"-Synchronized-Data."

2025-05-06 18:53:08 +00:00 · 2020-10-05 19:01:47 +00:00 · 2020-10-05 19:01:47 +00:00 · f50cb14b75
commit f50cb14b75
parent 3075d048c1
11 changed files with 51 additions and 1 deletions
--- a/2020/11xxx/CVE-2020-11698.json
+++ b/2020/11xxx/CVE-2020-11698.json
@ -71,6 +71,11 @@
                "refsource": "MISC",
                "name": "https://sensepost.com/blog/2020/clash-of-the-spamtitan/",
                "url": "https://sensepost.com/blog/2020/clash-of-the-spamtitan/"
+            },
+            {
+                "refsource": "MISC",
+                "name": "http://packetstormsecurity.com/files/159470/SpamTitan-7.07-Remote-Code-Execution.html",
+                "url": "http://packetstormsecurity.com/files/159470/SpamTitan-7.07-Remote-Code-Execution.html"
            }
        ]
    }
--- a/2020/13xxx/CVE-2020-13962.json
+++ b/2020/13xxx/CVE-2020-13962.json
@ -86,6 +86,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-ca26a3f832",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4X6EDPIIAQPVP2CHL2CHDHJ25EECA7UE/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2020-8372f6bae4",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQJDBZUYMMF4R5QQKD2HTIKQU2NSKO63/"
            }
        ]
    }
--- a/2020/15xxx/CVE-2020-15237.json
+++ b/2020/15xxx/CVE-2020-15237.json
@ -35,7 +35,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "In Shrine before version 3.3.0, when using the `derivation_endpoint` plugin, it's possible for the attacker to use a timing attack to guess the signature of the derivation URL.\nThe problem has been fixed by comparing sent and calculated signature in constant time, using `Rack::Utils.secure_compare`. Users using the `derivation_endpoint` plugin are urged to upgrade to Shrine 3.3.0 or greater.\nA possible workaround is provided in the linked advisory."
+                "value": "In Shrine before version 3.3.0, when using the `derivation_endpoint` plugin, it's possible for the attacker to use a timing attack to guess the signature of the derivation URL. The problem has been fixed by comparing sent and calculated signature in constant time, using `Rack::Utils.secure_compare`. Users using the `derivation_endpoint` plugin are urged to upgrade to Shrine 3.3.0 or greater. A possible workaround is provided in the linked advisory."
            }
        ]
    },
--- a/2020/15xxx/CVE-2020-15960.json
+++ b/2020/15xxx/CVE-2020-15960.json
@ -84,6 +84,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-aea86f913e",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2020-214865ce21",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YWNBJFBPKYCYSZTS54FHNCRZG6KC2AIJ/"
            }
        ]
    },
--- a/2020/15xxx/CVE-2020-15961.json
+++ b/2020/15xxx/CVE-2020-15961.json
@ -84,6 +84,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-aea86f913e",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2020-214865ce21",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YWNBJFBPKYCYSZTS54FHNCRZG6KC2AIJ/"
            }
        ]
    },
--- a/2020/15xxx/CVE-2020-15962.json
+++ b/2020/15xxx/CVE-2020-15962.json
@ -84,6 +84,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-aea86f913e",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2020-214865ce21",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YWNBJFBPKYCYSZTS54FHNCRZG6KC2AIJ/"
            }
        ]
    },
--- a/2020/15xxx/CVE-2020-15963.json
+++ b/2020/15xxx/CVE-2020-15963.json
@ -84,6 +84,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-aea86f913e",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2020-214865ce21",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YWNBJFBPKYCYSZTS54FHNCRZG6KC2AIJ/"
            }
        ]
    },
--- a/2020/15xxx/CVE-2020-15964.json
+++ b/2020/15xxx/CVE-2020-15964.json
@ -84,6 +84,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-aea86f913e",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2020-214865ce21",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YWNBJFBPKYCYSZTS54FHNCRZG6KC2AIJ/"
            }
        ]
    },
--- a/2020/15xxx/CVE-2020-15965.json
+++ b/2020/15xxx/CVE-2020-15965.json
@ -84,6 +84,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-aea86f913e",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2020-214865ce21",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YWNBJFBPKYCYSZTS54FHNCRZG6KC2AIJ/"
            }
        ]
    },
--- a/2020/15xxx/CVE-2020-15966.json
+++ b/2020/15xxx/CVE-2020-15966.json
@ -84,6 +84,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-aea86f913e",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2020-214865ce21",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YWNBJFBPKYCYSZTS54FHNCRZG6KC2AIJ/"
            }
        ]
    },
--- a/2020/26xxx/CVE-2020-26154.json
+++ b/2020/26xxx/CVE-2020-26154.json
@ -66,6 +66,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-15b775b07e",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3BID3HVHAF6DA3YJOFDBSAZSMR3ODNIW/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2020-941b563a80",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WZVZXTFMFTSML3J6OOCDBDYH474BRJSW/"
            }
        ]
    }