Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
551cf461 by security tracker role at 2021-10-05T08:10:46+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,77 @@
+CVE-2021-42008 (The decode_data function in drivers/net/hamradio/6pack.c in
the Linux ...)
+ TODO: check
+CVE-2021-42007
+ RESERVED
+CVE-2021-42006 (An out-of-bounds access in GffLine::GffLine in gff.cpp in
GCLib 0.12.7 ...)
+ TODO: check
+CVE-2021-42005
+ RESERVED
+CVE-2021-42004
+ RESERVED
+CVE-2021-42003
+ RESERVED
+CVE-2021-42002
+ RESERVED
+CVE-2021-42001
+ RESERVED
+CVE-2021-42000
+ RESERVED
+CVE-2021-41999
+ RESERVED
+CVE-2021-41998
+ RESERVED
+CVE-2021-41997
+ RESERVED
+CVE-2021-41996
+ RESERVED
+CVE-2021-41995
+ RESERVED
+CVE-2021-41994
+ RESERVED
+CVE-2021-41993
+ RESERVED
+CVE-2021-41992
+ RESERVED
+CVE-2021-41991
+ RESERVED
+CVE-2021-41990
+ RESERVED
+CVE-2021-41989
+ RESERVED
+CVE-2021-41988
+ RESERVED
+CVE-2021-41987
+ RESERVED
+CVE-2021-41986
+ RESERVED
+CVE-2021-41985
+ RESERVED
+CVE-2021-41984
+ RESERVED
+CVE-2021-41983
+ RESERVED
+CVE-2021-41982
+ RESERVED
+CVE-2021-41981
+ RESERVED
+CVE-2021-41980
+ RESERVED
+CVE-2021-41979
+ RESERVED
+CVE-2021-41978
+ RESERVED
+CVE-2021-41977
+ RESERVED
+CVE-2021-41976
+ RESERVED
+CVE-2021-41975
+ RESERVED
+CVE-2021-41974
+ RESERVED
+CVE-2021-3858
+ RESERVED
+CVE-2021-3857
+ RESERVED
CVE-2021-41973
RESERVED
CVE-2021-41972
@@ -1865,8 +1939,8 @@ CVE-2021-41125
RESERVED
CVE-2021-41124
RESERVED
-CVE-2021-41123
- RESERVED
+CVE-2021-41123 (Survey Solutions is a survey management and data collection
system. In ...)
+ TODO: check
CVE-2021-41122
RESERVED
CVE-2021-41121
@@ -1932,14 +2006,13 @@ CVE-2021-41094 (Wire is an open source secure
messenger. Users of Wire by Bund m
TODO: check
CVE-2021-41093 (Wire is an open source secure messenger. In affected versions
if the a ...)
TODO: check
-CVE-2021-41092
- RESERVED
-CVE-2021-41091
- RESERVED
+CVE-2021-41092 (Docker CLI is the command line interface for the docker
container runt ...)
+ TODO: check
+CVE-2021-41091 (Moby is an open-source project created by Docker to enable
software co ...)
+ TODO: check
CVE-2021-41090
RESERVED
-CVE-2021-41089
- RESERVED
+CVE-2021-41089 (Moby is an open-source project created by Docker to enable
software co ...)
- docker.io <unfixed>
NOTE:
https://github.com/moby/moby/security/advisories/GHSA-v994-f8vw-g7j4
TODO: check details
@@ -5736,8 +5809,8 @@ CVE-2021-39435
RESERVED
CVE-2021-39434
RESERVED
-CVE-2021-39433
- RESERVED
+CVE-2021-39433 (A local file inclusion (LFI) vulnerability exists in version
BIQS IT B ...)
+ TODO: check
CVE-2021-39432
RESERVED
CVE-2021-39431
@@ -21536,8 +21609,8 @@ CVE-2021-32767 (TYPO3 is an open source PHP based web
content management system.
NOT-FOR-US: Typo 3
CVE-2021-32766 (Nextcloud Text is an open source plaintext editing application
which s ...)
NOT-FOR-US: Nextcloud Text
-CVE-2021-32765
- RESERVED
+CVE-2021-32765 (Hiredis is a minimalistic C client library for the Redis
database. In ...)
+ TODO: check
CVE-2021-32764 (Discourse is an open-source discussion platform. In Discourse
versions ...)
NOT-FOR-US: Discourse
CVE-2021-32763 (OpenProject is open-source, web-based project management
software. In ...)
@@ -80078,14 +80151,14 @@ CVE-2020-21498
RESERVED
CVE-2020-21497
RESERVED
-CVE-2020-21496
- RESERVED
-CVE-2020-21495
- RESERVED
-CVE-2020-21494
- RESERVED
-CVE-2020-21493
- RESERVED
+CVE-2020-21496 (A cross-site scripting (XSS) vulnerability in the component
/admin/?se ...)
+ TODO: check
+CVE-2020-21495 (A cross-site scripting (XSS) vulnerability in the component
/admin/?se ...)
+ TODO: check
+CVE-2020-21494 (A cross-site scripting (XSS) vulnerability in the component
install\in ...)
+ TODO: check
+CVE-2020-21493 (An issue in the component route\user.php of Xiuno BBS v4.0.4
allows at ...)
+ TODO: check
CVE-2020-21492
RESERVED
CVE-2020-21491
@@ -80204,14 +80277,14 @@ CVE-2020-21436
RESERVED
CVE-2020-21435
RESERVED
-CVE-2020-21434
- RESERVED
+CVE-2020-21434 (Maccms 10 contains a cross-site scripting (XSS) vulnerability
in the E ...)
+ TODO: check
CVE-2020-21433
RESERVED
CVE-2020-21432
RESERVED
-CVE-2020-21431
- RESERVED
+CVE-2020-21431 (HongCMS v3.0 contains an arbitrary file read and write
vulnerability i ...)
+ TODO: check
CVE-2020-21430
RESERVED
CVE-2020-21429
@@ -80298,10 +80371,10 @@ CVE-2020-21389
RESERVED
CVE-2020-21388
RESERVED
-CVE-2020-21387
- RESERVED
-CVE-2020-21386
- RESERVED
+CVE-2020-21387 (A cross-site scripting (XSS) vulnerability in the parameter
type_en of ...)
+ TODO: check
+CVE-2020-21386 (A Cross-Site Request Forgery (CSRF) in the component
admin.php/admin/t ...)
+ TODO: check
CVE-2020-21385
RESERVED
CVE-2020-21384
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/551cf461b179986f8db20e54bda81a68ced0ce73
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/551cf461b179986f8db20e54bda81a68ced0ce73
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
