Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b468819c by security tracker role at 2021-09-08T20:10:37+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,219 @@
+CVE-2021-40796
+ RESERVED
+CVE-2021-40795
+ RESERVED
+CVE-2021-40794
+ RESERVED
+CVE-2021-40793
+ RESERVED
+CVE-2021-40792
+ RESERVED
+CVE-2021-40791
+ RESERVED
+CVE-2021-40790
+ RESERVED
+CVE-2021-40789
+ RESERVED
+CVE-2021-40788
+ RESERVED
+CVE-2021-40787
+ RESERVED
+CVE-2021-40786
+ RESERVED
+CVE-2021-40785
+ RESERVED
+CVE-2021-40784
+ RESERVED
+CVE-2021-40783
+ RESERVED
+CVE-2021-40782
+ RESERVED
+CVE-2021-40781
+ RESERVED
+CVE-2021-40780
+ RESERVED
+CVE-2021-40779
+ RESERVED
+CVE-2021-40778
+ RESERVED
+CVE-2021-40777
+ RESERVED
+CVE-2021-40776
+ RESERVED
+CVE-2021-40775
+ RESERVED
+CVE-2021-40774
+ RESERVED
+CVE-2021-40773
+ RESERVED
+CVE-2021-40772
+ RESERVED
+CVE-2021-40771
+ RESERVED
+CVE-2021-40770
+ RESERVED
+CVE-2021-40769
+ RESERVED
+CVE-2021-40768
+ RESERVED
+CVE-2021-40767
+ RESERVED
+CVE-2021-40766
+ RESERVED
+CVE-2021-40765
+ RESERVED
+CVE-2021-40764
+ RESERVED
+CVE-2021-40763
+ RESERVED
+CVE-2021-40762
+ RESERVED
+CVE-2021-40761
+ RESERVED
+CVE-2021-40760
+ RESERVED
+CVE-2021-40759
+ RESERVED
+CVE-2021-40758
+ RESERVED
+CVE-2021-40757
+ RESERVED
+CVE-2021-40756
+ RESERVED
+CVE-2021-40755
+ RESERVED
+CVE-2021-40754
+ RESERVED
+CVE-2021-40753
+ RESERVED
+CVE-2021-40752
+ RESERVED
+CVE-2021-40751
+ RESERVED
+CVE-2021-40750
+ RESERVED
+CVE-2021-40749
+ RESERVED
+CVE-2021-40748
+ RESERVED
+CVE-2021-40747
+ RESERVED
+CVE-2021-40746
+ RESERVED
+CVE-2021-40745
+ RESERVED
+CVE-2021-40744
+ RESERVED
+CVE-2021-40743
+ RESERVED
+CVE-2021-40742
+ RESERVED
+CVE-2021-40741
+ RESERVED
+CVE-2021-40740
+ RESERVED
+CVE-2021-40739
+ RESERVED
+CVE-2021-40738
+ RESERVED
+CVE-2021-40737
+ RESERVED
+CVE-2021-40736
+ RESERVED
+CVE-2021-40735
+ RESERVED
+CVE-2021-40734
+ RESERVED
+CVE-2021-40733
+ RESERVED
+CVE-2021-40732
+ RESERVED
+CVE-2021-40731
+ RESERVED
+CVE-2021-40730
+ RESERVED
+CVE-2021-40729
+ RESERVED
+CVE-2021-40728
+ RESERVED
+CVE-2021-40727
+ RESERVED
+CVE-2021-40726
+ RESERVED
+CVE-2021-40725
+ RESERVED
+CVE-2021-40724
+ RESERVED
+CVE-2021-40723
+ RESERVED
+CVE-2021-40722
+ RESERVED
+CVE-2021-40721
+ RESERVED
+CVE-2021-40720
+ RESERVED
+CVE-2021-40719
+ RESERVED
+CVE-2021-40718
+ RESERVED
+CVE-2021-40717
+ RESERVED
+CVE-2021-40716
+ RESERVED
+CVE-2021-40715
+ RESERVED
+CVE-2021-40714
+ RESERVED
+CVE-2021-40713
+ RESERVED
+CVE-2021-40712
+ RESERVED
+CVE-2021-40711
+ RESERVED
+CVE-2021-40710
+ RESERVED
+CVE-2021-40709
+ RESERVED
+CVE-2021-40708
+ RESERVED
+CVE-2021-40707
+ RESERVED
+CVE-2021-40706
+ RESERVED
+CVE-2021-40705
+ RESERVED
+CVE-2021-40704
+ RESERVED
+CVE-2021-40703
+ RESERVED
+CVE-2021-40702
+ RESERVED
+CVE-2021-40701
+ RESERVED
+CVE-2021-40700
+ RESERVED
+CVE-2021-40699
+ RESERVED
+CVE-2021-40698
+ RESERVED
+CVE-2021-40697
+ RESERVED
+CVE-2021-40696
+ RESERVED
+CVE-2021-40695
+ RESERVED
+CVE-2021-40694
+ RESERVED
+CVE-2021-40693
+ RESERVED
+CVE-2021-40692
+ RESERVED
+CVE-2021-40691
+ RESERVED
+CVE-2021-40690
+ RESERVED
+CVE-2021-3780
+ RESERVED
CVE-2021-40689
RESERVED
CVE-2021-40688
@@ -314,8 +530,8 @@ CVE-2021-40539 (Zoho ManageEngine ADSelfService Plus
version 6113 and prior is v
NOT-FOR-US: Zoho ManageEngine
CVE-2021-40538
RESERVED
-CVE-2021-40537
- RESERVED
+CVE-2021-40537 (Server Side Request Forgery (SSRF) vulnerability exists in
owncloud/us ...)
+ TODO: check
CVE-2021-40536
RESERVED
CVE-2021-40535
@@ -699,8 +915,8 @@ CVE-2021-40379 (An issue was discovered on Compro IP70
2.08_7130218, IP570 2.08_
NOT-FOR-US: Compro devices
CVE-2021-40378 (An issue was discovered on Compro IP70 2.08_7130218, IP570
2.08_713052 ...)
NOT-FOR-US: Compro devices
-CVE-2021-40377
- RESERVED
+CVE-2021-40377 (SmarterTools SmarterMail 16.x before build 7866 has stored
XSS. The ap ...)
+ TODO: check
CVE-2021-40376
RESERVED
CVE-2021-40375
@@ -767,8 +983,7 @@ CVE-2021-40347 [Check a user owns the email they are trying
to unsubscribe]
RESERVED
- postorius <unfixed> (bug #993746)
NOTE:
https://gitlab.com/mailman/postorius/-/commit/3d880c56b58bc26b32eac0799407d74b64b7474b
-CVE-2021-40346 [fix missing header name length check in HTX]
- RESERVED
+CVE-2021-40346 (An integer overflow exists in HAProxy 2.0 through 2.5 in the
htx_add_h ...)
{DSA-4968-1}
- haproxy 2.2.16-3
[buster] - haproxy <not-affected> (Vulnerable code not present)
@@ -5146,8 +5361,8 @@ CVE-2021-38390 (A Blind SQL injection vulnerability
exists in the /DataHandler/H
NOT-FOR-US: Delta Electronics
CVE-2021-38389
RESERVED
-CVE-2021-38388
- RESERVED
+CVE-2021-38388 (Central Dogma allows privilege escalation with mirroring to
the intern ...)
+ TODO: check
CVE-2021-38387 (In Contiki 3.0, a Telnet server that silently quits (before
disconnect ...)
NOT-FOR-US: Contiki
CVE-2021-38386 (In Contiki 3.0, a buffer overflow in the Telnet service allows
remote ...)
@@ -9104,8 +9319,8 @@ CVE-2021-36697
RESERVED
CVE-2021-36696 (Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in
Deskpro 202 ...)
NOT-FOR-US: Deskpro
-CVE-2021-36695
- RESERVED
+CVE-2021-36695 (Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in
Deskpro 202 ...)
+ TODO: check
CVE-2021-36694
RESERVED
CVE-2021-36693
@@ -10129,10 +10344,10 @@ CVE-2021-36218
RESERVED
CVE-2021-36217
REJECTED
-CVE-2021-36216
- RESERVED
-CVE-2021-36215
- RESERVED
+CVE-2021-36216 (LINE for Windows 6.2.1.2289 and before allows arbitrary code
execution ...)
