[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Thu, 04 Feb 2021 12:10:43 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
4a422061 by security tracker role at 2021-02-04T20:10:26+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,25 @@
+CVE-2021-26697
+       RESERVED
+CVE-2021-26696
+       RESERVED
+CVE-2021-26695
+       RESERVED
+CVE-2021-26694
+       RESERVED
+CVE-2021-26693
+       RESERVED
+CVE-2021-26692
+       RESERVED
+CVE-2021-26691
+       RESERVED
+CVE-2021-26690
+       RESERVED
+CVE-2021-26249
+       RESERVED
+CVE-2021-23202
+       RESERVED
+CVE-2021-23141
+       RESERVED
 CVE-2021-3401 (Bitcoin Core before 0.19.0 might allow remote attackers to 
execute arb ...)
        - bitcoin 0.20.1~dfsg-1
 CVE-2021-3400
@@ -21755,8 +21777,8 @@ CVE-2021-1391
        RESERVED
 CVE-2021-1390
        RESERVED
-CVE-2021-1389
-       RESERVED
+CVE-2021-1389 (A vulnerability in the IPv6 traffic processing of Cisco IOS XR 
Softwar ...)
+       TODO: check
 CVE-2021-1388
        RESERVED
 CVE-2021-1387
@@ -21793,8 +21815,8 @@ CVE-2021-1372
        RESERVED
 CVE-2021-1371
        RESERVED
-CVE-2021-1370
-       RESERVED
+CVE-2021-1370 (A vulnerability in a CLI command of Cisco IOS XR Software for 
the Cisc ...)
+       TODO: check
 CVE-2021-1369
        RESERVED
 CVE-2021-1368
@@ -21825,8 +21847,8 @@ CVE-2021-1356
        RESERVED
 CVE-2021-1355 (Multiple vulnerabilities in Cisco Unified Communications 
Manager IM &a ...)
        NOT-FOR-US: Cisco
-CVE-2021-1354
-       RESERVED
+CVE-2021-1354 (A vulnerability in the certificate registration process of 
Cisco Unifi ...)
+       TODO: check
 CVE-2021-1353 (A vulnerability in the IPv4 protocol handling of Cisco StarOS 
could al ...)
        NOT-FOR-US: Cisco
 CVE-2021-1352
@@ -21837,78 +21859,78 @@ CVE-2021-1350 (A vulnerability in the web UI of Cisco 
Umbrella could allow an un
        NOT-FOR-US: Cisco
 CVE-2021-1349 (A vulnerability in the web-based management interface of Cisco 
SD-WAN  ...)
        NOT-FOR-US: Cisco
-CVE-2021-1348
-       RESERVED
-CVE-2021-1347
-       RESERVED
-CVE-2021-1346
-       RESERVED
-CVE-2021-1345
-       RESERVED
-CVE-2021-1344
-       RESERVED
-CVE-2021-1343
-       RESERVED
-CVE-2021-1342
-       RESERVED
-CVE-2021-1341
-       RESERVED
-CVE-2021-1340
-       RESERVED
-CVE-2021-1339
-       RESERVED
-CVE-2021-1338
-       RESERVED
-CVE-2021-1337
-       RESERVED
-CVE-2021-1336
-       RESERVED
-CVE-2021-1335
-       RESERVED
-CVE-2021-1334
-       RESERVED
-CVE-2021-1333
-       RESERVED
-CVE-2021-1332
-       RESERVED
-CVE-2021-1331
-       RESERVED
-CVE-2021-1330
-       RESERVED
-CVE-2021-1329
-       RESERVED
-CVE-2021-1328
-       RESERVED
-CVE-2021-1327
-       RESERVED
-CVE-2021-1326
-       RESERVED
-CVE-2021-1325
-       RESERVED
-CVE-2021-1324
-       RESERVED
-CVE-2021-1323
-       RESERVED
-CVE-2021-1322
-       RESERVED
-CVE-2021-1321
-       RESERVED
-CVE-2021-1320
-       RESERVED
-CVE-2021-1319
-       RESERVED
-CVE-2021-1318
-       RESERVED
-CVE-2021-1317
-       RESERVED
-CVE-2021-1316
-       RESERVED
-CVE-2021-1315
-       RESERVED
-CVE-2021-1314
-       RESERVED
-CVE-2021-1313
-       RESERVED
+CVE-2021-1348 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1347 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1346 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1345 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1344 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1343 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1342 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1341 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1340 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1339 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1338 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1337 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1336 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1335 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1334 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1333 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1332 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1331 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1330 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1329 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1328 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1327 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1326 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1325 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1324 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1323 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1322 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1321 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1320 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1319 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1318 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1317 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1316 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1315 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1314 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1313 (Multiple vulnerabilities in the ingress packet processing 
function of  ...)
