[Git][security-tracker-team/security-tracker][master] automatic update

Sat, 25 Dec 2021 00:10:29 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
28620589 by security tracker role at 2021-12-25T08:10:10+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,29 @@
+CVE-2021-45491
+       RESERVED
+CVE-2021-45490
+       RESERVED
+CVE-2021-45489 (In NetBSD through 9.2, the IPv6 Flow Label generation 
algorithm employ ...)
+       TODO: check
+CVE-2021-45488 (In NetBSD through 9.2, there is an information leak in the TCP 
ISN (IS ...)
+       TODO: check
+CVE-2021-45487 (In NetBSD through 9.2, the IPv4 ID generation algorithm does 
not use a ...)
+       TODO: check
+CVE-2021-45486 (In the IPv4 implementation in the Linux kernel before 5.12.4, 
net/ipv4 ...)
+       TODO: check
+CVE-2021-45485 (In the IPv6 implementation in the Linux kernel before 5.13.3, 
net/ipv6 ...)
+       TODO: check
+CVE-2021-45484 (In NetBSD through 9.2, the IPv6 fragment ID generation 
algorithm emplo ...)
+       TODO: check
+CVE-2021-45483 (In WebKitGTK before 2.32.4, there is a use-after-free in 
WebCore::Fram ...)
+       TODO: check
+CVE-2021-45482 (In WebKitGTK before 2.32.4, there is a use-after-free in 
WebCore::Cont ...)
+       TODO: check
+CVE-2021-45481 (In WebKitGTK before 2.32.4, there is incorrect memory 
allocation in We ...)
+       TODO: check
+CVE-2021-45480 (An issue was discovered in the Linux kernel before 5.15.11. 
There is a ...)
+       TODO: check
+CVE-2021-4167
+       RESERVED
 CVE-2021-45479
        RESERVED
 CVE-2021-45478
@@ -4889,8 +4915,8 @@ CVE-2021-44019 (An unnecessary privilege vulnerability in 
Trend Micro Worry-Free
        NOT-FOR-US: Trend Micro
 CVE-2021-3978
        RESERVED
-CVE-2021-3977
-       RESERVED
+CVE-2021-3977 (invoiceninja is vulnerable to Improper Neutralization of Input 
During  ...)
+       TODO: check
 CVE-2021-44018
        RESERVED
 CVE-2021-44017 (A vulnerability has been identified in JT2Go (All versions 
< V13.2. ...)
@@ -58508,8 +58534,8 @@ CVE-2021-23576
        RESERVED
 CVE-2021-23575
        RESERVED
-CVE-2021-23574
-       RESERVED
+CVE-2021-23574 (All versions of package js-data are vulnerable to Prototype 
Pollution  ...)
+       TODO: check
 CVE-2021-23573
        RESERVED
 CVE-2021-23572
@@ -58676,8 +58702,8 @@ CVE-2021-23492
        RESERVED
 CVE-2021-23491
        RESERVED
-CVE-2021-23490
-       RESERVED
+CVE-2021-23490 (The package parse-link-header before 2.0.0 are vulnerable to 
Regular E ...)
+       TODO: check
 CVE-2021-23489
        RESERVED
 CVE-2021-23488



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/286205898b52637d83386e44d5302c2a0f8067ac

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/286205898b52637d83386e44d5302c2a0f8067ac
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to