Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vulnerability roundup 85: connect-1.105: 23 advisories [10] #90741

Closed
23 tasks
ckauhaus opened this issue Jun 18, 2020 · 1 comment
Closed
23 tasks

Vulnerability roundup 85: connect-1.105: 23 advisories [10] #90741

ckauhaus opened this issue Jun 18, 2020 · 1 comment
Assignees
@redvers
Labels
1.severity: security Issues which raise a security issue, or PRs that fix one

Comments

@ckauhaus
Copy link
Contributor

search, files

Scanned versions: nixos-20.03: a84b797; nixos-unstable: 22c9881. May contain false positives.
@ckauhaus ckauhaus added the 1.severity: security Issues which raise a security issue, or PRs that fix one label Jun 18, 2020
@redvers
Copy link
Member

redvers commented Dec 1, 2020 

CVE-2017-11291 CVSSv3=10.0 (nixos-20.03, nixos-unstable) adobe
CVE-2016-0949 CVSSv3=9.8 (nixos-20.03, nixos-unstable) adobe
CVE-2018-12804 CVSSv3=9.8 (nixos-20.03, nixos-unstable) adobe
CVE-2018-12805 CVSSv3=9.8 (nixos-20.03, nixos-unstable) adobe
CVE-2018-4923 CVSSv3=9.1 (nixos-20.03, nixos-unstable) adobe
CVE-2016-0948 CVSSv3=8.8 (nixos-20.03, nixos-unstable) adobe
CVE-2016-4118 CVSSv3=7.8 (nixos-20.03, nixos-unstable) adobe
CVE-2020-9442 CVSSv3=7.8 (nixos-20.03, nixos-unstable) openvpn
CVE-2017-3101 CVSSv3=7.5 (nixos-20.03, nixos-unstable) adobe
CVE-2018-4994 CVSSv3=7.5 (nixos-20.03, nixos-unstable) adobe
CVE-2016-7851 CVSSv3=6.1 (nixos-20.03, nixos-unstable) adobe
CVE-2017-3102 CVSSv3=6.1 (nixos-20.03, nixos-unstable) adobe
CVE-2017-3103 CVSSv3=6.1 (nixos-20.03, nixos-unstable) adobe
CVE-2017-11287 CVSSv3=6.1 (nixos-20.03, nixos-unstable) adobe
CVE-2017-11288 CVSSv3=6.1 (nixos-20.03, nixos-unstable) adobe
CVE-2017-11289 CVSSv3=6.1 (nixos-20.03, nixos-unstable) adobe
CVE-2017-11290 CVSSv3=6.1 (nixos-20.03, nixos-unstable) adobe
CVE-2018-4921 CVSSv3=6.1 (nixos-20.03, nixos-unstable) adobe
CVE-2018-3717 CVSSv3=5.4 (nixos-20.03, nixos-unstable) node.js
CVE-2016-0950 CVSSv3=5.3 (nixos-20.03, nixos-unstable) adobe
CVE-2018-19718 CVSSv3=5.3 (nixos-20.03, nixos-unstable) adobe
CVE-2015-0343 (nixos-20.03, nixos-unstable) adobe
CVE-2015-0344 (nixos-20.03, nixos-unstable) adobe

This package is for a simple proxy - not an adobe product.

False Positives.

https://github.com/freewind/gotoh-connect

@redvers redvers closed this as completed Dec 1, 2020
@redvers redvers self-assigned this Dec 1, 2020
@ckauhaus ckauhaus mentioned this issue Dec 2, 2020
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@redvers redvers

Labels
1.severity: security Issues which raise a security issue, or PRs that fix one
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@redvers @ckauhaus