Vulnerability Change Records for CVE-2020-11080

Change History

CVE Modified by GitHub, Inc. 12/12/2020 11:15:12 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4OOYAMJVLLCLXDTHW3V5UXNULZBBK4O6/ [No Types Assigned]

CVE Modified by GitHub, Inc. 7/14/2020 11:15:49 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpujul2020.html [No Types Assigned]

CVE Modified by GitHub, Inc. 6/13/2020 6:15:10 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00024.html [No Types Assigned]

CVE Modified by GitHub, Inc. 6/17/2020 11:15:10 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AAC2AA36OTRHKSVM5OV7TTVB3CZIGEFL/ [No Types Assigned]

CVE Modified by GitHub, Inc. 6/06/2020 12:15:10 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.debian.org/security/2020/dsa-4696 [No Types Assigned]

CPE Deprecation Remap 8/18/2020 11:5:57 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:debian:debian_linux:10:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Initial Analysis 6/08/2020 4:11:13 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:nghttp2:nghttp2:*:*:*:*:*:*:*:* versions up to (excluding) 1.41.0
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:debian:debian_linux:10:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Changed Reference Type
https://github.com/nghttp2/nghttp2/commit/336a98feb0d56b9ac54e12736b18785c27f75090 No Types Assigned
https://github.com/nghttp2/nghttp2/commit/336a98feb0d56b9ac54e12736b18785c27f75090 Patch, Third Party Advisory
Changed Reference Type
https://github.com/nghttp2/nghttp2/commit/f8da73bd042f810f34d19f9eae02b46d870af394 No Types Assigned
https://github.com/nghttp2/nghttp2/commit/f8da73bd042f810f34d19f9eae02b46d870af394 Patch, Third Party Advisory
Changed Reference Type
https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xr No Types Assigned
https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xr Patch, Third Party Advisory
Changed Reference Type
https://www.debian.org/security/2020/dsa-4696 No Types Assigned
https://www.debian.org/security/2020/dsa-4696 Third Party Advisory

CVE Modified by GitHub, Inc. 1/20/2021 10:15:36 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpujan2021.html [No Types Assigned]

CVE Modified by GitHub, Inc. 10/20/2020 6:15:38 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpuoct2020.html [No Types Assigned]