+       TODO: check
 CVE-2021-1312 (A vulnerability in the system resource management of Cisco 
Elastic Ser ...)
        NOT-FOR-US: Cisco
 CVE-2021-1311 (A vulnerability in the reclaim host role feature of Cisco Webex 
Meetin ...)
@@ -21939,26 +21961,26 @@ CVE-2021-1299 (Multiple vulnerabilities in Cisco 
SD-WAN products could allow an
        NOT-FOR-US: Cisco
 CVE-2021-1298 (Multiple vulnerabilities in Cisco SD-WAN products could allow 
an authe ...)
        NOT-FOR-US: Cisco
-CVE-2021-1297
-       RESERVED
-CVE-2021-1296
-       RESERVED
-CVE-2021-1295
-       RESERVED
-CVE-2021-1294
-       RESERVED
-CVE-2021-1293
-       RESERVED
-CVE-2021-1292
-       RESERVED
-CVE-2021-1291
-       RESERVED
-CVE-2021-1290
-       RESERVED
-CVE-2021-1289
-       RESERVED
-CVE-2021-1288
-       RESERVED
+CVE-2021-1297 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1296 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1295 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1294 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1293 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1292 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1291 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1290 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1289 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
+       TODO: check
+CVE-2021-1288 (Multiple vulnerabilities in the ingress packet processing 
function of  ...)
+       TODO: check
 CVE-2021-1287
        RESERVED
 CVE-2021-1286 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
@@ -21997,12 +22019,12 @@ CVE-2021-1270 (Multiple vulnerabilities in the 
web-based management interface of
        NOT-FOR-US: Cisco
 CVE-2021-1269 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
        NOT-FOR-US: Cisco
-CVE-2021-1268
-       RESERVED
+CVE-2021-1268 (A vulnerability in the IPv6 protocol handling of the management 
interf ...)
+       TODO: check
 CVE-2021-1267 (A vulnerability in the dashboard widget of Cisco Firepower 
Management  ...)
        NOT-FOR-US: Cisco
-CVE-2021-1266
-       RESERVED
+CVE-2021-1266 (A vulnerability in the REST API of Cisco Managed Services 
Accelerator  ...)
+       TODO: check
 CVE-2021-1265 (A vulnerability in the configuration archive functionality of 
Cisco DN ...)
        NOT-FOR-US: Cisco
 CVE-2021-1264 (A vulnerability in the Command Runner tool of Cisco DNA Center 
could a ...)
@@ -22045,10 +22067,10 @@ CVE-2021-1246 (Multiple vulnerabilities in the 
web-based management interface of
        NOT-FOR-US: Cisco
 CVE-2021-1245 (Multiple vulnerabilities in the web-based management interface 
of Cisc ...)
        NOT-FOR-US: Cisco
-CVE-2021-1244
-       RESERVED
-CVE-2021-1243
-       RESERVED
+CVE-2021-1244 (Multiple vulnerabilities in Cisco Network Convergence System 
(NCS) 540 ...)
+       TODO: check
+CVE-2021-1243 (A vulnerability in the Local Packet Transport Services (LPTS) 
programm ...)
+       TODO: check
 CVE-2021-1242 (A vulnerability in Cisco Webex Teams could allow an 
unauthenticated, r ...)
