Henri Salo pushed to branch master at Debian Security Tracker / security-tracker
Commits:
33222c7d by Henri Salo at 2021-09-24T07:43:30+03:00
Typo fix
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -46939,37 +46939,37 @@ CVE-2021-22022 (The vRealize Operations Manager API
(8.x prior to 8.5) contains
CVE-2021-22021 (VMware vRealize Log Insight (8.x prior to 8.4) contains a
Cross Site S ...)
NOT-FOR-US: VMware
CVE-2021-22020 (The vCenter Server contains a denial-of-service vulnerability
in the A ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22019 (The vCenter Server contains a denial-of-service vulnerability
in VAPI ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22018 (The vCenter Server contains an arbitrary file deletion
vulnerability i ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22017 (Rhttproxy as used in vCenter Server contains a vulnerability
due to im ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22016 (The vCenter Server contains a reflected cross-site scripting
vulnerabi ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22015 (The vCenter Server contains multiple local privilege
escalation vulner ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22014 (The vCenter Server contains an authenticated code execution
vulnerabil ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22013 (The vCenter Server contains a file path traversal
vulnerability leadin ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22012 (The vCenter Server contains an information disclosure
vulnerability du ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22011 (vCenter Server contains an unauthenticated API endpoint
vulnerability ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22010 (The vCenter Server contains a denial-of-service vulnerability
in VPXD ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22009 (The vCenter Server contains multiple denial-of-service
vulnerabilities ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22008 (The vCenter Server contains an information disclosure
vulnerability in ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22007 (The vCenter Server contains a local information disclosure
vulnerabili ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22006 (The vCenter Server contains a reverse proxy bypass
vulnerability due t ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22005 (The vCenter Server contains an arbitrary file upload
vulnerability in ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-22004 (An issue was discovered in SaltStack Salt before 3003.3. The
salt mini ...)
- salt <unfixed> (bug #994016)
NOTE:
https://saltproject.io/security_announcements/salt-security-advisory-2021-sep-02/
@@ -46995,7 +46995,7 @@ CVE-2021-21995 (OpenSLP as used in ESXi has a
denial-of-service vulnerability du
CVE-2021-21994 (SFCB (Small Footprint CIM Broker) as used in ESXi has an
authenticatio ...)
NOT-FOR-US: VMware
CVE-2021-21993 (The vCenter Server contains an SSRF (Server Side Request
Forgery) vuln ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2021-21992 (The vCenter Server contains a denial-of-service vulnerability
due to i ...)
NOT-FOR-US: VMware
CVE-2021-21991 (The vCenter Server contains a local privilege escalation
vulnerability ...)
@@ -312285,8 +312285,8 @@ CVE-2016-XXXX [mediawiki issues from 1.26.3, 1.25.6
and 1.23.14]
CVE-2016-4952 (QEMU (aka Quick Emulator), when built with VMWARE PVSCSI
paravirtual S ...)
{DLA-1599-1}
- qemu 1:2.6+dfsg-2 (bug #825210)
- [wheezy] - qemu <not-affected> (VMWare PVSCSI paravirtual device
implementation introduced later)
- - qemu-kvm <not-affected> (VMWare PVSCSI paravirtual device
implementation introduced later)
+ [wheezy] - qemu <not-affected> (VMware PVSCSI paravirtual device
implementation introduced later)
+ - qemu-kvm <not-affected> (VMware PVSCSI paravirtual device
implementation introduced later)
NOTE:
https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg03774.html
NOTE: Introduced in:
http://git.qemu.org/?p=qemu.git;a=commit;h=881d588a98bf0dce98ddb65c15aa0854c0ac41ed
(v1.5.0-rc0)
CVE-2016-4951 (The tipc_nl_publ_dump function in net/tipc/socket.c in the
Linux kerne ...)
@@ -375313,15 +375313,15 @@ CVE-2014-1213 (Sophos Anti-Virus engine (SAVi)
before 3.50.1, as used in VDL 4.9
CVE-2014-1212
RESERVED
CVE-2014-1211 (Cross-site request forgery (CSRF) vulnerability in VMware
vCloud Direc ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2014-1210 (VMware vSphere Client 5.0 before Update 3 and 5.1 before Update
2 does ...)
NOT-FOR-US: VMware vSphere Client
CVE-2014-1209 (VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1
before Up ...)
NOT-FOR-US: VMware vSphere Client
CVE-2014-1208 (VMware Workstation 9.x before 9.0.1, VMware Player 5.x before
5.0.1, V ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2014-1207 (VMware ESXi 4.0 through 5.1 and ESX 4.0 and 4.1 allow remote
attackers ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2014-1206 (SQL injection vulnerability in the password reset page in Open
Web Ana ...)
NOT-FOR-US: Open Web Analytics
CVE-2014-1205
@@ -460619,7 +460619,7 @@ CVE-2008-5028 (Cross-site request forgery (CSRF)
vulnerability in cmd.cgi in (1)
CVE-2008-4917 (Unspecified vulnerability in VMware Workstation 5.5.8 and
earlier, and ...)
NOT-FOR-US: VMware Workstation
CVE-2008-4916 (Unspecified vulnerability in a guest virtual device driver in
VMware W ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2008-4915 (The CPU hardware emulation in VMware Workstation 6.0.5 and
earlier and ...)
NOT-FOR-US: VMware Workstation
CVE-2008-4914 (Unspecified vulnerability in VMware ESXi 3.5 before
ESXe350-200901401- ...)
