diff options
author | security tracker role <sectracker@soriano.debian.org> | 2022-02-18 20:10:22 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2022-02-18 20:10:22 +0000 |
commit | 7d151558ef36947c4bd09680c0938bf4f1646d0e (patch) | |
tree | 2ddb90539fde384e0960d3a490c2918473a85f0b /data/CVE/list.2020 | |
parent | 6718ba9e307555d3827ad71320b36086732a395e (diff) |
automatic update
Diffstat (limited to 'data/CVE/list.2020')
-rw-r--r-- | data/CVE/list.2020 | 20 |
1 files changed, 8 insertions, 12 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020 index 60cebc2cb5..e7adfd5490 100644 --- a/data/CVE/list.2020 +++ b/data/CVE/list.2020 @@ -12992,8 +12992,7 @@ CVE-2020-25723 (A reachable assertion issue was found in the USB EHCI emulation - qemu 1:5.2+dfsg-1 (bug #975276) [buster] - qemu <postponed> (Fix along in future DSA) NOTE: https://git.qemu.org/?p=qemu.git;a=commit;h=2fdb42d840400d58f2e706ecca82c142b97bcbd6 (v5.2.0-rc0) -CVE-2020-25722 [AD DC UPN vs samAccountName not checked] - RESERVED +CVE-2020-25722 (Multiple flaws were found in the way samba AD DC implemented access an ...) {DSA-5003-1} - samba 2:4.13.14+dfsg-1 [buster] - samba <ignored> (Intrusive backport; affects Samba as AD DC) @@ -13010,24 +13009,21 @@ CVE-2020-25721 [[Kerberos acceptors need easy access to stable AD identifiers (e NOTE: https://www.samba.org/samba/security/CVE-2020-25721.html CVE-2020-25720 RESERVED -CVE-2020-25719 [AD DC Username based races when no PAC is given] - RESERVED +CVE-2020-25719 (A flaw was found in the way Samba, as an Active Directory Domain Contr ...) {DSA-5003-1} - samba 2:4.13.14+dfsg-1 [buster] - samba <ignored> (Intrusive backport; affects Samba as AD DC) NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14561 NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14725 NOTE: https://www.samba.org/samba/security/CVE-2020-25719.html -CVE-2020-25718 [An RODC can issue (forge) administrator tickets to other servers] - RESERVED +CVE-2020-25718 (A flaw was found in the way samba, as an Active Directory Domain Contr ...) {DSA-5003-1} - samba 2:4.13.14+dfsg-1 [buster] - samba <ignored> (Intrusive backport; affects Samba as AD DC) NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14558 NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14725 NOTE: https://www.samba.org/samba/security/CVE-2020-25718.html -CVE-2020-25717 [A user on the domain can become root on domain members] - RESERVED +CVE-2020-25717 (A flaw was found in the way Samba maps domain users to local users. An ...) {DSA-5015-1 DSA-5003-1} - samba 2:4.13.14+dfsg-1 NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14556 @@ -53954,8 +53950,8 @@ CVE-2020-8244 (A buffer over-read vulnerability exists in bl <4.0.3, <3.0. NOTE: https://github.com/rvagg/bl/commit/d3e240e3b8ba4048d3c76ef5fb9dd1f8872d3190 CVE-2020-8243 (A vulnerability in the Pulse Connect Secure < 9.1R8.2 admin web int ...) NOT-FOR-US: Pulse Connect Secure -CVE-2020-8242 - RESERVED +CVE-2020-8242 (Unsanitized user input in ExpressionEngine <= 5.4.0 control panel m ...) + TODO: check CVE-2020-8241 (A vulnerability in the Pulse Secure Desktop Client < 9.1R9 could al ...) NOT-FOR-US: Pulse Secure Pulse Connect Secure Desktop Client CVE-2020-8240 (A vulnerability in the Pulse Secure Desktop Client < 9.1R9 allows a ...) @@ -54338,8 +54334,8 @@ CVE-2020-8109 (A vulnerability has been discovered in the ace.xmd parser that re NOT-FOR-US: Bitdefender CVE-2020-8108 (Improper Authentication vulnerability in Bitdefender Endpoint Security ...) NOT-FOR-US: Bitdefender -CVE-2020-8107 - RESERVED +CVE-2020-8107 (A Process Control vulnerability in ProductAgentUI.exe as used in Bitde ...) + TODO: check CVE-2020-8106 REJECTED CVE-2020-8105 (OS Command Injection vulnerability in the wirelessConnect handler of A ...) |