Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fffac268 by security tracker role at 2021-12-29T08:10:12+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,151 @@
+CVE-2022-22262
+ RESERVED
+CVE-2022-0077
+ RESERVED
+CVE-2022-0076
+ RESERVED
+CVE-2022-0075
+ RESERVED
+CVE-2022-0074
+ RESERVED
+CVE-2022-0073
+ RESERVED
+CVE-2022-0072
+ RESERVED
+CVE-2022-0071
+ RESERVED
+CVE-2022-0070
+ RESERVED
+CVE-2022-0069
+ RESERVED
+CVE-2022-0068
+ RESERVED
+CVE-2022-0067
+ RESERVED
+CVE-2022-0066
+ RESERVED
+CVE-2022-0065
+ RESERVED
+CVE-2022-0064
+ RESERVED
+CVE-2022-0063
+ RESERVED
+CVE-2022-0062
+ RESERVED
+CVE-2022-0061
+ RESERVED
+CVE-2022-0060
+ RESERVED
+CVE-2022-0059
+ RESERVED
+CVE-2022-0058
+ RESERVED
+CVE-2022-0057
+ RESERVED
+CVE-2022-0056
+ RESERVED
+CVE-2022-0055
+ RESERVED
+CVE-2022-0054
+ RESERVED
+CVE-2022-0053
+ RESERVED
+CVE-2022-0052
+ RESERVED
+CVE-2022-0051
+ RESERVED
+CVE-2022-0050
+ RESERVED
+CVE-2022-0049
+ RESERVED
+CVE-2022-0048
+ RESERVED
+CVE-2022-0047
+ RESERVED
+CVE-2022-0046
+ RESERVED
+CVE-2022-0045
+ RESERVED
+CVE-2022-0044
+ RESERVED
+CVE-2022-0043
+ RESERVED
+CVE-2022-0042
+ RESERVED
+CVE-2022-0041
+ RESERVED
+CVE-2022-0040
+ RESERVED
+CVE-2022-0039
+ RESERVED
+CVE-2022-0038
+ RESERVED
+CVE-2022-0037
+ RESERVED
+CVE-2022-0036
+ RESERVED
+CVE-2022-0035
+ RESERVED
+CVE-2022-0034
+ RESERVED
+CVE-2022-0033
+ RESERVED
+CVE-2022-0032
+ RESERVED
+CVE-2022-0031
+ RESERVED
+CVE-2022-0030
+ RESERVED
+CVE-2022-0029
+ RESERVED
+CVE-2022-0028
+ RESERVED
+CVE-2022-0027
+ RESERVED
+CVE-2022-0026
+ RESERVED
+CVE-2022-0025
+ RESERVED
+CVE-2022-0024
+ RESERVED
+CVE-2022-0023
+ RESERVED
+CVE-2022-0022
+ RESERVED
+CVE-2022-0021
+ RESERVED
+CVE-2022-0020
+ RESERVED
+CVE-2022-0019
+ RESERVED
+CVE-2022-0018
+ RESERVED
+CVE-2022-0017
+ RESERVED
+CVE-2022-0016
+ RESERVED
+CVE-2022-0015
+ RESERVED
+CVE-2022-0014
+ RESERVED
+CVE-2022-0013
+ RESERVED
+CVE-2022-0012
+ RESERVED
+CVE-2022-0011
+ RESERVED
+CVE-2021-45918
+ RESERVED
+CVE-2021-45917
+ RESERVED
+CVE-2021-45916
+ RESERVED
+CVE-2021-45915
+ RESERVED
+CVE-2021-45914
+ RESERVED
+CVE-2021-4188
+ RESERVED
CVE-2021-45913
RESERVED
CVE-2021-45912
@@ -3503,8 +3651,7 @@ CVE-2021-4104 (JMSAppender in Log4j 1.2 is vulnerable to
deserialization of untr
NOTE: https://www.openwall.com/lists/oss-security/2021/12/13/2
CVE-2021-4103
RESERVED
-CVE-2021-44832 [remote code execution via JDBC Appender]
- RESERVED
+CVE-2021-44832 (Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding
security fi ...)
