diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2021-04-02 20:10:36 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2021-04-02 20:10:36 +0000 |
| commit | 58bf2556d70115e52e9e3ee7860423aeaf3fbb54 (patch) | |
| tree | 28689d89c693b2292225f3f470cf933c02871106 /data/CVE/2020.list | |
| parent | ef5298cf983c76f6676cb9571e750d303f0abcc5 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2020.list')
| -rw-r--r-- | data/CVE/2020.list | 268 |
1 files changed, 133 insertions, 135 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list index c45bbd11f1..f8580116ca 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -2980,8 +2980,8 @@ CVE-2020-29641 RESERVED CVE-2020-29640 RESERVED -CVE-2020-29639 - RESERVED +CVE-2020-29639 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check CVE-2020-29638 RESERVED CVE-2020-29637 @@ -2992,8 +2992,8 @@ CVE-2020-29635 RESERVED CVE-2020-29634 RESERVED -CVE-2020-29633 - RESERVED +CVE-2020-29633 (An authentication issue was addressed with improved state management. ...) + TODO: check CVE-2020-29632 RESERVED CVE-2020-29631 @@ -3008,12 +3008,11 @@ CVE-2020-29627 RESERVED CVE-2020-29626 RESERVED -CVE-2020-29625 - RESERVED -CVE-2020-29624 - RESERVED -CVE-2020-29623 - RESERVED +CVE-2020-29625 (This issue was addressed with improved checks. This issue is fixed in ...) + TODO: check +CVE-2020-29624 (A memory corruption issue existed in the processing of font files. Thi ...) + TODO: check +CVE-2020-29623 ("Clear History and Website Data" did not clear the history. The issue ...) {DSA-4877-1} - webkit2gtk 2.30.6-1 [stretch] - webkit2gtk <ignored> (Not covered by security support in stretch) @@ -3021,34 +3020,34 @@ CVE-2020-29623 NOTE: https://webkitgtk.org/security/WSA-2021-0002.html CVE-2020-29622 RESERVED -CVE-2020-29621 - RESERVED -CVE-2020-29620 - RESERVED -CVE-2020-29619 - RESERVED -CVE-2020-29618 - RESERVED -CVE-2020-29617 - RESERVED -CVE-2020-29616 - RESERVED -CVE-2020-29615 - RESERVED -CVE-2020-29614 - RESERVED -CVE-2020-29613 - RESERVED -CVE-2020-29612 - RESERVED -CVE-2020-29611 - RESERVED -CVE-2020-29610 - RESERVED +CVE-2020-29621 (This issue was addressed with improved checks. This issue is fixed in ...) + TODO: check +CVE-2020-29620 (This issue was addressed with improved entitlements. This issue is fix ...) + TODO: check +CVE-2020-29619 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check +CVE-2020-29618 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check +CVE-2020-29617 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check +CVE-2020-29616 (A memory corruption issue was addressed with improved input validation ...) + TODO: check +CVE-2020-29615 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check +CVE-2020-29614 (This issue was addressed with improved checks. This issue is fixed in ...) + TODO: check +CVE-2020-29613 (A logic issue was addressed with improved state management. This issue ...) + TODO: check +CVE-2020-29612 (An out-of-bounds write issue was addressed with improved bounds checki ...) + TODO: check +CVE-2020-29611 (An out-of-bounds write issue was addressed with improved bounds checki ...) + TODO: check +CVE-2020-29610 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check CVE-2020-29609 RESERVED -CVE-2020-29608 - RESERVED +CVE-2020-29608 (An out-of-bounds read was addressed with improved bounds checking. Thi ...) + TODO: check CVE-2020-29607 (A file upload restriction bypass vulnerability in Pluck CMS before 4.7 ...) NOT-FOR-US: Pluck CMS CVE-2020-35921 (An issue was discovered in the miow crate