        NOT-FOR-US: Cisco
 CVE-2021-1241 (Multiple vulnerabilities in Cisco SD-WAN products could allow 
an unaut ...)
@@ -22091,8 +22113,8 @@ CVE-2021-1223 (Multiple Cisco products are affected by 
a vulnerability in the Sn
        NOT-FOR-US: Cisco
 CVE-2021-1222 (A vulnerability in the web-based management interface of Cisco 
Smart S ...)
        NOT-FOR-US: Cisco
-CVE-2021-1221
-       RESERVED
+CVE-2021-1221 (A vulnerability in the user interface of Cisco Webex Meetings 
and Cisc ...)
+       TODO: check
 CVE-2021-1220
        RESERVED
 CVE-2021-1219 (A vulnerability in Cisco Smart Software Manager Satellite could 
allow  ...)
@@ -22261,8 +22283,8 @@ CVE-2021-1138 (Multiple vulnerabilities in the web UI 
of Cisco Smart Software Ma
        NOT-FOR-US: Cisco
 CVE-2021-1137
        RESERVED
-CVE-2021-1136
-       RESERVED
+CVE-2021-1136 (Multiple vulnerabilities in Cisco Network Convergence System 
(NCS) 540 ...)
+       TODO: check
 CVE-2021-1135 (Multiple vulnerabilities in the REST API endpoint of Cisco Data 
Center ...)
        NOT-FOR-US: Cisco
 CVE-2021-1134
@@ -22277,8 +22299,8 @@ CVE-2021-1130 (A vulnerability in the web-based 
management interface of Cisco DN
        NOT-FOR-US: Cisco
 CVE-2021-1129 (A vulnerability in the authentication for the general purpose 
APIs imp ...)
        NOT-FOR-US: Cisco
-CVE-2021-1128
-       RESERVED
+CVE-2021-1128 (A vulnerability in the CLI parser of Cisco IOS XR Software 
could allow ...)
+       TODO: check
 CVE-2021-1127 (A vulnerability in the web-based management interface of Cisco 
Enterpr ...)
        NOT-FOR-US: Cisco
 CVE-2021-1126 (A vulnerability in the storage of proxy server credentials of 
Cisco Fi ...)
@@ -22844,10 +22866,10 @@ CVE-2020-28452 (This affects the package 
com.softwaremill.akka-http-session:core
        NOT-FOR-US: akka-http-session
 CVE-2020-28451
        RESERVED
-CVE-2020-28450
-       RESERVED
-CVE-2020-28449
-       RESERVED
+CVE-2020-28450 (This affects all versions of package decal. The vulnerability 
is in th ...)
+       TODO: check
+CVE-2020-28449 (This affects all versions of package decal. The vulnerability 
is in th ...)
+       TODO: check
 CVE-2020-28448 (This affects the package multi-ini before 2.1.1. It is 
possible to pol ...)
        NOT-FOR-US: Node multi-ini
 CVE-2020-28447
@@ -24521,24 +24543,24 @@ CVE-2021-0353 (In kisd, there is a possible memory 
corruption due to a heap buff
        TODO: check
 CVE-2021-0352 (In RT regmap driver, there is a possible memory corruption due 
to type ...)
        TODO: check
-CVE-2021-0351
-       RESERVED
-CVE-2021-0350
-       RESERVED
-CVE-2021-0349
-       RESERVED
-CVE-2021-0348
-       RESERVED
-CVE-2021-0347
-       RESERVED
-CVE-2021-0346
-       RESERVED
-CVE-2021-0345
-       RESERVED
-CVE-2021-0344
-       RESERVED
-CVE-2021-0343
-       RESERVED
+CVE-2021-0351 (In wlan driver, there is a possible system crash due to a 
missing boun ...)
+       TODO: check
+CVE-2021-0350 (In ged, there is a possible system crash due to an improper 
input vali ...)
+       TODO: check
+CVE-2021-0349 (In display driver, there is a possible memory corruption due to 
a use  ...)