+ TODO: check
+CVE-2021-36215 (LINE client for iOS 10.21.3 and before allows address bar
spoofing due ...)
+ TODO: check
CVE-2021-36214 (LINE client for iOS before 10.16.3 allows cross site script
with speci ...)
NOT-FOR-US: LINE client for iOS
CVE-2021-36213 (HashiCorp Consul and Consul Enterprise 1.9.0 through 1.10.0
default de ...)
@@ -10201,14 +10416,14 @@ CVE-2021-36184
RESERVED
CVE-2021-36183
RESERVED
-CVE-2021-36182
- RESERVED
+CVE-2021-36182 (A Improper neutralization of special elements used in a
command ('Comm ...)
+ TODO: check
CVE-2021-36181
RESERVED
CVE-2021-36180
RESERVED
-CVE-2021-36179
- RESERVED
+CVE-2021-36179 (A stack-based buffer overflow in Fortinet FortiWeb version
6.3.14 and ...)
+ TODO: check
CVE-2021-36178
RESERVED
CVE-2021-36177
@@ -11750,8 +11965,8 @@ CVE-2021-35528
RESERVED
CVE-2021-35527 (Password autocomplete vulnerability in the web application
password fi ...)
NOT-FOR-US: Hitachi ABB Power Grids eSOMS
-CVE-2021-35526
- RESERVED
+CVE-2021-35526 (Backup file without encryption vulnerability is found in
Hitachi ABB P ...)
+ TODO: check
CVE-2021-3624 [buffer-overflow caused by integer-overflow in
foveon_load_camf()]
RESERVED
- dcraw <unfixed> (bug #984761)
@@ -12379,22 +12594,22 @@ CVE-2021-35271
RESERVED
CVE-2021-35270
RESERVED
-CVE-2021-35269 (Tuxera NTFS-3G versions < 2021.8.22, when a specially
crafted NTFS ...)
+CVE-2021-35269 (NTFS-3G versions < 2021.8.22, when a specially crafted NTFS
attribu ...)
[experimental] - ntfs-3g 1:2021.8.22-1
- ntfs-3g 1:2021.8.22-2 (bug #988386)
NOTE: https://www.openwall.com/lists/oss-security/2021/08/30/1
NOTE:
https://github.com/tuxera/ntfs-3g/security/advisories/GHSA-q759-8j5v-q5jp
-CVE-2021-35268 (Tuxera NTFS-3G versions < 2021.8.22, when a specially
crafted NTFS ...)
+CVE-2021-35268 (In NTFS-3G versions < 2021.8.22, when a specially crafted
NTFS inod ...)
[experimental] - ntfs-3g 1:2021.8.22-1
- ntfs-3g 1:2021.8.22-2 (bug #988386)
NOTE: https://www.openwall.com/lists/oss-security/2021/08/30/1
NOTE:
https://github.com/tuxera/ntfs-3g/security/advisories/GHSA-q759-8j5v-q5jp
-CVE-2021-35267 (In Tuxera NTFS-3G versions < 2021.8.22, a stack buffer
overflow can ...)
+CVE-2021-35267 (NTFS-3G versions < 2021.8.22, a stack buffer overflow can
occur whe ...)
[experimental] - ntfs-3g 1:2021.8.22-1
- ntfs-3g 1:2021.8.22-2 (bug #988386)
NOTE: https://www.openwall.com/lists/oss-security/2021/08/30/1
NOTE:
https://github.com/tuxera/ntfs-3g/security/advisories/GHSA-q759-8j5v-q5jp
-CVE-2021-35266 (In Tuxera NTFS-3G versions < 2021.8.22, when a specially
crafted NT ...)
+CVE-2021-35266 (In NTFS-3G versions < 2021.8.22, when a specially crafted
NTFS inod ...)
[experimental] - ntfs-3g 1:2021.8.22-1
- ntfs-3g 1:2021.8.22-2 (bug #988386)
NOTE: https://www.openwall.com/lists/oss-security/2021/08/30/1
@@ -12495,8 +12710,8 @@ CVE-2021-35219 (ExportToPdfCmd Arbitrary File Read
Information Disclosure Vulner
NOT-FOR-US: SolarWinds
CVE-2021-35218 (Deserialization of Untrusted Data in the Web Console Chart
Endpoint ca ...)
NOT-FOR-US: Solarwinds
-CVE-2021-35217
- RESERVED
+CVE-2021-35217 (Insecure Deseralization of untrusted data remote code
execution vulner ...)
+ TODO: check
CVE-2021-35216 (Insecure Deserialization of untrusted data remote code
execution vulne ...)
NOT-FOR-US: Solarwinds
CVE-2021-35215 (Insecure deserialization leading to Remote Code Execution was
detected ...)
@@ -15258,10 +15473,10 @@ CVE-2021-33984
RESERVED
CVE-2021-33983
RESERVED
-CVE-2021-33982
- RESERVED
-CVE-2021-33981
- RESERVED
+CVE-2021-33982 (An insufficient session expiration vulnerability exists in the
"Fish | ...)
+ TODO: check
+CVE-2021-33981 (An insecure, direct object vulnerability in hunting/fishing
license re ...)
+ TODO: check
CVE-2021-33980
RESERVED
CVE-2021-33979
@@ -16946,24 +17161,24 @@ CVE-2021-33291
RESERVED
CVE-2021-33290
RESERVED
-CVE-2021-33289 (In Tuxera NTFS-3G versions < 2021.8.22, when a specially
crafted MF ...)
+CVE-2021-33289 (In NTFS-3G versions < 2021.8.22, when a specially crafted
MFT secti ...)
[experimental] - ntfs-3g 1:2021.8.22-1
- ntfs-3g 1:2021.8.22-2 (bug #988386)
NOTE: https://www.openwall.com/lists/oss-security/2021/08/30/1
NOTE:
https://github.com/tuxera/ntfs-3g/security/advisories/GHSA-q759-8j5v-q5jp
CVE-2021-33288
RESERVED
-CVE-2021-33287 (Tuxera NTFS-3G versions < 2021.8.22, when specially crafted
NTFS at ...)
+CVE-2021-33287 (In NTFS-3G versions < 2021.8.22, when specially crafted
NTFS attrib ...)
[experimental] - ntfs-3g 1:2021.8.22-1
- ntfs-3g 1:2021.8.22-2 (bug #988386)
NOTE: https://www.openwall.com/lists/oss-security/2021/08/30/1
NOTE:
https://github.com/tuxera/ntfs-3g/security/advisories/GHSA-q759-8j5v-q5jp
-CVE-2021-33286 (In Tuxera NTFS-3G versions < 2021.8.22, when a specially
crafted un ...)
+CVE-2021-33286 (In NTFS-3G versions < 2021.8.22, when a specially crafted
unicode s ...)
[experimental] - ntfs-3g 1:2021.8.22-1
- ntfs-3g 1:2021.8.22-2 (bug #988386)
NOTE: https://www.openwall.com/lists/oss-security/2021/08/30/1
NOTE:
https://github.com/tuxera/ntfs-3g/security/advisories/GHSA-q759-8j5v-q5jp
-CVE-2021-33285 (In Tuxera ntfs-3g versions < 2021.8.22, when a specially
crafted NT ...)
+CVE-2021-33285 (In NTFS-3G versions < 2021.8.22, when a specially crafted
NTFS attr ...)
[experimental] - ntfs-3g 1:2021.8.22-1
- ntfs-3g 1:2021.8.22-2 (bug #988386)
NOTE: https://www.openwall.com/lists/oss-security/2021/08/30/1
@@ -17839,7 +18054,7 @@ CVE-2021-3551
NOTE:
https://github.com/dogtagpki/pki/commit/5b09fcaff11d33010469e695ef365a91c91674b5
CVE-2021-3550 (A DLL search path vulnerability was reported in Lenovo
PCManager, prio ...)
NOT-FOR-US: Microsoft
-CVE-2021-32925 (admin/user_import.php in Chamilo 1.11.14 reads XML data
without disabl ...)
+CVE-2021-32925 (admin/user_import.php in Chamilo 1.11.x reads XML data without
disabli ...)
NOT-FOR-US: Chamilo
CVE-2021-32924 (Invision Community (aka IPS Community Suite) before 4.6.0
allows eval- ...)