before 0.3.6 for Rust. It ha ...) @@ -6856,50 +6855,50 @@ CVE-2020-27954 RESERVED CVE-2020-27953 RESERVED -CVE-2020-27952 - RESERVED -CVE-2020-27951 - RESERVED +CVE-2020-27952 (An out-of-bounds write was addressed with improved input validation. T ...) + TODO: check +CVE-2020-27951 (This issue was addressed with improved checks. This issue is fixed in ...) + TODO: check CVE-2020-27950 (A memory initialization issue was addressed. This issue is fixed in ma ...) NOT-FOR-US: Apple -CVE-2020-27949 - RESERVED -CVE-2020-27948 - RESERVED -CVE-2020-27947 - RESERVED -CVE-2020-27946 - RESERVED -CVE-2020-27945 - RESERVED -CVE-2020-27944 - RESERVED -CVE-2020-27943 - RESERVED +CVE-2020-27949 (This issue was addressed with improved checks to prevent unauthorized ...) + TODO: check +CVE-2020-27948 (An out-of-bounds write issue was addressed with improved bounds checki ...) + TODO: check +CVE-2020-27947 (A memory corruption issue was addressed with improved input validation ...) + TODO: check +CVE-2020-27946 (An information disclosure issue was addressed with improved state mana ...) + TODO: check +CVE-2020-27945 (An integer overflow was addressed with improved input validation. This ...) + TODO: check +CVE-2020-27944 (A memory corruption issue existed in the processing of font files. Thi ...) + TODO: check +CVE-2020-27943 (A memory corruption issue existed in the processing of font files. Thi ...) + TODO: check CVE-2020-27942 RESERVED -CVE-2020-27941 - RESERVED +CVE-2020-27941 (A validation issue was addressed with improved logic. This issue is fi ...) + TODO: check CVE-2020-27940 RESERVED -CVE-2020-27939 - RESERVED -CVE-2020-27938 - RESERVED -CVE-2020-27937 - RESERVED -CVE-2020-27936 - RESERVED -CVE-2020-27935 - RESERVED +CVE-2020-27939 (This issue was addressed with improved checks. This issue is fixed in ...) + TODO: check +CVE-2020-27938 (A logic issue was addressed with improved state management. This issue ...) + TODO: check +CVE-2020-27937 (A logic issue was addressed with improved state management. This issue ...) + TODO: check +CVE-2020-27936 (An out-of-bounds read issue existed that led to the disclosure of kern ...) + TODO: check +CVE-2020-27935 (Multiple issues were addressed with improved logic. This issue is fixe ...) + TODO: check CVE-2020-27934 RESERVED -CVE-2020-27933 - RESERVED +CVE-2020-27933 (A memory corruption issue was addressed with improved input validation ...) + TODO: check CVE-2020-27932 (A type confusion issue was addressed with improved state handling. Thi ...) NOT-FOR-US: Apple -CVE-2020-27931 - RESERVED +CVE-2020-27931 (A memory corruption issue existed in the processing of font files. Thi ...) + TODO: check CVE-2020-27930 (A memory corruption issue was addressed with improved input validation ...) NOT-FOR-US: Apple CVE-2020-27929 (A logic issue existed in the handling of Group FaceTime calls. The iss ...) @@ -6912,18 +6911,18 @@ CVE-2020-27926 (A use after free issue was addressed with improved memory manage NOT-FOR-US: Apple CVE-2020-27925 (An issue existed in the handling of incoming calls. The issue was addr ...) NOT-FOR-US: Apple -CVE-2020-27924 - RESERVED -CVE-2020-27923 - RESERVED -CVE-2020-27922 - RESERVED -CVE-2020-27921 - RESERVED -CVE-2020-27920 - RESERVED -CVE-2020-27919 - RESERVED +CVE-2020-27924 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check +CVE-2020-27923 (An out-of-bounds write was addressed with improved input validation. T ...) + TODO: check +CVE-2020-27922 (A logic issue was addressed with improved state management. This issue ...) + TODO: check +CVE-2020-27921 (A race condition was addressed with improved state handling. This issu ...) + TODO: check +CVE-2020-27920 (A use after free issue was addressed with improved memory management. ...) + TODO: check +CVE-2020-27919 (An out-of-bounds write was addressed with improved input validation. T ...) + TODO: check CVE-2020-27918 (A use after free issue was addressed with improved memory management. ...) {DSA-4877-1} - webkit2gtk 2.30.6-1 @@ -6934,10 +6933,10 @@ CVE-2020-27917 (A use after free issue was addressed with improved memory manage NOT-FOR-US: Apple CVE-2020-27916 (An out-of-bounds write was addressed with improved input validation. T ...) NOT-FOR-US: Apple -CVE-2020-27915 - RESERVED -CVE-2020-27914 - RESERVED +CVE-2020-27915 (A memory corruption issue was addressed with improved input validation ...) + TODO: check +CVE-2020-27914 (A memory corruption issue was addressed with improved input validation ...) + TODO: check CVE-2020-27913 RESERVED CVE-2020-27912 (An out-of-bounds write was addressed with improved input validation. T ...) @@ -6948,10 +6947,10 @@ CVE-2020-27910 (An out-of-bounds read was addressed with improved input validati NOT-FOR-US: Apple CVE-2020-27909 (An out-of-bounds read was addressed with improved input validation. Th ...) NOT-FOR-US: Apple -CVE-2020-27908 - RESERVED -CVE-2020-27907 - RESERVED +CVE-2020-27908 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check +CVE-2020-27907 (A memory corruption issue was addressed with improved memory handling. ...) + TODO: check CVE-2020-27906 (Multiple integer overflows were addressed with improved input validati ...) NOT-FOR-US: Apple CVE-2020-27905 (A memory corruption issue was addressed with improved state management ...) @@ -6962,24 +6961,24 @@ CVE-2020-27903 (This issue was addressed by removing the vulnerable code. This i NOT-FOR-US: Apple CVE-2020-27902 (An authentication issue was addressed with improved state management. ...) NOT-FOR-US: Apple -CVE-2020-27901 - RESERVED +CVE-2020-27901 (A logic issue was addressed with improved restrictions. This issue is ...) + TODO: check CVE-2020-27900 (An issue existed in the handling of snapshots. The issue was resolved ...) NOT-FOR-US: Apple -CVE-2020-27899 - RESERVED +CVE-2020-27899 (A use after free issue was addressed with improved memory management. ...) + TODO: check CVE-2020-27898 (A denial of service issue was addressed with improved state handling. ...) NOT-FOR-US: Apple -CVE-2020-27897 - RESERVED +CVE-2020-27897 (An out-of-bounds write issue was addressed with improved bounds checki ...) + TODO: check CVE-2020-27896 (A path handling issue was addressed with improved validation. This iss ...) NOT-FOR-US: Apple CVE-2020-27895 (An information disclosure issue existed in the transition of program s ...) NOT-FOR-US: Apple CVE-2020-27894 (The issue was addressed with additional user controls. This issue is f ...) NOT-FOR-US: Apple -CVE-2020-27893 - RESERVED +CVE-2020-27893 (An issue existed in screen sharing. This issue was addressed with impr ...) + TODO: check CVE-2020-27892 (The Zigbee protocol implementation on Texas Instruments CC2538 devices ...) NOT-FOR-US: Texas Instruments CC2538 devices CVE-2020-27891 (The Zigbee protocol implementation on Texas Instruments CC2538 devices ...) @@ -43030,14 +43029,14 @@ CVE-2020-11927 RESERVED CVE-2020-11926 RESERVED -CVE-2020-11925 - RESERVED -CVE-2020-11924 - RESERVED -CVE-2020-11923 - RESERVED -CVE-2020-11922 - RESERVED +CVE-2020-11925 (An issue was discovered in Luvion Grand Elite 3 