Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b1a85193 by security tracker role at 2022-01-28T08:10:33+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,95 @@
+CVE-2022-24111
+ RESERVED
+CVE-2022-24110
+ RESERVED
+CVE-2022-24109
+ RESERVED
+CVE-2022-24108
+ RESERVED
+CVE-2022-24107
+ RESERVED
+CVE-2022-24106
+ RESERVED
+CVE-2022-24105
+ RESERVED
+CVE-2022-24104
+ RESERVED
+CVE-2022-24103
+ RESERVED
+CVE-2022-24102
+ RESERVED
+CVE-2022-24101
+ RESERVED
+CVE-2022-24100
+ RESERVED
+CVE-2022-24099
+ RESERVED
+CVE-2022-24098
+ RESERVED
+CVE-2022-24097
+ RESERVED
+CVE-2022-24096
+ RESERVED
+CVE-2022-24095
+ RESERVED
+CVE-2022-24094
+ RESERVED
+CVE-2022-24093
+ RESERVED
+CVE-2022-24092
+ RESERVED
+CVE-2022-24091
+ RESERVED
+CVE-2022-24090
+ RESERVED
+CVE-2022-24089
+ RESERVED
+CVE-2022-24088
+ RESERVED
+CVE-2022-24087
+ RESERVED
+CVE-2022-24086
+ RESERVED
+CVE-2022-24085
+ RESERVED
+CVE-2022-24084
+ RESERVED
+CVE-2022-24083
+ RESERVED
+CVE-2022-24082
+ RESERVED
+CVE-2022-24081
+ RESERVED
+CVE-2022-24080
+ RESERVED
+CVE-2022-24079
+ RESERVED
+CVE-2022-24078
+ RESERVED
+CVE-2022-24077
+ RESERVED
+CVE-2022-24076
+ RESERVED
+CVE-2022-24075
+ RESERVED
+CVE-2022-24074
+ RESERVED
+CVE-2022-24073
+ RESERVED
+CVE-2022-24072
+ RESERVED
+CVE-2022-24071
+ RESERVED
+CVE-2022-24070
+ RESERVED
+CVE-2022-0396
+ RESERVED
+CVE-2022-0395
+ RESERVED
+CVE-2022-0394
+ RESERVED
+CVE-2022-0393
+ RESERVED
CVE-2022-24069
RESERVED
CVE-2022-24064
@@ -760,152 +852,152 @@ CVE-2021-46558
RESERVED
CVE-2021-46557
RESERVED
-CVE-2021-46556
- RESERVED
+CVE-2021-46556 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
CVE-2021-46555
RESERVED
-CVE-2021-46554
- RESERVED
-CVE-2021-46553
- RESERVED
+CVE-2021-46554 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46553 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
CVE-2021-46552
RESERVED
CVE-2021-46551
RESERVED
-CVE-2021-46550
- RESERVED
-CVE-2021-46549
- RESERVED
-CVE-2021-46548
- RESERVED
-CVE-2021-46547
- RESERVED
-CVE-2021-46546
- RESERVED
-CVE-2021-46545
- RESERVED
-CVE-2021-46544
- RESERVED
-CVE-2021-46543
- RESERVED
-CVE-2021-46542
- RESERVED
-CVE-2021-46541
- RESERVED
-CVE-2021-46540
- RESERVED
-CVE-2021-46539
- RESERVED
-CVE-2021-46538
- RESERVED
-CVE-2021-46537
- RESERVED
+CVE-2021-46550 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46549 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46548 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46547 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46546 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46545 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46544 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46543 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46542 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46541 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46540 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46539 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46538 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46537 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
CVE-2021-46536
RESERVED
-CVE-2021-46535
- RESERVED
-CVE-2021-46534
- RESERVED
+CVE-2021-46535 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46534 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
CVE-2021-46533
RESERVED
-CVE-2021-46532
- RESERVED
-CVE-2021-46531
- RESERVED
-CVE-2021-46530
- RESERVED
-CVE-2021-46529
- RESERVED
-CVE-2021-46528
- RESERVED
-CVE-2021-46527
- RESERVED
-CVE-2021-46526
- RESERVED
-CVE-2021-46525
- RESERVED
-CVE-2021-46524
- RESERVED
-CVE-2021-46523
- RESERVED
-CVE-2021-46522
- RESERVED
-CVE-2021-46521
- RESERVED
-CVE-2021-46520
- RESERVED
-CVE-2021-46519
- RESERVED
-CVE-2021-46518
- RESERVED
-CVE-2021-46517