@@ -462175,13 +462175,13 @@ CVE-2008-4283 (CRLF injection vulnerability in the
WebContainer component in IBM
CVE-2008-4282
RESERVED
CVE-2008-4281 (Directory traversal vulnerability in VMWare ESXi 3.5 before
ESXe350-20 ...)
- NOT-FOR-US: VMWare ESXi
+ NOT-FOR-US: VMware ESXi
CVE-2008-4280
RESERVED
CVE-2008-4279 (The CPU hardware emulation for 64-bit guest operating systems
in VMwar ...)
NOT-FOR-US: VMware Workstation
CVE-2008-4278 (VMware VirtualCenter 2.5 before Update 3 build 119838 on
Windows displ ...)
- NOT-FOR-US: VMWare VirtualCenter
+ NOT-FOR-US: VMware VirtualCenter
CVE-2008-4277
REJECTED
CVE-2008-4276
@@ -491501,7 +491501,7 @@ CVE-2006-6412
CVE-2006-6411 (PhoneCtrl.exe in Linksys WIP 330 Wireless-G IP Phone 1.00.06A
allows r ...)
NOT-FOR-US: Linksys
CVE-2006-6410 (Buffer overflow in an ActiveX control in VMWare 5.5.1 allows
local use ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2006-6409 (F-Secure Anti-Virus for Linux Gateways 4.65 allows remote
attackers to ...)
NOT-FOR-US: F-Secure
CVE-2006-6408 (Kaspersky Anti-Virus for Linux Mail Servers 5.5.10 allows
remote attac ...)
@@ -492421,7 +492421,7 @@ CVE-2006-5992
CVE-2006-5991 (Multiple SQL injection vulnerabilities in wwweb concepts
CactuShop all ...)
NOT-FOR-US: CactuShop
CVE-2006-5990 (VMWare VirtualCenter client 2.x before 2.0.1 Patch 1 (Build
33643) and ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2006-5989 (Off-by-one error in the der_get_oid function in mod_auth_kerb
5.0 allo ...)
{DSA-1247-1}
- libapache-mod-auth-kerb 5.3-1 (low; bug #400589)
@@ -506658,7 +506658,7 @@ CVE-2005-4584 (BZFlag server 2.0.4 and earlier allows
remote attackers to cause
- bzflag 2.0.6.20060412-1 (bug #345245; low)
[sarge] - bzflag <no-dsa> (Minor DoS against a game)
CVE-2005-4583 (Unspecified vulnerability in the Management Interface in VMware
ESX Se ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2005-4582 (Electric Sheep 2.6.3 does not require authentication or
integrity chec ...)
- electricsheep 2.6.3+cvs20051206-1 (unimportant)
NOTE: Even an authenticated server might serve unwanted content, so
@@ -506964,7 +506964,7 @@ CVE-2005-4461 (SQL injection vulnerability in
index.php in Beehive Forum 0.6.2 a
CVE-2005-4460 (Cross-site scripting (XSS) vulnerability in Beehive Forum 0.6.2
and ea ...)
NOT-FOR-US: Beehive Forum
CVE-2005-4459 (Heap-based buffer overflow in the NAT networking components
vmnat.exe ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2005-4458 (Group.pm in Metadot Portal Server 6.4.4 and earlier does not
properly ...)
NOT-FOR-US: Metadot Portal Server
CVE-2005-4457 (MailEnable Enterprise 1.1 before patch ME-10009 allows remote
attacker ...)
@@ -509162,7 +509162,7 @@ CVE-2005-3620 (The management interface for VMware
ESX Server 2.0.x before 2.0.2
CVE-2005-3619 (Cross-site scripting (XSS) vulnerability in the management
interface f ...)
NOT-FOR-US: VMware ESX
CVE-2005-3618 (Cross-site request forgery (CSRF) vulnerability in the
management inte ...)
- NOT-FOR-US: VMWare ESX
+ NOT-FOR-US: VMware ESX
CVE-2005-3617
RESERVED
CVE-2005-3616
@@ -510262,7 +510262,7 @@ CVE-2004-2517 (myServer 0.7.1 allows remote attackers
to cause a denial of servi
CVE-2004-2516 (Directory traversal vulnerability in myServer 0.7 allows remote
attack ...)
NOT-FOR-US: myServer
CVE-2004-2515 (Format string vulnerability in VMware Workstation 4.5.2
build-8848, if ...)
- NOT-FOR-US: VMWare Workstation
+ NOT-FOR-US: VMware Workstation
CVE-2004-2514 (Cross-site scripting (XSS) vulnerability in
modules/private_messages/i ...)
NOT-FOR-US: PowerPortal
CVE-2004-2513 (Buffer overflow in the IMAP service of Mercury (Pegasus) Mail
4.01 all ...)
@@ -511350,7 +511350,7 @@ CVE-2005-2941
CVE-2005-2940 (Unquoted Windows search path vulnerability in Microsoft
Antispyware 1. ...)
NOT-FOR-US: Microsoft Antispyware
CVE-2005-2939 (Unquoted Windows search path vulnerability in VMWare
Workstation 5.0.0 ...)
- NOT-FOR-US: VMWare
+ NOT-FOR-US: VMware
CVE-2005-2938 (Unquoted Windows search path vulnerability in iTunesHelper.exe
in iTun ...)
NOT-FOR-US: iTunes
CVE-2005-2937
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33222c7df48e43f0f32be048d3148243534dc4ed
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33222c7df48e43f0f32be048d3148243534dc4ed
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