NOT-FOR-US: Invision Community (aka IPS Community Suite)
@@ -18136,8 +18351,8 @@ CVE-2021-32807 (The module `AccessControl` defines
security policies for Python
NOT-FOR-US: Zope AccessControl
CVE-2021-32806 (Products.isurlinportal is a replacement for isURLInPortal
method in Pl ...)
NOT-FOR-US: Plone
-CVE-2021-32805
- RESERVED
+CVE-2021-32805 (Flask-AppBuilder is an application development framework,
built on top ...)
+ TODO: check
CVE-2021-32804 (The npm package "tar" (aka node-tar) before versions 6.1.1,
5.0.6, 4.4 ...)
- node-tar 6.1.7+~cs11.3.10-1 (bug #992111)
[bullseye] - node-tar <no-dsa> (Minor issue)
@@ -22124,8 +22339,8 @@ CVE-2021-31276
RESERVED
CVE-2021-31275
RESERVED
-CVE-2021-31274
- RESERVED
+CVE-2021-31274 (In LibreNMS < 21.3.0, a stored XSS vulnerability was
identified in ...)
+ TODO: check
CVE-2021-31273
RESERVED
CVE-2021-31272 (SerenityOS before commit
3844e8569689dd476064a0759d704bc64fb3ca2c cont ...)
@@ -23126,38 +23341,35 @@ CVE-2021-30807
RESERVED
CVE-2021-30806
RESERVED
-CVE-2021-30805
- RESERVED
-CVE-2021-30804
- RESERVED
-CVE-2021-30803
- RESERVED
-CVE-2021-30802
- RESERVED
+CVE-2021-30805 (A memory corruption issue was addressed with improved input
validation ...)
+ TODO: check
+CVE-2021-30804 (A permissions issue was addressed with improved validation.
This issue ...)
+ TODO: check
+CVE-2021-30803 (A permissions issue was addressed with improved validation.
This issue ...)
+ TODO: check
+CVE-2021-30802 (A use after free issue was addressed with improved memory
management. ...)
+ TODO: check
CVE-2021-30801
RESERVED
-CVE-2021-30800
- RESERVED
-CVE-2021-30799
- RESERVED
+CVE-2021-30800 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30799 (Multiple memory corruption issues were addressed with improved
memory ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30798
- RESERVED
-CVE-2021-30797
- RESERVED
+CVE-2021-30798 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30797 (This issue was addressed with improved checks. This issue is
fixed in ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30796
- RESERVED
-CVE-2021-30795
- RESERVED
+CVE-2021-30796 (A logic issue was addressed with improved validation. This
issue is fi ...)
+ TODO: check
+CVE-2021-30795 (A use after free issue was addressed with improved memory
management. ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
@@ -23165,355 +23377,342 @@ CVE-2021-30795
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
CVE-2021-30794
RESERVED
-CVE-2021-30793
- RESERVED
-CVE-2021-30792
- RESERVED
-CVE-2021-30791
- RESERVED
-CVE-2021-30790
- RESERVED
-CVE-2021-30789
- RESERVED
-CVE-2021-30788
- RESERVED
-CVE-2021-30787
- RESERVED
-CVE-2021-30786
- RESERVED
-CVE-2021-30785
- RESERVED
-CVE-2021-30784
- RESERVED
-CVE-2021-30783
- RESERVED
-CVE-2021-30782
- RESERVED
-CVE-2021-30781
- RESERVED
-CVE-2021-30780
- RESERVED
-CVE-2021-30779
- RESERVED
-CVE-2021-30778
- RESERVED
-CVE-2021-30777
- RESERVED
-CVE-2021-30776
- RESERVED
-CVE-2021-30775
- RESERVED
-CVE-2021-30774
- RESERVED
-CVE-2021-30773
- RESERVED
-CVE-2021-30772
- RESERVED
+CVE-2021-30793 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30792 (An out-of-bounds write was addressed with improved input
validation. T ...)
+ TODO: check
+CVE-2021-30791 (An out-of-bounds read was addressed with improved bounds
checking. Thi ...)
+ TODO: check
+CVE-2021-30790 (An information disclosure issue was addressed by removing the
vulnerab ...)
+ TODO: check
+CVE-2021-30789 (An out-of-bounds read was addressed with improved input
validation. Th ...)
+ TODO: check
+CVE-2021-30788 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30787 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30786 (A race condition was addressed with improved state handling.
This issu ...)
+ TODO: check
+CVE-2021-30785 (A buffer overflow was addressed with improved bounds checking.
This is ...)
+ TODO: check
+CVE-2021-30784 (Multiple issues were addressed with improved logic. This issue
is fixe ...)
+ TODO: check
+CVE-2021-30783 (An access issue was addressed with improved access
restrictions. This ...)
+ TODO: check
+CVE-2021-30782 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30781 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30780 (An out-of-bounds write issue was addressed with improved
bounds checki ...)
+ TODO: check
+CVE-2021-30779 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30778 (This issue was addressed with improved entitlements. This
issue is fix ...)
+ TODO: check
+CVE-2021-30777 (An injection issue was addressed with improved validation.
This issue ...)
+ TODO: check
+CVE-2021-30776 (A logic issue was addressed with improved validation. This
issue is fi ...)
+ TODO: check
+CVE-2021-30775 (A memory corruption issue was addressed with improved state
management ...)
+ TODO: check
+CVE-2021-30774 (A logic issue was addressed with improved validation. This
issue is fi ...)
+ TODO: check
+CVE-2021-30773 (An issue in code signature validation was addressed with
improved chec ...)
+ TODO: check
+CVE-2021-30772 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
CVE-2021-30771
RESERVED
-CVE-2021-30770
- RESERVED
-CVE-2021-30769
- RESERVED
-CVE-2021-30768
- RESERVED
+CVE-2021-30770 (A logic issue was addressed with improved validation. This
issue is fi ...)
+ TODO: check
+CVE-2021-30769 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30768 (A logic issue was addressed with improved validation. This
issue is fi ...)
+ TODO: check
CVE-2021-30767
RESERVED
-CVE-2021-30766
- RESERVED
-CVE-2021-30765
- RESERVED
-CVE-2021-30764
- RESERVED
-CVE-2021-30763
- RESERVED
-CVE-2021-30762
- RESERVED
+CVE-2021-30766 (An out-of-bounds write was addressed with improved input
validation. T ...)
+ TODO: check
+CVE-2021-30765 (An out-of-bounds write was addressed with improved input
validation. T ...)
+ TODO: check
+CVE-2021-30764 (Processing a maliciously crafted file may lead to arbitrary
code execu ...)
+ TODO: check
+CVE-2021-30763 (An input validation issue was addressed with improved input
validation ...)
+ TODO: check
+CVE-2021-30762 (A use after free issue was addressed with improved memory
management. ...)
{DSA-4681-1}
- webkit2gtk 2.28.0-2
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.28.0-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30761
- RESERVED
+CVE-2021-30761 (A memory corruption issue was addressed with improved state
management ...)
{DSA-4558-1}
- webkit2gtk 2.26.1-2
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.26.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30760
- RESERVED
-CVE-2021-30759
- RESERVED
-CVE-2021-30758
- RESERVED
+CVE-2021-30760 (An integer overflow was addressed through improved input
validation. T ...)
+ TODO: check
+CVE-2021-30759 (A stack overflow was addressed with improved input validation.
This is ...)
+ TODO: check
+CVE-2021-30758 (A type confusion issue was addressed with improved state
handling. Thi ...)
{DSA-4945-1}
- webkit2gtk 2.32.2-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.2-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30757
- RESERVED
-CVE-2021-30756
- RESERVED
-CVE-2021-30755
- RESERVED
+CVE-2021-30757 (This issue was addressed by enabling hardened runtime. This
issue is f ...)
+ TODO: check
+CVE-2021-30756 (A local attacker may be able to view Now Playing information
from the ...)
+ TODO: check
+CVE-2021-30755 (Processing a maliciously crafted font may result in the
disclosure of ...)
+ TODO: check
CVE-2021-30754
RESERVED
-CVE-2021-30753
- RESERVED
-CVE-2021-30752
- RESERVED
-CVE-2021-30751
- RESERVED
-CVE-2021-30750
- RESERVED
-CVE-2021-30749
- RESERVED
+CVE-2021-30753 (Processing a maliciously crafted font may result in the
disclosure of ...)