- RESERVED
-CVE-2021-46516
- RESERVED
-CVE-2021-46515
- RESERVED
-CVE-2021-46514
- RESERVED
-CVE-2021-46513
- RESERVED
-CVE-2021-46512
- RESERVED
-CVE-2021-46511
- RESERVED
-CVE-2021-46510
- RESERVED
-CVE-2021-46509
- RESERVED
-CVE-2021-46508
- RESERVED
-CVE-2021-46507
- RESERVED
-CVE-2021-46506
- RESERVED
-CVE-2021-46505
- RESERVED
-CVE-2021-46504
- RESERVED
-CVE-2021-46503
- RESERVED
-CVE-2021-46502
- RESERVED
-CVE-2021-46501
- RESERVED
-CVE-2021-46500
- RESERVED
-CVE-2021-46499
- RESERVED
-CVE-2021-46498
- RESERVED
-CVE-2021-46497
- RESERVED
-CVE-2021-46496
- RESERVED
-CVE-2021-46495
- RESERVED
-CVE-2021-46494
- RESERVED
+CVE-2021-46532 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46531 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46530 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46529 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46528 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46527 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer
overflow v ...)
+ TODO: check
+CVE-2021-46526 (Cesanta MJS v2.20.0 was discovered to contain a global buffer
overflow ...)
+ TODO: check
+CVE-2021-46525 (Cesanta MJS v2.20.0 was discovered to contain a
heap-use-after-free vi ...)
+ TODO: check
+CVE-2021-46524 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer
overflow v ...)
+ TODO: check
+CVE-2021-46523 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer
overflow v ...)
+ TODO: check
+CVE-2021-46522 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer
overflow v ...)
+ TODO: check
+CVE-2021-46521 (Cesanta MJS v2.20.0 was discovered to contain a global buffer
overflow ...)
+ TODO: check
+CVE-2021-46520 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer
overflow v ...)
+ TODO: check
+CVE-2021-46519 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer
overflow v ...)
+ TODO: check
+CVE-2021-46518 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer
overflow v ...)
+ TODO: check
+CVE-2021-46517 (There is an Assertion `mjs_stack_size(&mjs->scopes)
> 0' fai ...)
+ TODO: check
+CVE-2021-46516 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46515 (There is an Assertion `mjs_stack_size(&mjs->scopes)
>= scope ...)
+ TODO: check
+CVE-2021-46514 (There is an Assertion 'ppos != NULL &&
mjs_is_number(*ppos)' f ...)
+ TODO: check
+CVE-2021-46513 (Cesanta MJS v2.20.0 was discovered to contain a global buffer
overflow ...)
+ TODO: check
+CVE-2021-46512 (Cesanta MJS v2.20.0 was discovered to contain a SEGV
vulnerability via ...)
+ TODO: check
+CVE-2021-46511 (There is an Assertion `m->len >= sizeof(v)' failed at
src/mjs_co ...)
+ TODO: check
+CVE-2021-46510 (There is an Assertion `s < mjs->owned_strings.buf +
mjs->owne ...)
+ TODO: check
+CVE-2021-46509 (Cesanta MJS v2.20.0 was discovered to contain a stack overflow
via snq ...)
+ TODO: check
+CVE-2021-46508 (There is an Assertion `i < parts_cnt' failed at
src/mjs_bcode.c in ...)
+ TODO: check
+CVE-2021-46507 (Jsish v3.5.0 was discovered to contain a stack overflow via
Jsi_LogMsg ...)
+ TODO: check
+CVE-2021-46506 (There is an Assertion 'v->d.lval != v' failed at
src/jsiValue.c in ...)
+ TODO: check
+CVE-2021-46505 (Jsish v3.5.0 was discovered to contain a stack overflow via
/usr/lib/x ...)
+ TODO: check
+CVE-2021-46504 (There is an Assertion 'vp != resPtr' failed at jsiEval.c in
Jsish v3.5 ...)
+ TODO: check
+CVE-2021-46503 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via /usr/ ...)
+ TODO: check
+CVE-2021-46502 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via /usr/ ...)
+ TODO: check
+CVE-2021-46501 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via SortS ...)
+ TODO: check
+CVE-2021-46500 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via jsi_A ...)
