diff options
| author | Moritz Muehlenhoff <jmm@debian.org> | 2020-09-17 10:28:23 +0200 |
|---|---|---|
| committer | Moritz Muehlenhoff <jmm@debian.org> | 2020-09-17 10:28:23 +0200 |
| commit | 70491ec487df4494cb9a0588a55767daced48b58 (patch) | |
| tree | cb627468fa758a71d10588e4e0614e5da03dcada | |
| parent | 61b1d70411cf0c91c120662844fb425470b88d79 (diff) | |
NFUs
libraw no-dsa
| -rw-r--r-- | data/CVE/list.2020 | 14 |
1 files changed, 8 insertions, 6 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020 index ccabbe9be6..f038b06347 100644 --- a/data/CVE/list.2020 +++ b/data/CVE/list.2020 @@ -1743,9 +1743,11 @@ CVE-2020-24891 REJECTED CVE-2020-24890 (libraw 20.0 has a null pointer dereference vulnerability in parse_tiff ...) - libraw <unfixed> + [buster] - libraw <no-dsa> (Minor issue) NOTE: https://github.com/LibRaw/LibRaw/issues/335 CVE-2020-24889 (A buffer overflow vulnerability in LibRaw version < 20.0 LibRaw::Ge ...) - libraw <unfixed> + [buster] - libraw <no-dsa> (Minor issue) NOTE: https://github.com/LibRaw/LibRaw/issues/334 NOTE: https://github.com/LibRaw/LibRaw/commit/78d323ecbe6a9752aee6e97118a76d40704d73ee CVE-2020-24888 @@ -2826,15 +2828,15 @@ CVE-2020-24379 (WebDAV implementation in Yaws web server versions 1.81 to 2.0.7 CVE-2020-24378 RESERVED CVE-2020-24377 (A DNS rebinding vulnerability in the Freebox OS web interface in Freeb ...) - TODO: check + NOT-FOR-US: Freebox CVE-2020-24376 (A DNS rebinding vulnerability in the UPnP IGD implementations in Freeb ...) - TODO: check + NOT-FOR-US: Freebox CVE-2020-24375 RESERVED CVE-2020-24374 (A DNS rebinding vulnerability in Freebox HD before 1.5.29. ...) - TODO: check + NOT-FOR-US: Freebox CVE-2020-24373 (A CSRF vulnerability in the UPnP MediaServer implementation in Freebox ...) - TODO: check + NOT-FOR-US: Freebox CVE-2020-24372 (LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in ...) - luajit <unfixed> (unimportant) NOTE: https://github.com/LuaJIT/LuaJIT/issues/603 @@ -10815,7 +10817,7 @@ CVE-2020-20408 CVE-2020-20407 RESERVED CVE-2020-20406 (A stored XSS vulnerability exists in the Custom Link Attributes contro ...) - TODO: check + NOT-FOR-US: Elementor Page Builder CVE-2020-20405 RESERVED CVE-2020-20404 @@ -19300,7 +19302,7 @@ CVE-2020-16235 CVE-2020-16234 RESERVED CVE-2020-16233 (An attacker could send a specially crafted packet that could have Code ...) - TODO: check + NOT-FOR-US: CodeMeter CVE-2020-16232 RESERVED CVE-2020-16231 |