+ TODO: check
+CVE-2021-30752 (Processing a maliciously crafted image may lead to arbitrary
code exec ...)
+ TODO: check
+CVE-2021-30751 (This issue was addressed with improved data protection. This
issue is ...)
+ TODO: check
+CVE-2021-30750 (The issue was addressed with improved permissions logic. This
issue is ...)
+ TODO: check
+CVE-2021-30749 (Multiple memory corruption issues were addressed with improved
memory ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30748
- RESERVED
+CVE-2021-30748 (A memory corruption issue was addressed with improved state
management ...)
+ TODO: check
CVE-2021-30747
RESERVED
-CVE-2021-30746
- RESERVED
+CVE-2021-30746 (An out-of-bounds read was addressed with improved input
validation. Th ...)
+ TODO: check
CVE-2021-30745
RESERVED
-CVE-2021-30744
- RESERVED
+CVE-2021-30744 (Description: A cross-origin issue with iframe elements was
addressed w ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30743
- RESERVED
-CVE-2021-30742
- RESERVED
-CVE-2021-30741
- RESERVED
-CVE-2021-30740
- RESERVED
-CVE-2021-30739
- RESERVED
-CVE-2021-30738
- RESERVED
-CVE-2021-30737
- RESERVED
-CVE-2021-30736
- RESERVED
-CVE-2021-30735
- RESERVED
-CVE-2021-30734
- RESERVED
+CVE-2021-30743 (An out-of-bounds write was addressed with improved input
validation. T ...)
+ TODO: check
+CVE-2021-30742 (A memory consumption issue was addressed with improved memory
handling ...)
+ TODO: check
+CVE-2021-30741 (A use after free issue was addressed with improved memory
management. ...)
+ TODO: check
+CVE-2021-30740 (A logic issue was addressed with improved validation. This
issue is fi ...)
+ TODO: check
+CVE-2021-30739 (A local attacker may be able to elevate their privileges. This
issue i ...)
+ TODO: check
+CVE-2021-30738 (A malicious application may be able to overwrite arbitrary
files. This ...)
+ TODO: check
+CVE-2021-30737 (A memory corruption issue in the ASN.1 decoder was addressed
by removi ...)
+ TODO: check
+CVE-2021-30736 (A buffer overflow was addressed with improved size validation.
This is ...)
+ TODO: check
+CVE-2021-30735 (A malicious application may be able to execute arbitrary code
with ker ...)
+ TODO: check
+CVE-2021-30734 (Multiple memory corruption issues were addressed with improved
memory ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30733
- RESERVED
+CVE-2021-30733 (An out-of-bounds read was addressed with improved input
validation. Th ...)
+ TODO: check
CVE-2021-30732
RESERVED
-CVE-2021-30731
- RESERVED
+CVE-2021-30731 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
CVE-2021-30730
RESERVED
-CVE-2021-30729
- RESERVED
-CVE-2021-30728
- RESERVED
-CVE-2021-30727
- RESERVED
-CVE-2021-30726
- RESERVED
-CVE-2021-30725
- RESERVED
-CVE-2021-30724
- RESERVED
-CVE-2021-30723
- RESERVED
-CVE-2021-30722
- RESERVED
-CVE-2021-30721
- RESERVED
-CVE-2021-30720
- RESERVED
+CVE-2021-30729 (A logic issue was addressed with improved restrictions. This
issue is ...)
+ TODO: check
+CVE-2021-30728 (An out-of-bounds write issue was addressed with improved
bounds checki ...)
+ TODO: check
+CVE-2021-30727 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30726 (A malicious application may be able to execute arbitrary code
with ker ...)
+ TODO: check
+CVE-2021-30725 (A memory corruption issue was addressed with improved state
management ...)
+ TODO: check
+CVE-2021-30724 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30723 (An information disclosure issue was addressed with improved
state mana ...)
+ TODO: check
+CVE-2021-30722 (An information disclosure issue was addressed with improved
state mana ...)
+ TODO: check
+CVE-2021-30721 (A path handling issue was addressed with improved validation.
This iss ...)
+ TODO: check
+CVE-2021-30720 (A logic issue was addressed with improved restrictions. This
issue is ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30719
- RESERVED
-CVE-2021-30718
- RESERVED
-CVE-2021-30717
- RESERVED
-CVE-2021-30716
- RESERVED
-CVE-2021-30715
- RESERVED
-CVE-2021-30714
- RESERVED
-CVE-2021-30713
- RESERVED
-CVE-2021-30712
- RESERVED
+CVE-2021-30719 (A local user may be able to cause unexpected system
termination or rea ...)
+ TODO: check
+CVE-2021-30718 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30717 (A memory corruption issue was addressed with improved state
management ...)
+ TODO: check
+CVE-2021-30716 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30715 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30714 (A race condition was addressed with improved state handling.
This issu ...)
+ TODO: check
+CVE-2021-30713 (A permissions issue was addressed with improved validation.
This issue ...)
+ TODO: check
+CVE-2021-30712 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
CVE-2021-30711
RESERVED
-CVE-2021-30710
- RESERVED
-CVE-2021-30709
- RESERVED
-CVE-2021-30708
- RESERVED
-CVE-2021-30707
- RESERVED
-CVE-2021-30706
- RESERVED
-CVE-2021-30705
- RESERVED
-CVE-2021-30704
- RESERVED
-CVE-2021-30703
- RESERVED
-CVE-2021-30702
- RESERVED
-CVE-2021-30701
- RESERVED
-CVE-2021-30700
- RESERVED
-CVE-2021-30699
- RESERVED
-CVE-2021-30698
- RESERVED
-CVE-2021-30697
- RESERVED
-CVE-2021-30696
- RESERVED
-CVE-2021-30695
- RESERVED
-CVE-2021-30694
- RESERVED
-CVE-2021-30693
- RESERVED
-CVE-2021-30692
- RESERVED
-CVE-2021-30691
- RESERVED
-CVE-2021-30690
- RESERVED
-CVE-2021-30689
- RESERVED
+CVE-2021-30710 (A memory corruption issue was addressed with improved state
management ...)
+ TODO: check
+CVE-2021-30709 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30708 (An out-of-bounds read was addressed with improved input
validation. Th ...)
+ TODO: check
+CVE-2021-30707 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30706 (Processing a maliciously crafted image may lead to disclosure
of user ...)
+ TODO: check
+CVE-2021-30705 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30704 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30703 (A double free issue was addressed with improved memory
management. Thi ...)
+ TODO: check
+CVE-2021-30702 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30701 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30700 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30699 (A window management issue was addressed with improved state
management ...)
+ TODO: check
+CVE-2021-30698 (A null pointer dereference was addressed with improved input
validatio ...)
+ TODO: check
+CVE-2021-30697 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30696 (An attacker in a privileged network position may be able to
misreprese ...)
+ TODO: check
+CVE-2021-30695 (An out-of-bounds read was addressed with improved bounds
checking. Thi ...)
+ TODO: check
+CVE-2021-30694 (An information disclosure issue was addressed with improved
state mana ...)
+ TODO: check
+CVE-2021-30693 (A validation issue was addressed with improved logic. This
issue is fi ...)
+ TODO: check
+CVE-2021-30692 (An information disclosure issue was addressed with improved
state mana ...)
+ TODO: check
+CVE-2021-30691 (An information disclosure issue was addressed with improved
state mana ...)
+ TODO: check
+CVE-2021-30690 (Multiple issues in apache were addressed by updating apache to
version ...)
+ TODO: check
+CVE-2021-30689 (A logic issue was addressed with improved state management.
This issue ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30688
- RESERVED
-CVE-2021-30687
- RESERVED
-CVE-2021-30686
- RESERVED
-CVE-2021-30685
- RESERVED
-CVE-2021-30684
- RESERVED
-CVE-2021-30683
- RESERVED
-CVE-2021-30682
- RESERVED
+CVE-2021-30688 (A malicious application may be able to break out of its
sandbox. This ...)
+ TODO: check
+CVE-2021-30687 (An out-of-bounds read was addressed with improved bounds
checking. Thi ...)
