diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2021-10-31 20:10:14 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2021-10-31 20:10:14 +0000 |
| commit | 426a58b4dafd627bb726e9af83e5e1867215abd0 (patch) | |
| tree | a2e62c63ecd58e7497df1213e00d5ffc60a677cc /data/CVE/2020.list | |
| parent | 6c6009180be275eb83e0a0aef845748e4e205c9b (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2020.list')
| -rw-r--r-- | data/CVE/2020.list | 21 |
1 files changed, 13 insertions, 8 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list index a80bb85763..0f3d9d656d 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -12415,10 +12415,10 @@ CVE-2020-25914 RESERVED CVE-2020-25913 RESERVED -CVE-2020-25912 - RESERVED -CVE-2020-25911 - RESERVED +CVE-2020-25912 (A XML External Entity (XXE) vulnerability was discovered in symphony\l ...) + TODO: check +CVE-2020-25911 (A XML External Entity (XXE) vulnerability was discovered in the modRes ...) + TODO: check CVE-2020-25910 RESERVED CVE-2020-25909 @@ -21139,6 +21139,7 @@ CVE-2020-22043 (A Denial of Service vulnerability exists in FFmpeg 4.2 due to a NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=b288a7eb3d963a175e177b6219c8271076ee8590 NOTE: Negligible security impact CVE-2020-22042 (A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...) + {DSA-4998-1} - ffmpeg 7:4.4-5 (unimportant) NOTE: https://trac.ffmpeg.org/ticket/8267 NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=426c16d61a9b5056a157a1a2a057a4e4d13eef84 @@ -21159,7 +21160,7 @@ CVE-2020-22038 (A Denial of Service vulnerability exists in FFmpeg 4.2 due to a NOTE: https://trac.ffmpeg.org/ticket/8285 NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=7c32e9cf93b712f8463573a59ed4e98fd10fa013 CVE-2020-22037 (A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...) - {DSA-4990-1} + {DSA-4998-1 DSA-4990-1} - ffmpeg 7:4.4.1-1 (unimportant) NOTE: https://trac.ffmpeg.org/ticket/8281 NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=7bba0dd6382e30d646cb406034a66199e071d713 @@ -21921,6 +21922,7 @@ CVE-2020-21699 CVE-2020-21698 RESERVED CVE-2020-21697 (A heap-use-after-free in the mpeg_mux_write_packet function in libavfo ...) + {DSA-4998-1} - ffmpeg 7:4.4-5 [buster] - ffmpeg <postponed> (Wait for 4.1.9) NOTE: https://trac.ffmpeg.org/ticket/8188 @@ -21942,6 +21944,7 @@ CVE-2020-21690 CVE-2020-21689 RESERVED CVE-2020-21688 (A heap-use-after-free in the av_freep function in libavutil/mem.c of F ...) + {DSA-4998-1} - ffmpeg 7:4.4-5 [buster] - ffmpeg <postponed> (Wait for 4.1.9) NOTE: https://trac.ffmpeg.org/ticket/8186 @@ -24607,7 +24610,7 @@ CVE-2020-20455 CVE-2020-20454 RESERVED CVE-2020-20453 (FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aaccod ...) - {DSA-4990-1} + {DSA-4998-1 DSA-4990-1} - ffmpeg 7:4.4.1-1 (unimportant) NOTE: https://trac.ffmpeg.org/ticket/8003 NOTE: Negligible security impact @@ -24620,6 +24623,7 @@ CVE-2020-20451 (Denial of Service issue in FFmpeg 4.2 due to resource management NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=21265f42ecb265debe9fec1dbfd0cb7de5a8aefb NOTE: Negligible security impact CVE-2020-20450 (FFmpeg 4.2 is affected by null pointer dereference passed as argument ...) + {DSA-4998-1} [experimental] - ffmpeg 7:4.4-1 - ffmpeg 7:4.4-5 (unimportant) NOTE: https://trac.ffmpeg.org/ticket/7993 @@ -24638,13 +24642,13 @@ CVE-2020-20448 (FFmpeg 4.1.3 is affected by a Divide By Zero issue via libavcode CVE-2020-20447 RESERVED CVE-2020-20446 (FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aacpsy ...) - {DSA-4990-1} + {DSA-4998-1 DSA-4990-1} - ffmpeg 7:4.4.1-1 (unimportant) NOTE: https://trac.ffmpeg.org/ticket/7995 NOTE: Negligible security impact NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/223b5e8ac9f6461bb13ed365419ec485c5b2b002 CVE-2020-20445 (FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/lpc.h, ...) - {DSA-4990-1} + {DSA-4998-1 DSA-4990-1} - ffmpeg <unfixed> (unimportant) NOTE: https://trac.ffmpeg.org/ticket/7996 NOTE: Negligible security impact @@ -27338,6 +27342,7 @@ CVE-2020-19144 (Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a d NOTE: https://gitlab.com/libtiff/libtiff/-/issues/159 NOTE: Fixed around https://gitlab.com/libtiff/libtiff/-/commit/1fb9e731ef3e4ceb7af128ce298adb271088064f (v4.1.0) CVE-2020-19143 (Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial ...) + {DSA-4997-1} - tiff 4.1.0+git201212-1 [stretch] - tiff <not-affected> (Vulnerable code introduced later) NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2851 |