+       TODO: check
+CVE-2021-0348 (In vpu, there is a possible out of bounds write due to a 
missing bound ...)
+       TODO: check
+CVE-2021-0347 (In ccu, there is a possible out of bounds read due to a missing 
bounds ...)
+       TODO: check
+CVE-2021-0346 (In vpu, there is a possible out of bounds write due to an 
incorrect bo ...)
+       TODO: check
+CVE-2021-0345 (In mobile_log_d, there is a possible escalation of privilege 
due to im ...)
+       TODO: check
+CVE-2021-0344 (In mtkpower, there is a possible memory corruption due to a 
missing bo ...)
+       TODO: check
+CVE-2021-0343 (In kisd, there is a possible out of bounds write due to a 
missing boun ...)
+       TODO: check
 CVE-2021-0342 (In tun_get_user of tun.c, there is possible memory corruption 
due to a ...)
        - linux 5.7.6-1
        [buster] - linux 4.19.131-1
@@ -25859,10 +25881,10 @@ CVE-2020-27875
        RESERVED
 CVE-2020-27874
        RESERVED
-CVE-2020-27873
-       RESERVED
-CVE-2020-27872
-       RESERVED
+CVE-2020-27873 (This vulnerability allows network-adjacent attackers to 
disclose sensi ...)
+       TODO: check
+CVE-2020-27872 (This vulnerability allows network-adjacent attackers to bypass 
authent ...)
+       TODO: check
 CVE-2020-27871
        RESERVED
 CVE-2020-27870
@@ -51239,8 +51261,8 @@ CVE-2020-16196
        REJECTED
 CVE-2020-16195
        RESERVED
-CVE-2020-16194
-       RESERVED
+CVE-2020-16194 (An Insecure Direct Object Reference (IDOR) vulnerability was 
found in  ...)
+       TODO: check
 CVE-2020-16193 (osTicket before 1.14.3 allows XSS because 
include/staff/banrule.inc.ph ...)
        NOT-FOR-US: osTicket
 CVE-2020-16192 (LimeSurvey 4.3.2 allows reflected XSS because 
application/controllers/ ...)
@@ -82262,8 +82284,8 @@ CVE-2020-5034
        RESERVED
 CVE-2020-5033
        RESERVED
-CVE-2020-5032
-       RESERVED
+CVE-2020-5032 (IBM QRadar SIEM 7.3 and 7.4 in some configurations may be 
vulnerable t ...)
+       TODO: check
 CVE-2020-5031
        RESERVED
 CVE-2020-5030
@@ -82670,14 +82692,14 @@ CVE-2020-4830
        RESERVED
 CVE-2020-4829 (IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to 
exploit a v ...)
        NOT-FOR-US: IBM
-CVE-2020-4828
-       RESERVED
-CVE-2020-4827
-       RESERVED
-CVE-2020-4826
-       RESERVED
-CVE-2020-4825
-       RESERVED
+CVE-2020-4828 (IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 
through 2018. ...)
+       TODO: check
+CVE-2020-4827 (IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 
through 2018. ...)
+       TODO: check
+CVE-2020-4826 (IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 
through 2018. ...)
+       TODO: check
+CVE-2020-4825 (IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 
through 2018. ...)
+       TODO: check
 CVE-2020-4824
        RESERVED
 CVE-2020-4823
@@ -83049,8 +83071,8 @@ CVE-2020-4642 (IBM DB2 for Linux, UNIX and Windows 
(includes DB2 Connect Server)
        NOT-FOR-US: IBM
 CVE-2020-4641
        RESERVED
-CVE-2020-4640
-       RESERVED
+CVE-2020-4640 (Certain IBM API Connect 10.0.0.0 through 10.0.1.0 and 
2018.4.1.0 throu ...)
+       TODO: check
 CVE-2020-4639
        RESERVED
 CVE-2020-4638 (IBM API Connect's API Manager 2018.4.1.0 through 2018.4.1.12 is 
vulner ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4a4220614ffe347936152447c89574f366ab82e4

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4a4220614ffe347936152447c89574f366ab82e4
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to