+ TODO: check
+CVE-2021-30686 (An out-of-bounds read was addressed with improved bounds
checking. Thi ...)
+ TODO: check
+CVE-2021-30685 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30684 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30683 (A use after free issue was addressed with improved memory
management. ...)
+ TODO: check
+CVE-2021-30682 (A logic issue was addressed with improved restrictions. This
issue is ...)
{DSA-4923-1}
- webkit2gtk 2.32.0-2
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.0-2
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30681
- RESERVED
-CVE-2021-30680
- RESERVED
-CVE-2021-30679
- RESERVED
-CVE-2021-30678
- RESERVED
-CVE-2021-30677
- RESERVED
-CVE-2021-30676
- RESERVED
-CVE-2021-30675
- RESERVED
-CVE-2021-30674
- RESERVED
-CVE-2021-30673
- RESERVED
-CVE-2021-30672
- RESERVED
-CVE-2021-30671
- RESERVED
+CVE-2021-30681 (A validation issue existed in the handling of symlinks. This
issue was ...)
+ TODO: check
+CVE-2021-30680 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30679 (This issue was addressed by removing the vulnerable code. This
issue i ...)
+ TODO: check
+CVE-2021-30678 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30677 (This issue was addressed with improved environment
sanitization. This ...)
+ TODO: check
+CVE-2021-30676 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30675 (A memory corruption issue was addressed with improved state
management ...)
+ TODO: check
+CVE-2021-30674 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30673 (An access issue was addressed with improved access
restrictions. This ...)
+ TODO: check
+CVE-2021-30672 (A memory corruption issue was addressed with improved state
management ...)
+ TODO: check
+CVE-2021-30671 (A validation issue was addressed with improved logic. This
issue is fi ...)
+ TODO: check
CVE-2021-30670
RESERVED
-CVE-2021-30669
- RESERVED
-CVE-2021-30668
- RESERVED
-CVE-2021-30667
- RESERVED
-CVE-2021-30666
- RESERVED
+CVE-2021-30669 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30668 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30667 (A logic issue was addressed with improved validation. This
issue is fi ...)
+ TODO: check
+CVE-2021-30666 (A buffer overflow issue was addressed with improved memory
handling. T ...)
{DSA-4558-1}
- webkit2gtk 2.26.1-2
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.26.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30665
- RESERVED
+CVE-2021-30665 (A memory corruption issue was addressed with improved state
management ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30664
- RESERVED
-CVE-2021-30663
- RESERVED
+CVE-2021-30664 (An out-of-bounds write issue was addressed with improved
bounds checki ...)
+ TODO: check
+CVE-2021-30663 (An integer overflow was addressed with improved input
validation. This ...)
{DSA-4945-1}
- webkit2gtk 2.32.3-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.3-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30662
- RESERVED
-CVE-2021-30661
- RESERVED
+CVE-2021-30662 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30661 (A use after free issue was addressed with improved memory
management. ...)
{DSA-4797-1}
- webkit2gtk 2.30.1-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.30.0-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-30660
- RESERVED
-CVE-2021-30659
- RESERVED
-CVE-2021-30658
- RESERVED
-CVE-2021-30657
- RESERVED
-CVE-2021-30656
- RESERVED
-CVE-2021-30655
- RESERVED
-CVE-2021-30654
- RESERVED
-CVE-2021-30653
- RESERVED
-CVE-2021-30652
- RESERVED
+CVE-2021-30660 (An out-of-bounds read was addressed with improved bounds
checking. Thi ...)
+ TODO: check
+CVE-2021-30659 (A validation issue was addressed with improved logic. This
issue is fi ...)
+ TODO: check
+CVE-2021-30658 (This issue was addressed with improved handling of file
metadata. This ...)
+ TODO: check
+CVE-2021-30657 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-30656 (An access issue was addressed with improved memory management.
This is ...)
+ TODO: check
+CVE-2021-30655 (An application may be able to execute arbitrary code with
system privi ...)
+ TODO: check
+CVE-2021-30654 (This issue was addressed by removing additional entitlements.
This iss ...)
+ TODO: check
+CVE-2021-30653 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-30652 (A race condition was addressed with additional validation.
This issue ...)
+ TODO: check
CVE-2021-30651
RESERVED
CVE-2021-30650
@@ -28607,7 +28806,7 @@ CVE-2021-28734
CVE-2021-28733
RESERVED
CVE-2021-28732
- RESERVED
+ REJECTED
CVE-2021-28731
RESERVED
CVE-2021-28730
@@ -28668,8 +28867,7 @@ CVE-2021-28703
RESERVED
CVE-2021-28702
RESERVED
-CVE-2021-28701 [Another race in XENMAPSPACE_grant_table handling]
- RESERVED
+CVE-2021-28701 (Another race in XENMAPSPACE_grant_table handling Guests are
permitted ...)
- xen <unfixed>
[stretch] - xen <end-of-life> (DSA 4602-1)
NOTE: https://xenbits.xen.org/xsa/advisory-384.html
@@ -29038,10 +29236,10 @@ CVE-2021-28583 (Magento versions 2.4.2 (and earlier),
2.4.1-p1 (and earlier) and
NOT-FOR-US: Magento
CVE-2021-28582
RESERVED
-CVE-2021-28581
- RESERVED
-CVE-2021-28580
- RESERVED
+CVE-2021-28581 (Adobe Creative Cloud Desktop 3.5 (and earlier) is affected by
an uncon ...)
+ TODO: check
+CVE-2021-28580 (Medium by Adobe version 2.4.5.331 (and earlier) is affected by
a buffe ...)
+ TODO: check
CVE-2021-28579 (Adobe Connect version 11.2.1 (and earlier) is affected by an
Improper ...)
NOT-FOR-US: Adobe
CVE-2021-28578
@@ -29058,18 +29256,18 @@ CVE-2021-28573 (Adobe Animate version 21.0.5 (and
earlier) is affected by an Out
NOT-FOR-US: Adobe
CVE-2021-28572
RESERVED
-CVE-2021-28571
- RESERVED
+CVE-2021-28571 (Adobe After Effects version 18.1 (and earlier) is affected by
a potent ...)
+ TODO: check
CVE-2021-28570 (Adobe After Effects version 18.1 (and earlier) is affected by
an Uncon ...)
NOT-FOR-US: Adobe
-CVE-2021-28569
- RESERVED
-CVE-2021-28568
- RESERVED
-CVE-2021-28567
- RESERVED
-CVE-2021-28566
- RESERVED
+CVE-2021-28569 (Adobe Media Encoder version 15.1 (and earlier) is affected by
an Out-o ...)
+ TODO: check
+CVE-2021-28568 (Adobe Genuine Services version 7.1 (and earlier) is affected
by an Ins ...)
+ TODO: check
+CVE-2021-28567 (Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier)
and 2.3.6 ...)
+ TODO: check
+CVE-2021-28566 (Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier)
and 2.3.6 ...)
+ TODO: check
CVE-2021-28565 (Acrobat Reader DC versions versions 2021.001.20150 (and
earlier), 2020 ...)
NOT-FOR-US: Adobe
CVE-2021-28564 (Acrobat Reader DC versions versions 2021.001.20150 (and
earlier), 2020 ...)
@@ -41396,8 +41594,8 @@ CVE-2021-23406 (This affects the package pac-resolver
before 5.0.0. This can occ
NOT-FOR-US: Node pac-resolver
CVE-2021-23405 (This affects the package pimcore/pimcore before 10.0.7. This
issue exi ...)
NOT-FOR-US: Pimcore
-CVE-2021-23404
- RESERVED
+CVE-2021-23404 (This affects all versions of package sqlite-web. The SQL
dashboard are ...)
+ TODO: check
CVE-2021-23403 (All versions of package ts-nodash are vulnerable to Prototype
Pollutio ...)
NOT-FOR-US: Node ts-nodash
CVE-2021-23402 (All versions of package record-like-deep-assign are vulnerable
to Prot ...)
@@ -41913,20 +42111,20 @@ CVE-2021-3057
RESERVED
CVE-2021-3056
RESERVED
-CVE-2021-3055
- RESERVED
-CVE-2021-3054
- RESERVED
-CVE-2021-3053
- RESERVED
-CVE-2021-3052
- RESERVED
-CVE-2021-3051
- RESERVED
+CVE-2021-3055 (An improper restriction of XML external entity (XXE) reference
vulnera ...)