Connect through 2020-0 ...) + TODO: check +CVE-2020-11924 (An issue was discovered in WiZ Colors A60 1.14.0. Wi-Fi credentials ar ...) + TODO: check +CVE-2020-11923 (An issue was discovered in WiZ Colors A60 1.14.0. API credentials are ...) + TODO: check +CVE-2020-11922 (An issue was discovered in WiZ Colors A60 1.14.0. The device sends unn ...) + TODO: check CVE-2020-11921 RESERVED CVE-2020-11920 (An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3. ...) @@ -46573,7 +46572,7 @@ CVE-2020-10644 (The affected product lacks proper validation of user-supplied da NOT-FOR-US: Inductive Automation Ignition CVE-2020-10643 (An authenticated remote attacker could use specially crafted URLs to s ...) NOT-FOR-US: PI Vision -CVE-2020-10642 (In Rockwell Automation RSLinx Classic versions 4.1.00 and prior, an au ...) +CVE-2020-10642 (In Rockwell Automation RSLinx Classic versions 4.11.00 and prior, an a ...) NOT-FOR-US: Rockwell CVE-2020-10641 (An unprotected logging route may allow an attacker to write endless lo ...) NOT-FOR-US: Inductive Automation @@ -47948,8 +47947,8 @@ CVE-2020-9997 (An information disclosure issue was addressed with improved state NOT-FOR-US: Apple CVE-2020-9996 (A use after free issue was addressed with improved memory management. ...) NOT-FOR-US: Apple -CVE-2020-9995 - RESERVED +CVE-2020-9995 (An issue existed in the parsing of URLs. This issue was addressed with ...) + TODO: check CVE-2020-9994 (A path handling issue was addressed with improved validation. This iss ...) NOT-FOR-US: Apple CVE-2020-9993 (The issue was addressed with improved UI handling. This issue is fixed ...) @@ -47988,30 +47987,30 @@ CVE-2020-9980 (An out-of-bounds write issue was addressed with improved bounds c NOT-FOR-US: Apple CVE-2020-9979 (A trust issue was addressed by removing a legacy API. This issue is fi ...) NOT-FOR-US: Apple -CVE-2020-9978 - RESERVED +CVE-2020-9978 (This issue was addressed with improved setting propagation. This issue ...) + TODO: check CVE-2020-9977 (A validation issue existed in the entitlement verification. This issue ...) NOT-FOR-US: Apple CVE-2020-9976 (A logic issue was addressed with improved state management. This issue ...) NOT-FOR-US: Apple -CVE-2020-9975 - RESERVED +CVE-2020-9975 (A use after free issue was addressed with improved memory management. ...) + TODO: check CVE-2020-9974 (A logic issue was addressed with improved state management. This issue ...) NOT-FOR-US: Apple CVE-2020-9973 (An out-of-bounds read was addressed with improved bounds checking. Thi ...) NOT-FOR-US: Apple CVE-2020-9972 (A buffer overflow issue was addressed with improved memory handling. T ...) NOT-FOR-US: Apple -CVE-2020-9971 - RESERVED +CVE-2020-9971 (A logic issue was addressed with improved validation. This issue is fi ...) + TODO: check CVE-2020-9970 RESERVED CVE-2020-9969 (An access issue was addressed with additional sandbox restrictions. Th ...) NOT-FOR-US: Apple CVE-2020-9968 (A logic issue was addressed with improved restrictions. This issue is ...) NOT-FOR-US: Apple -CVE-2020-9967 - RESERVED +CVE-2020-9967 (Multiple memory corruption issues were addressed with improved input v ...) + TODO: check CVE-2020-9966 (An out-of-bounds read was addressed with improved input validation. Th ...) NOT-FOR-US: Apple CVE-2020-9965 (An out-of-bounds read was addressed with improved input validation. Th ...) @@ -48020,22 +48019,22 @@ CVE-2020-9964 (A memory initialization issue was addressed with improved memory NOT-FOR-US: Apple CVE-2020-9963 (The issue was addressed with improved