- apache-log4j2 <unfixed>
NOTE: https://logging.apache.org/log4j/2.x/security.html#CVE-2021-44832
NOTE: https://issues.apache.org/jira/browse/LOG4J2-3293
@@ -93984,16 +94131,16 @@ CVE-2020-22063
RESERVED
CVE-2020-22062
RESERVED
-CVE-2020-22061
- RESERVED
+CVE-2020-22061 (SUPERAntispyware v8.0.0.1050 was discovered to contain an
issue in the ...)
+ TODO: check
CVE-2020-22060
RESERVED
CVE-2020-22059
RESERVED
CVE-2020-22058
RESERVED
-CVE-2020-22057
- RESERVED
+CVE-2020-22057 (The WinRin0x64.sys and WinRing0.sys low-level drivers in EVGA
Precisio ...)
+ TODO: check
CVE-2020-22056 (A Denial of Service vulnerability exists in FFmpeg 4.2 due to
a memory ...)
- ffmpeg 7:4.3-2 (unimportant)
[stretch] - ffmpeg <not-affected> (vulnerable code is not present)
@@ -130160,8 +130307,8 @@ CVE-2020-7885
RESERVED
CVE-2020-7884
RESERVED
-CVE-2020-7883
- RESERVED
+CVE-2020-7883 (Printchaser v2.2021.804.1 and earlier versions contain a
vulnerability ...)
+ TODO: check
CVE-2020-7882 (Using the parameter of getPFXFolderList function, attackers can
see th ...)
NOT-FOR-US: anySign
CVE-2020-7881 (The vulnerability function is enabled when the streamer service
relate ...)
@@ -130170,8 +130317,8 @@ CVE-2020-7880 (The vulnerabilty was discovered in
ActiveX module related to NeoR
NOT-FOR-US: duozone NeoRS remote support
CVE-2020-7879 (This issue was discovered when the ipTIME C200 IP Camera was
synchroni ...)
NOT-FOR-US: ipTIME C200 IP Camera
-CVE-2020-7878
- RESERVED
+CVE-2020-7878 (An arbitrary file download and execution vulnerability was
found in th ...)
+ TODO: check
CVE-2020-7877 (A buffer overflow issue was discovered in ZOOK solution(remote
adminis ...)
NOT-FOR-US: ZOOK
CVE-2020-7876
@@ -188933,7 +189080,7 @@ CVE-2019-6692 (A malicious DLL preload vulnerability
in Fortinet FortiClient for
CVE-2019-6691 (phpwind 9.0.2.170426 UTF8 allows SQL Injection via the
admin.php?m=bac ...)
NOT-FOR-US: phpwind
CVE-2019-6690 (python-gnupg 0.4.3 allows context-dependent attackers to trick
gnupg t ...)
- {DLA-1675-1}
+ {DLA-2862-1 DLA-1675-1}
- python-gnupg 0.4.4-1
NOTE:
https://github.com/stigtsp/CVE-2019-6690-python-gnupg-vulnerability
NOTE:
https://github.com/vsajip/python-gnupg/commit/39eca266dd837e2ad89c94eb17b7a6f50b25e7cf#diff-88b99bb28683bd5b7e3a204826ead112
@@ -227604,7 +227751,7 @@ CVE-2018-12021 (Singularity 2.3.0 through 2.5.1 is
affected by an incorrect acce
- singularity-container 2.5.2-1
NOTE: https://github.com/singularityware/singularity/releases/tag/2.5.2
CVE-2018-12020 (mainproc.c in GnuPG before 2.2.8 mishandles the original
filename duri ...)
- {DSA-4224-1 DSA-4223-1 DSA-4222-1}
+ {DSA-4224-1 DSA-4223-1 DSA-4222-1 DLA-2862-1}
- enigmail 2:2.0.7-1
[jessie] - enigmail <end-of-life> (see
https://lists.debian.org/debian-lts-announce/2019/02/msg00002.html)
- gnupg2 2.2.8-1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fffac268d3ffce908f19496e4b90d8305debcf77
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fffac268d3ffce908f19496e4b90d8305debcf77
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