+ TODO: check
+CVE-2021-3054 (A time-of-check to time-of-use (TOCTOU) race condition
vulnerability i ...)
+ TODO: check
+CVE-2021-3053 (An improper handling of exceptional conditions vulnerability
exists in ...)
+ TODO: check
+CVE-2021-3052 (A reflected cross-site scripting (XSS) vulnerability in the
Palo Alto ...)
+ TODO: check
+CVE-2021-3051 (An improper verification of cryptographic signature
vulnerability exis ...)
+ TODO: check
CVE-2021-3050 (An OS command injection vulnerability in the Palo Alto Networks
PAN-OS ...)
NOT-FOR-US: Palo Alto Networks PAN-OS
-CVE-2021-3049
- RESERVED
+CVE-2021-3049 (An improper authorization vulnerability in the Palo Alto
Networks Cort ...)
+ TODO: check
CVE-2021-3048 (Certain invalid URL entries contained in an External Dynamic
List (EDL ...)
NOT-FOR-US: Palo Alto Networks
CVE-2021-3047 (A cryptographically weak pseudo-random number generator (PRNG)
is used ...)
@@ -44591,8 +44789,8 @@ CVE-2021-22006
RESERVED
CVE-2021-22005
RESERVED
-CVE-2021-22004
- RESERVED
+CVE-2021-22004 (An issue was discovered in SaltStack Salt before 3003.3. The
salt mini ...)
+ TODO: check
CVE-2021-22003 (VMware Workspace ONE Access and Identity Manager,
unintentionally prov ...)
NOT-FOR-US: VMware
CVE-2021-22002 (VMware Workspace ONE Access and Identity Manager, allow the
/cfg web a ...)
@@ -44607,8 +44805,8 @@ CVE-2021-21998 (VMware Carbon Black App Control 8.0,
8.1, 8.5 prior to 8.5.8, an
NOT-FOR-US: VMware
CVE-2021-21997 (VMware Tools for Windows (11.x.y prior to 11.3.0) contains a
denial-of ...)
NOT-FOR-US: VMware
-CVE-2021-21996
- RESERVED
+CVE-2021-21996 (An issue was discovered in SaltStack Salt before 3003.3. A
user who ha ...)
+ TODO: check
CVE-2021-21995 (OpenSLP as used in ESXi has a denial-of-service vulnerability
due a he ...)
NOT-FOR-US: VMware
CVE-2021-21994 (SFCB (Small Footprint CIM Broker) as used in ESXi has an
authenticatio ...)
@@ -44821,8 +45019,8 @@ CVE-2021-21899
RESERVED
CVE-2021-21898
RESERVED
-CVE-2021-21897
- RESERVED
+CVE-2021-21897 (A code execution vulnerability exists in the
DL_Dxf::handleLWPolylineD ...)
+ TODO: check
CVE-2021-21896
RESERVED
CVE-2021-21895
@@ -48470,12 +48668,12 @@ CVE-2020-35572 (Adminer through 4.7.8 allows XSS via
the history parameter to th
NOTE:
https://github.com/vrana/adminer/commit/5c395afc098e501be3417017c6421968aac477bd
(v4.7.9)
CVE-2020-35571 (An issue was discovered in MantisBT through 2.24.3. In the
helper_ensu ...)
- mantis <removed>
-CVE-2021-21105
- RESERVED
-CVE-2021-21104
- RESERVED
-CVE-2021-21103
- RESERVED
+CVE-2021-21105 (Adobe Illustrator version 25.2 (and earlier) is affected by a
memory c ...)
+ TODO: check
+CVE-2021-21104 (Adobe Illustrator version 25.2 (and earlier) is affected by a
memory c ...)
+ TODO: check
+CVE-2021-21103 (Adobe Illustrator version 25.2 (and earlier) is affected by a
memory c ...)
+ TODO: check
CVE-2021-21102 (Adobe Illustrator version 25.2 (and earlier) is affected by a
Path Tra ...)
NOT-FOR-US: Adobe
CVE-2021-21101 (Adobe Illustrator version 25.2 (and earlier) is affected by an
Out-of- ...)
@@ -53449,8 +53647,7 @@ CVE-2021-1974
RESERVED
CVE-2021-1973
RESERVED
-CVE-2021-1972
- RESERVED
+CVE-2021-1972 (Possible buffer overflow due to improper validation of device
types du ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2021-1971
RESERVED
@@ -53536,14 +53733,12 @@ CVE-2021-1932
RESERVED
CVE-2021-1931 (Possible buffer overflow due to improper validation of buffer
length w ...)
NOT-FOR-US: Snapdragon
-CVE-2021-1930
- RESERVED
+CVE-2021-1930 (Possible out of bounds read due to incorrect validation of
incoming bu ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-1929
- RESERVED
+CVE-2021-1929 (Lack of strict validation of bootmode can lead to information
disclosu ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-1928
- RESERVED
+CVE-2021-1928 (Buffer over read could occur due to incorrect check of buffer
size whi ...)
+ TODO: check
CVE-2021-1927 (Possible use after free due to lack of null check while memory
is bein ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2021-1926
@@ -53552,29 +53747,25 @@ CVE-2021-1925 (Possible denial of service scenario
due to improper handling of g
NOT-FOR-US: Qualcomm components for Android
CVE-2021-1924
RESERVED
-CVE-2021-1923
- RESERVED
+CVE-2021-1923 (Incorrect pointer argument passed to trusted application TA
could resu ...)
+ TODO: check
CVE-2021-1922
RESERVED
CVE-2021-1921
RESERVED
-CVE-2021-1920
- RESERVED
+CVE-2021-1920 (Integer underflow can occur due to improper handling of
incoming RTCP ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-1919
- RESERVED
+CVE-2021-1919 (Integer underflow can occur when the RTCP length is lesser than
than t ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2021-1918
RESERVED
CVE-2021-1917
RESERVED
-CVE-2021-1916
- RESERVED
+CVE-2021-1916 (Possible buffer underflow due to lack of check for negative
indices va ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2021-1915 (Buffer overflow can occur due to improper validation of NDP
applicatio ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-1914
- RESERVED
+CVE-2021-1914 (Loop with unreachable exit condition may occur due to improper
handlin ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2021-1913
RESERVED
@@ -53594,8 +53785,7 @@ CVE-2021-1906 (Improper handling of address
deregistration on failure can lead t
NOT-FOR-US: Qualcomm components for Android
CVE-2021-1905 (Possible use after free due to improper handling of memory
mapping of ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2021-1904
- RESERVED
+CVE-2021-1904 (Child process can leak information from parent process due to
numeric ...)
NOT-FOR-US: Qualcomm components for Android
CVE-2021-1903
RESERVED
@@ -53633,34 +53823,34 @@ CVE-2021-1887 (An assertion can be reached in the
WLAN subsystem while using the
NOT-FOR-US: Snapdragon
CVE-2021-1886 (Incorrect handling of pointers in trusted application key
import mecha ...)
NOT-FOR-US: Snapdragon
-CVE-2021-1885
- RESERVED
-CVE-2021-1884
- RESERVED
-CVE-2021-1883
- RESERVED
-CVE-2021-1882
- RESERVED
-CVE-2021-1881
- RESERVED
-CVE-2021-1880
- RESERVED
+CVE-2021-1885 (An out-of-bounds read was addressed with improved bounds
checking. Thi ...)
+ TODO: check
+CVE-2021-1884 (A race condition was addressed with improved locking. This
issue is fi ...)
+ TODO: check
+CVE-2021-1883 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-1882 (A memory corruption issue was addressed with improved
validation. This ...)
+ TODO: check
+CVE-2021-1881 (An out-of-bounds read was addressed with improved input
validation. Th ...)
+ TODO: check
+CVE-2021-1880 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
CVE-2021-1879 (This issue was addressed by improved management of object
lifetimes. T ...)
NOT-FOR-US: Apple
-CVE-2021-1878
- RESERVED
-CVE-2021-1877
- RESERVED
-CVE-2021-1876
- RESERVED
-CVE-2021-1875
- RESERVED
-CVE-2021-1874
- RESERVED
-CVE-2021-1873
- RESERVED
-CVE-2021-1872
- RESERVED
+CVE-2021-1878 (An integer overflow was addressed with improved input
validation. This ...)