handling of icon caches. This is ...) NOT-FOR-US: Apple -CVE-2020-9962 - RESERVED +CVE-2020-9962 (A buffer overflow was addressed with improved size validation. This is ...) + TODO: check CVE-2020-9961 (An out-of-bounds read was addressed with improved input validation. Th ...) NOT-FOR-US: Apple -CVE-2020-9960 - RESERVED +CVE-2020-9960 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check CVE-2020-9959 (A lock screen issue allowed access to messages on a locked device. Thi ...) NOT-FOR-US: Apple CVE-2020-9958 (An out-of-bounds write issue was addressed with improved bounds checki ...) NOT-FOR-US: Apple CVE-2020-9957 RESERVED -CVE-2020-9956 - RESERVED -CVE-2020-9955 - RESERVED +CVE-2020-9956 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check +CVE-2020-9955 (An out-of-bounds write issue was addressed with improved bounds checki ...) + TODO: check CVE-2020-9954 (A buffer overflow issue was addressed with improved memory handling. T ...) NOT-FOR-US: Apple CVE-2020-9953 @@ -48103,16 +48102,16 @@ CVE-2020-9932 (A memory corruption issue was addressed with improved validation. NOT-FOR-US: Apple CVE-2020-9931 (A denial of service issue was addressed with improved input validation ...) NOT-FOR-US: Apple -CVE-2020-9930 - RESERVED +CVE-2020-9930 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check CVE-2020-9929 (A memory corruption issue was addressed with improved memory handling. ...) NOT-FOR-US: Apple CVE-2020-9928 (Multiple memory corruption issues were addressed with improved memory ...) NOT-FOR-US: Apple CVE-2020-9927 (A memory corruption issue was addressed with improved input validation ...) NOT-FOR-US: Apple -CVE-2020-9926 - RESERVED +CVE-2020-9926 (A use after free issue was addressed with improved memory management. ...) + TODO: check CVE-2020-9925 (A logic issue was addressed with improved state management. This issue ...) {DSA-4739-1} - webkit2gtk 2.28.4-1 @@ -48529,8 +48528,8 @@ CVE-2020-10017 (An out-of-bounds write was addressed with improved input validat NOT-FOR-US: Apple CVE-2020-10016 (A memory corruption issue was addressed with improved state management ...) NOT-FOR-US: Apple -CVE-2020-10015 - RESERVED +CVE-2020-10015 (An out-of-bounds write issue was addressed with improved bounds checki ...) + TODO: check CVE-2020-10014 (A parsing issue in the handling of directory paths was addressed with ...) NOT-FOR-US: Apple CVE-2020-10013 (A logic issue was addressed with improved state management. This issue ...) @@ -48543,8 +48542,8 @@ CVE-2020-10010 (A path handling issue was addressed with improved validation. Th NOT-FOR-US: Apple CVE-2020-10009 (A logic issue was addressed with improved state management. This issue ...) NOT-FOR-US: Apple -CVE-2020-10008 - RESERVED +CVE-2020-10008 (A logic issue was addressed with improved restrictions. This issue is ...) + TODO: check CVE-2020-10007 (A logic issue was addressed with improved state management. This issue ...) NOT-FOR-US: Apple CVE-2020-10006 (This issue was addressed with improved entitlements. This issue is fix ...) @@ -48557,8 +48556,7 @@ CVE-2020-10003 (An issue existed within the path validation logic for symlinks. NOT-FOR-US: Apple CVE-2020-10002 (A logic issue was addressed with improved state management. This issue ...) NOT-FOR-US: Apple -CVE-2020-10001 [buffer (read) overflow in the ippReadIO function] - RESERVED +CVE-2020-10001 (An input validation issue was addressed with improved memory handling. ...) - cups 2.3.3op2-1 [buster] - cups <no-dsa> (Minor issue) [stretch] - cups <no-dsa> (Minor issue) |