+ TODO: check
+CVE-2021-46499 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via jsi_V ...)
+ TODO: check
+CVE-2021-46498 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via jsi_w ...)
+ TODO: check
+CVE-2021-46497 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via jsi_U ...)
+ TODO: check
+CVE-2021-46496 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via Jsi_O ...)
+ TODO: check
+CVE-2021-46495 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via Delet ...)
+ TODO: check
+CVE-2021-46494 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via jsi_V ...)
+ TODO: check
CVE-2021-46493
RESERVED
-CVE-2021-46492
- RESERVED
-CVE-2021-46491
- RESERVED
-CVE-2021-46490
- RESERVED
-CVE-2021-46489
- RESERVED
-CVE-2021-46488
- RESERVED
-CVE-2021-46487
- RESERVED
-CVE-2021-46486
- RESERVED
-CVE-2021-46485
- RESERVED
-CVE-2021-46484
- RESERVED
+CVE-2021-46492 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability
via Jsi_Fu ...)
+ TODO: check
+CVE-2021-46491 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability
via Jsi_Co ...)
+ TODO: check
+CVE-2021-46490 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability
via Number ...)
+ TODO: check
+CVE-2021-46489 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via Jsi_D ...)
+ TODO: check
+CVE-2021-46488 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability
via jsi_Ar ...)
+ TODO: check
+CVE-2021-46487 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability
via /lib/x ...)
+ TODO: check
+CVE-2021-46486 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability
via jsi_Ar ...)
+ TODO: check
+CVE-2021-46485 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability
via Jsi_Va ...)
+ TODO: check
+CVE-2021-46484 (Jsish v3.5.0 was discovered to contain a heap-use-after-free
via Jsi_I ...)
+ TODO: check
CVE-2021-46483 (Jsish v3.5.0 was discovered to contain a heap buffer overflow
via Bool ...)
NOT-FOR-US: Jsish
CVE-2021-46482 (Jsish v3.5.0 was discovered to contain a heap buffer overflow
via Numb ...)
@@ -12617,12 +12709,14 @@ CVE-2021-44123 (SPIP 4.0.0 is affected by a remote
command execution vulnerabili
NOTE:
https://git.spip.net/spip/spip/commit/1cf91def15966406ddd0488cf9d1ecd1ae82d47a
(master)
NOTE:
https://git.spip.net/spip/spip/commit/97e2888e9c92ad4bd68e8f80079583249714fbfa
(v4.0.1)
CVE-2021-44122 (SPIP 4.0.0 is affected by a Cross Site Request Forgery (CSRF)
vulnerab ...)
+ {DSA-5028-1 DLA-2867-1}
- spip 3.2.12-1
NOTE:
https://git.spip.net/spip/spip/commit/1b8e4f404c2441c15ca6540b9a6d8e50cff219db
NOTE:
https://git.spip.net/spip/spip/commit/fea5b5b4507cc9c0b9e91bbfbf34fe40b0bea805
(v3.2.12)
CVE-2021-44121
REJECTED
CVE-2021-44120 (SPIP 4.0.0 is affected by a Cross Site Scripting (XSS)
vulnerability i ...)
+ {DSA-5028-1 DLA-2867-1}
- spip 3.2.12-1
NOTE:
https://git.spip.net/spip/spip/commit/d548391d799387d1e93cf1a369d385c72f7d5c81
NOTE:
https://git.spip.net/spip/spip/commit/361cc26080d1377bc55d2cb80736e5cfaf5fd242
(v3.2.12)
@@ -123927,7 +124021,7 @@ CVE-2020-12689 (An issue was discovered in OpenStack
Keystone before 15.0.1, and
NOTE: https://bugs.launchpad.net/keystone/+bug/1872735
NOTE: https://www.openwall.com/lists/oss-security/2020/05/06/5
CVE-2020-12672 (GraphicsMagick through 1.3.35 has a heap-based buffer overflow
in Read ...)
- {DLA-2236-1}
+ {DLA-2902-1 DLA-2236-1}
- graphicsmagick 1.4+really1.3.35-2 (bug #960000)
[buster] - graphicsmagick <postponed> (Minor issue; can be fixed along
in future DSA)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19025
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1a851931c9ef856da3f126ad404271f81591432
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1a851931c9ef856da3f126ad404271f81591432
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