+ TODO: check
+CVE-2021-1877 (An out-of-bounds read was addressed with improved input
validation. Th ...)
+ TODO: check
+CVE-2021-1876 (A use after free issue was addressed with improved memory
management. ...)
+ TODO: check
+CVE-2021-1875 (A double free issue was addressed with improved memory
management. Thi ...)
+ TODO: check
+CVE-2021-1874 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-1873 (An API issue in Accessibility TCC permissions was addressed
with impro ...)
+ TODO: check
+CVE-2021-1872 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
CVE-2021-1871 (A logic issue was addressed with improved restrictions. This
issue is ...)
{DSA-4923-1}
- webkit2gtk 2.32.0-2
@@ -53675,52 +53865,52 @@ CVE-2021-1870 (A logic issue was addressed with
improved restrictions. This issu
NOTE: https://webkitgtk.org/security/WSA-2021-0002.html
CVE-2021-1869
RESERVED
-CVE-2021-1868
- RESERVED
-CVE-2021-1867
- RESERVED
+CVE-2021-1868 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-1867 (An out-of-bounds read was addressed with improved input
validation. Th ...)
+ TODO: check
CVE-2021-1866
RESERVED
-CVE-2021-1865
- RESERVED
-CVE-2021-1864
- RESERVED
-CVE-2021-1863
- RESERVED
-CVE-2021-1862
- RESERVED
-CVE-2021-1861
- RESERVED
-CVE-2021-1860
- RESERVED
-CVE-2021-1859
- RESERVED
-CVE-2021-1858
- RESERVED
-CVE-2021-1857
- RESERVED
+CVE-2021-1865 (An issue obscuring passwords in screenshots was addressed with
improve ...)
+ TODO: check
+CVE-2021-1864 (A use after free issue was addressed with improved memory
management. ...)
+ TODO: check
+CVE-2021-1863 (An issue existed with authenticating the action triggered by an
NFC ta ...)
+ TODO: check
+CVE-2021-1862 (Description: A person with physical access may be able to
access conta ...)
+ TODO: check
+CVE-2021-1861 (An issue existed in determining cache occupancy. The issue was
address ...)
+ TODO: check
+CVE-2021-1860 (A memory initialization issue was addressed with improved
memory handl ...)
+ TODO: check
+CVE-2021-1859 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-1858 (Processing a maliciously crafted image may lead to arbitrary
code exec ...)
+ TODO: check
+CVE-2021-1857 (A memory initialization issue was addressed with improved
memory handl ...)
+ TODO: check
CVE-2021-1856
RESERVED
-CVE-2021-1855
- RESERVED
-CVE-2021-1854
- RESERVED
-CVE-2021-1853
- RESERVED
-CVE-2021-1852
- RESERVED
-CVE-2021-1851
- RESERVED
+CVE-2021-1855 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-1854 (A call termination issue with was addressed with improved
logic. This ...)
+ TODO: check
+CVE-2021-1853 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-1852 (An out-of-bounds read was addressed with improved input
validation. Th ...)
+ TODO: check
+CVE-2021-1851 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
CVE-2021-1850
RESERVED
-CVE-2021-1849
- RESERVED
-CVE-2021-1848
- RESERVED
-CVE-2021-1847
- RESERVED
-CVE-2021-1846
- RESERVED
+CVE-2021-1849 (An issue in code signature validation was addressed with
improved chec ...)
+ TODO: check
+CVE-2021-1848 (The issue was addressed with improved UI handling. This issue
is fixed ...)
+ TODO: check
+CVE-2021-1847 (A memory corruption issue was addressed with improved
validation. This ...)
+ TODO: check
+CVE-2021-1846 (Processing a maliciously crafted audio file may disclose
restricted me ...)
+ TODO: check
CVE-2021-1845
RESERVED
CVE-2021-1844 (A memory corruption issue was addressed with improved
validation. This ...)
@@ -53729,64 +53919,61 @@ CVE-2021-1844 (A memory corruption issue was
addressed with improved validation.
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.32.0-2
NOTE: https://webkitgtk.org/security/WSA-2021-0003.html
-CVE-2021-1843
- RESERVED
+CVE-2021-1843 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
CVE-2021-1842
RESERVED
-CVE-2021-1841
- RESERVED
-CVE-2021-1840
- RESERVED
-CVE-2021-1839
- RESERVED
-CVE-2021-1838
- RESERVED
-CVE-2021-1837
- RESERVED
-CVE-2021-1836
- RESERVED
-CVE-2021-1835
- RESERVED
-CVE-2021-1834
- RESERVED
-CVE-2021-1833
- RESERVED
-CVE-2021-1832
- RESERVED
-CVE-2021-1831
- RESERVED
-CVE-2021-1830
- RESERVED
-CVE-2021-1829
- RESERVED
-CVE-2021-1828
- RESERVED
+CVE-2021-1841 (A malicious application may be able to execute arbitrary code
with ker ...)
+ TODO: check
+CVE-2021-1840 (A memory corruption issue was addressed with improved
validation. This ...)
+ TODO: check
+CVE-2021-1839 (The issue was addressed with improved permissions logic. This
issue is ...)
+ TODO: check
+CVE-2021-1838 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-1837 (A certificate validation issue was addressed. This issue is
fixed in i ...)
+ TODO: check
+CVE-2021-1836 (A logic issue was addressed with improved restrictions. This
issue is ...)
+ TODO: check
+CVE-2021-1835 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-1834 (An out-of-bounds write issue was addressed with improved bounds
checki ...)
+ TODO: check
+CVE-2021-1833 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-1832 (Copied files may not have the expected file permissions. This
issue is ...)
+ TODO: check
+CVE-2021-1831 (The issue was addressed with improved permissions logic. This
issue is ...)
+ TODO: check
+CVE-2021-1830 (An out-of-bounds read was addressed with improved input
validation. Th ...)
+ TODO: check
+CVE-2021-1829 (A type confusion issue was addressed with improved state
handling. Thi ...)
+ TODO: check
+CVE-2021-1828 (A memory corruption issue was addressed with improved
validation. This ...)
+ TODO: check
CVE-2021-1827
RESERVED
-CVE-2021-1826
- RESERVED
+CVE-2021-1826 (A logic issue was addressed with improved restrictions. This
issue is ...)
{DSA-4797-1}
- webkit2gtk 2.30.1-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.30.0-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-1825
- RESERVED
+CVE-2021-1825 (An input validation issue was addressed with improved input
validation ...)
{DSA-4797-1}
- webkit2gtk 2.30.1-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.30.0-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-1824
- RESERVED
+CVE-2021-1824 (This issue was addressed with improved entitlements. This issue
is fix ...)
+ TODO: check
CVE-2021-1823
RESERVED
-CVE-2021-1822
- RESERVED
+CVE-2021-1822 (A logic issue was addressed with improved restrictions. This
issue is ...)
+ TODO: check
CVE-2021-1821
RESERVED
-CVE-2021-1820
- RESERVED
+CVE-2021-1820 (A memory initialization issue was addressed with improved
memory handl ...)
{DSA-4797-1}
- webkit2gtk 2.30.1-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
@@ -53796,33 +53983,32 @@ CVE-2021-1819
RESERVED
CVE-2021-1818 (A logic issue was addressed with improved state management.
This issue ...)
NOT-FOR-US: Apple
-CVE-2021-1817
- RESERVED
+CVE-2021-1817 (A memory corruption issue was addressed with improved state
management ...)
{DSA-4797-1}
- webkit2gtk 2.30.1-1
[stretch] - webkit2gtk <ignored> (Not covered by security support in
stretch)
- wpewebkit 2.30.0-1
NOTE: https://webkitgtk.org/security/WSA-2021-0004.html
-CVE-2021-1816
- RESERVED
-CVE-2021-1815
- RESERVED
-CVE-2021-1814
- RESERVED
-CVE-2021-1813
- RESERVED
-CVE-2021-1812
- RESERVED
-CVE-2021-1811
- RESERVED
-CVE-2021-1810
- RESERVED
-CVE-2021-1809
- RESERVED
-CVE-2021-1808
- RESERVED
-CVE-2021-1807
- RESERVED
+CVE-2021-1816 (A buffer overflow was addressed with improved bounds checking.
