[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Sat, 16 Jan 2021 12:19:51 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
435e8044 by security tracker role at 2021-01-16T20:10:24+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2021-25284
+       RESERVED
+CVE-2021-25283
+       RESERVED
+CVE-2021-25282
+       RESERVED
+CVE-2021-25281
+       RESERVED
 CVE-2021-XXXX [Unexpected bindings in QueryBuilder]
        - php-laravel-framework 6.20.11+dfsg-1 (bug #980095)
        NOTE: https://blog.laravel.com/security-laravel-62011-7302-8221-released
@@ -9822,36 +9830,47 @@ CVE-2021-21118
 CVE-2021-21117
        RESERVED
 CVE-2021-21116 (Heap buffer overflow in audio in Google Chrome prior to 
87.0.4280.141  ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21115 (User after free in safe browsing in Google Chrome prior to 
87.0.4280.1 ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21114 (Use after free in audio in Google Chrome prior to 
87.0.4280.141 allowe ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21113 (Heap buffer overflow in Skia in Google Chrome prior to 
87.0.4280.141 a ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21112 (Use after free in Blink in Google Chrome prior to 
87.0.4280.141 allowe ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21111 (Insufficient policy enforcement in WebUI in Google Chrome 
prior to 87. ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21110 (Use after free in safe browsing in Google Chrome prior to 
87.0.4280.14 ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21109 (Use after free in payments in Google Chrome prior to 
87.0.4280.141 all ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21108 (Use after free in media in Google Chrome prior to 
87.0.4280.141 allowe ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21107 (Use after free in drag and drop in Google Chrome on Linux 
prior to 87. ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21106 (Use after free in autofill in Google Chrome prior to 
87.0.4280.141 all ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-35626 (An issue was discovered in the PushToWatch extension for 
MediaWiki thr ...)
@@ -47629,6 +47648,7 @@ CVE-2020-16044
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2021-01/#CVE-2020-16044
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2021-02/#CVE-2020-16044
 CVE-2020-16043 (Insufficient data validation in networking in Google Chrome 
prior to 8 ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-16042 (Uninitialized Use in V8 in Google Chrome prior to 87.0.4280.88 
allowed ...)
@@ -47826,6 +47846,7 @@ CVE-2020-15997 (Use after free in Mojo in Google Chrome 
prior to 86.0.4240.99 al
 CVE-2020-15996 (Use after free in passwords in Google Chrome prior to 
86.0.4240.99 all ...)
        - chromium <not-affected> (Chrome on Android)
 CVE-2020-15995 (Out of bounds write in V8 in Google Chrome prior to 
86.0.4240.99 allow ...)
+       {DSA-4832-1}
        - chromium 87.0.4280.141-0.1 (bug #979533)
        [stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-15994 (Use after free in V8 in Google Chrome prior to 86.0.4240.99 
allowed a  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/435e8044dc58784000e1f789a8dbedcc455e6000

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/435e8044dc58784000e1f789a8dbedcc455e6000
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to