Todo Lists
Scheduled advisories
| Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|
| ASA-202006-1 | AVG-1173 | firefox | High | multiple issues |
| ASA-202005-20 | AVG-1170 | tomcat8 | High | arbitrary code execution |
| ASA-202005-19 | AVG-1169 | tomcat7 | High | arbitrary code execution |
| ASA-202005-18 | AVG-1171 | tomcat9 | High | arbitrary code execution |
| ASA-202005-17 | AVG-1168 | clamav | High | multiple issues |
Pending advisories
| Group | Package | Severity | Affected | Fixed | Ticket |
|---|---|---|---|---|---|
| AVG-1177 | gnutls | High | 3.6.13-2 | 3.6.14-1 | |
| AVG-1178 | chromium | High | 83.0.4103.61-2 | 83.0.4103.97-1 | |
| AVG-1179 | thunderbird | High | 68.8.1-1 | 68.9.0-1 |
Bumped packages
| Group | Package | Severity | Affected | Current | Ticket |
|---|---|---|---|---|---|
| AVG-903 | nasm | High | 2.14.02-1 |
2.14.02-2 [extra] |
|
| AVG-168 | libmp3splt | Low | 0.9.2-2 |
0.9.2-3 [extra] |
Orphan issues
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2016-1000000 | High | Yes | Sql injection | Ipswitch WhatsUp Gold 16.4.1 WrFreeFormText.asp sUniqueID Parameter Blind SQL Injection |
| CVE-2016-10739 | Medium | No | Open redirect | In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would... |
| CVE-2017-1000410 | High | Yes | Information disclosure | The Linux kernel version 3.3-rc1 and later is affected by a vulnerability in the processing... |
| CVE-2019-5481 | Low | Yes | Denial of service | libcurl can be told to use kerberos over FTP to a server, as set with the CURLOPT_KRBLEVEL... |
| CVE-2019-5482 | Medium | Yes | Arbitrary code execution | libcurl contains a heap buffer overflow in the function (tftp_receive_packet()) that... |