This is ...)
+ TODO: check
+CVE-2021-1815 (A parsing issue in the handling of directory paths was
addressed with ...)
+ TODO: check
+CVE-2021-1814 (This issue was addressed with improved checks. This issue is
fixed in ...)
+ TODO: check
+CVE-2021-1813 (A validation issue was addressed with improved logic. This
issue is fi ...)
+ TODO: check
+CVE-2021-1812 (A logic issue was addressed with improved validation. This
issue is fi ...)
+ TODO: check
+CVE-2021-1811 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-1810 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
+CVE-2021-1809 (A memory corruption issue was addressed with improved
validation. This ...)
+ TODO: check
+CVE-2021-1808 (A memory corruption issue was addressed with improved
validation. This ...)
+ TODO: check
+CVE-2021-1807 (A validation issue was addressed with improved input
sanitization. Thi ...)
+ TODO: check
CVE-2021-1806 (A race condition was addressed with additional validation. This
issue ...)
NOT-FOR-US: Apple
CVE-2021-1805 (An out-of-bounds write was addressed with improved input
validation. T ...)
@@ -53883,8 +54069,8 @@ CVE-2021-1786 (A logic issue was addressed with
improved state management. This
NOT-FOR-US: Apple
CVE-2021-1785 (An out-of-bounds read was addressed with improved input
validation. Th ...)
NOT-FOR-US: Apple
-CVE-2021-1784
- RESERVED
+CVE-2021-1784 (A permissions issue existed in DiskArbitration. This was
addressed wit ...)
+ TODO: check
CVE-2021-1783 (An access issue was addressed with improved memory management.
This is ...)
NOT-FOR-US: Apple
CVE-2021-1782 (A race condition was addressed with improved locking. This
issue is fi ...)
@@ -53911,8 +54097,8 @@ CVE-2021-1772 (A stack overflow was addressed with
improved input validation. Th
NOT-FOR-US: Apple
CVE-2021-1771 (This issue was addressed with improved checks. This issue is
fixed in ...)
NOT-FOR-US: Apple
-CVE-2021-1770
- RESERVED
+CVE-2021-1770 (A buffer overflow may result in arbitrary code execution. This
issue i ...)
+ TODO: check
CVE-2021-1769 (A logic issue was addressed with improved validation. This
issue is fi ...)
NOT-FOR-US: Apple
CVE-2021-1768 (An out-of-bounds read was addressed with improved bounds
checking. Thi ...)
@@ -53931,8 +54117,8 @@ CVE-2021-1764 (A use after free issue was addressed
with improved memory managem
NOT-FOR-US: Apple
CVE-2021-1763 (A buffer overflow was addressed with improved bounds checking.
This is ...)
NOT-FOR-US: Apple
-CVE-2021-1762
- RESERVED
+CVE-2021-1762 (An out-of-bounds write was addressed with improved input
validation. T ...)
+ TODO: check
CVE-2021-1761 (This issue was addressed with improved checks. This issue is
fixed in ...)
NOT-FOR-US: Apple
CVE-2021-1760 (A memory corruption issue was addressed with improved state
management ...)
@@ -53975,10 +54161,10 @@ CVE-2021-1742 (This issue was addressed with improved
checks. This issue is fixe
NOT-FOR-US: Apple
CVE-2021-1741 (An out-of-bounds read was addressed with improved bounds
checking. Thi ...)
NOT-FOR-US: Apple
-CVE-2021-1740
- RESERVED
-CVE-2021-1739
- RESERVED
+CVE-2021-1740 (A parsing issue in the handling of directory paths was
addressed with ...)
+ TODO: check
+CVE-2021-1739 (A parsing issue in the handling of directory paths was
addressed with ...)
+ TODO: check
CVE-2021-1738 (An out-of-bounds write was addressed with improved input
validation. T ...)
NOT-FOR-US: Apple
CVE-2021-1737 (An out-of-bounds write was addressed with improved input
validation. T ...)
@@ -55719,8 +55905,8 @@ CVE-2020-29014 (A concurrent execution using shared
resource with improper synch
NOT-FOR-US: Fortiguard
CVE-2020-29013
RESERVED
-CVE-2020-29012
- RESERVED
+CVE-2020-29012 (An insufficient session expiration vulnerability in
FortiSandbox versi ...)
+ TODO: check
CVE-2020-29011 (Instances of SQL Injection vulnerabilities in the checksum
search and ...)
NOT-FOR-US: FortiSandbox
CVE-2020-29010
@@ -60998,12 +61184,12 @@ CVE-2020-27944 (A memory corruption issue existed in
the processing of font file
NOT-FOR-US: Apple
CVE-2020-27943 (A memory corruption issue existed in the processing of font
files. Thi ...)
NOT-FOR-US: Apple
-CVE-2020-27942
- RESERVED
+CVE-2020-27942 (A logic issue was addressed with improved state management.
This issue ...)
+ TODO: check
CVE-2020-27941 (A validation issue was addressed with improved logic. This
issue is fi ...)
NOT-FOR-US: Apple
-CVE-2020-27940
- RESERVED
+CVE-2020-27940 (This issue was addressed with improved file handling. This
issue is fi ...)
+ TODO: check
CVE-2020-27939 (This issue was addressed with improved checks. This issue is
fixed in ...)
NOT-FOR-US: Apple
CVE-2020-27938 (A logic issue was addressed with improved state management.
This issue ...)
@@ -69653,8 +69839,8 @@ CVE-2020-24674 (In S+ Operations and S+ Historian, not
all client commands corre
NOT-FOR-US: ABB
CVE-2020-24673 (In S+ Operations and S+ Historian, a successful SQL injection
exploit ...)
NOT-FOR-US: ABB
-CVE-2020-24672
- RESERVED
+CVE-2020-24672 (A vulnerability in Base Software for SoftControl allows an
attacker to ...)
+ TODO: check
CVE-2020-24671 (Trace Financial CRESTBridge <6.3.0.02 contains an
authenticated SQL ...)
NOT-FOR-US: Trace Financial CRESTBridge
CVE-2020-24670 (The Dashboard Editor in Hitachi Vantara Pentaho through 7.x -
8.x cont ...)
@@ -102000,8 +102186,8 @@ CVE-2020-11303
RESERVED
CVE-2020-11302
RESERVED
-CVE-2020-11301
- RESERVED
+CVE-2020-11301 (Improper authentication of un-encrypted plaintext Wi-Fi frames
in an e ...)
+ TODO: check
CVE-2020-11300
RESERVED
CVE-2020-11299 (Buffer overflow can occur in video while playing the
non-standard clip ...)
@@ -102074,8 +102260,8 @@ CVE-2020-11266 (Image address is dereferenced before
validating its range which
NOT-FOR-US: Qualcomm components for Android
CVE-2020-11265 (Information disclosure issue due to lack of validation of
pointer argu ...)
NOT-FOR-US: Qualcomm components for Android
-CVE-2020-11264
- RESERVED
+CVE-2020-11264 (Improper authentication of Non-EAPOL/WAPI plaintext frames
during four ...)
+ TODO: check
CVE-2020-11263
RESERVED
CVE-2020-11262 (A race between command submission and destroying the context
can cause ...)
@@ -220931,7 +221117,7 @@ CVE-2018-1000098 (Teluu PJSIP version 2.7.1 and
earlier contains a Integer Overf
NOTE: http://downloads.asterisk.org/pub/security/AST-2018-002.html
NOTE: https://trac.pjsip.org/repos/ticket/2093
NOTE: In jessie Asterisk doesn't use pjproject for SIP (only for ICE,
STUN and TURN)
-CVE-2018-1000101 (Mingw-w64 version 5.0.3 and earlier contains an Improper
Null Terminat ...)
+CVE-2018-1000101 (Mingw-w64 version 5.0.3 and earlier, 5.0.4, 6.0.0 and 7.0.0
contains a ...)
- mingw-w64 8.0.0-1 (low; bug #897196)
[buster] - mingw-w64 <ignored> (Minor issue)
[stretch] - mingw-w64 <ignored> (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b468819caa7d5aa82347fcc36682258ac8528f87
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b468819caa7d5aa82347fcc36682258ac8528f87
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
