9, and 5.13.x through 5.15. ...) + {DLA-2377-1 DLA-2376-1} - qtbase-opensource-src 5.14.2+dfsg-6 (bug #968444) [buster] - qtbase-opensource-src (Minor issue) - qt4-x11 (bug #970308) @@ -24810,14 +24811,14 @@ CVE-2020-14182 RESERVED CVE-2020-14181 (Affected versions of Atlassian Jira Server and Data Center allow an un ...) NOT-FOR-US: Atlassian -CVE-2020-14180 - RESERVED -CVE-2020-14179 - RESERVED +CVE-2020-14180 (Affected versions of Atlassian Jira Service Desk Server and Data Cente ...) + TODO: check +CVE-2020-14179 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) + TODO: check CVE-2020-14178 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) NOT-FOR-US: Atlassian -CVE-2020-14177 - RESERVED +CVE-2020-14177 (Affected versions of Atlassian Jira Server and Data Center allow remot ...) + TODO: check CVE-2020-14176 RESERVED CVE-2020-14175 (Affected versions of Atlassian Confluence Server and Data Center allow ...) @@ -115210,7 +115211,7 @@ CVE-2018-19875 CVE-2018-19874 RESERVED CVE-2018-19873 (An issue was discovered in Qt before 5.11.3. QBmpHandler has a buffer ...) - {DSA-4374-1 DLA-1786-1 DLA-1627-1} + {DSA-4374-1 DLA-2377-1 DLA-1786-1 DLA-1627-1} [experimental] - qtbase-opensource-src 5.11.3+dfsg-1 - qtbase-opensource-src 5.11.3+dfsg-2 (low) - qt4-x11 4:4.8.7+dfsg-18 (low; bug #923003) @@ -115219,6 +115220,7 @@ CVE-2018-19873 (An issue was discovered in Qt before 5.11.3. QBmpHandler has a b NOTE: https://codereview.qt-project.org/#/c/238749/ NOTE: https://github.com/qt/qtbase/commit/621ab8ab59901cc3f9bd98be709929c9eac997a8 CVE-2018-19872 (An issue was discovered in Qt 5.11. A malformed PPM image causes a div ...) + {DLA-2377-1 DLA-2376-1} - qtbase-opensource-src 5.11.2+dfsg-3 (low) [stretch] - qtbase-opensource-src (Minor issue) [jessie] - qtbase-opensource-src (Minor issue) @@ -115228,7 +115230,7 @@ CVE-2018-19872 (An issue was discovered in Qt 5.11. A malformed PPM image causes NOTE: https://bugreports.qt.io/browse/QTBUG-69449 NOTE: qt4-x11: POC doesn't crash on neither jessie nor stretch, it's possibly incomplete; patch applies though. CVE-2018-19871 (An issue was discovered in Qt before 5.11.3. There is QTgaFile Uncontr ...) - {DLA-1786-1} + {DLA-2377-1 DLA-1786-1} - qtimageformats-opensource-src 5.11.3-2 (low) [stretch] - qtimageformats-opensource-src (Minor issue) [jessie] - qtimageformats-opensource-src (Minor issue) @@ -115239,7 +115241,7 @@ CVE-2018-19871 (An issue was discovered in Qt before 5.11.3. There is QTgaFile U NOTE: qt4-x11 affected in src/plugins/imageformats/tga/qtgafile.cpp NOTE: https://github.com/qt/qtimageformats/commit/7cfe47a8fe2f987fb2a066a696fb3d9d0afe4d65 CVE-2018-19870 (An issue was discovered in Qt before 5.11.3. A malformed GIF image cau ...) - {DSA-4374-1 DLA-1786-1 DLA-1627-1} + {DSA-4374-1 DLA-2377-1 DLA-1786-1 DLA-1627-1} [experimental] - qtbase-opensource-src 5.11.3+dfsg-1 - qtbase-opensource-src 5.11.3+dfsg-2 (low) - qt4-x11 4:4.8.7+dfsg-18 (low; bug #923003) @@ -115250,7 +115252,7 @@ CVE-2018-19870 (An issue was discovered in Qt before 5.11.3. A malformed GIF ima NOTE: src/plugins/imageformats/gif/qgifhandler.cpp depending on the version NOTE: https://github.com/qt/qtbase/commit/2841e2b61e32f26900bde987d469c8b97ea31999 CVE-2018-19869 (An issue was discovered in Qt before 5.11.3. A malformed SVG image cau ...) - {DLA-1786-1} + {DLA-2377-1 DLA-1786-1} [experimental] - qtsvg-opensource-src 5.11.3-1 - qtsvg-opensource-src 5.11.3-2 (low) [stretch] - qtsvg-opensource-src (Minor issue) @@ -130029,7 +130031,7 @@ CVE-2018-15520 (Various Lexmark devices have a Buffer Overflow (issue 2 of 2). . CVE-2018-15519 (Various Lexmark devices have a Buffer Overflow (issue 1 of 2). ...) NOT-FOR-US: Lexmark devices CVE-2018-15518 (QXmlStream in Qt 5.x before 5.11.3 has a double-free or corruption dur ...) - {DSA-4374-1 DLA-1786-1 DLA-1627-1} + {DSA-4374-1 DLA-2377-1 DLA-1786-1 DLA-1627-1} [experimental] - qtbase-opensource-src 5.11.3+dfsg-1 - qtbase-opensource-src 5.11.3+dfsg-2 - qt4-x11 4:4.8.7+dfsg-18 (low) View it on GitLab:
[Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen pushed to branch master at Debian Security Tracker / security-tracker Commits: 848c64bc by Holger Levsen at 2020-09-21T09:02:01+02:00 semi-automatic unclaim after 2 weeks of inactivity Signed-off-by: Holger Levsen hol...@layer-acht.org - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -21,7 +21,7 @@ ansible NOTE: 20200508: bam: Upstream fix was reverted - https://github.com/ansible/ansible/pull/68983 NOTE: 20200508: bam: See https://github.com/ansible/ansible/issues/67794 -- -ark (Abhijith PA) +ark NOTE: 20200731: given PoC not working as intended. (abhijith) NOTE: 20200801: though testing with other PoC's available over internet seems exploitable (abhijith) NOTE: 20200820: pinged upstream for help (abhijith) @@ -84,7 +84,7 @@ golang-go.crypto -- golang-golang-x-net-dev -- -guacamole-client (Mike Gabriel) +guacamole-client -- jupyter-notebook NOTE: 20200711: Vulnerable to (at least) CVE-2018-19351. (lamby) @@ -166,7 +166,7 @@ ruby-rack-cors (Utkarsh) NOTE: 20200817: Was fixed in DLA-2096-1 for jessie LTS but is now re-vulnerable again in stretch LTS AFAICT. (lamby) NOTE: 20200914: problems in reproducing. will investigate in sometime. (utkarsh) -- -samba (Mike Gabriel) +samba NOTE: 20200703: Check with security team so that there's no clash for Stretch update. (utkarsh) NOTE: 20200801: Stretch update already released, so no conflict. (roberto) NOTE: 20200801: Patches for CVE-2020-14303, CVE-2020-10760, CVE-2020-10745, and CVE-2020-10740, are ready. (roberto) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/848c64bcc5de687d76ac5f425130fce2620e8c0d -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/848c64bcc5de687d76ac5f425130fce2620e8c0d You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits