Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 9be71002 by security tracker role at 2022-02-10T20:10:17+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,433 @@ +CVE-2022-24916 (Optimism before @eth-optimism/[email protected] allows economic griefing b ...) + TODO: check +CVE-2022-24908 + RESERVED +CVE-2022-24907 + RESERVED +CVE-2022-24906 + RESERVED +CVE-2022-24905 + RESERVED +CVE-2022-24904 + RESERVED +CVE-2022-24903 + RESERVED +CVE-2022-24902 + RESERVED +CVE-2022-24901 + RESERVED +CVE-2022-24900 + RESERVED +CVE-2022-24899 + RESERVED +CVE-2022-24898 + RESERVED +CVE-2022-24897 + RESERVED +CVE-2022-24896 + RESERVED +CVE-2022-24895 + RESERVED +CVE-2022-24894 + RESERVED +CVE-2022-24893 + RESERVED +CVE-2022-24892 + RESERVED +CVE-2022-24891 + RESERVED +CVE-2022-24890 + RESERVED +CVE-2022-24889 + RESERVED +CVE-2022-24888 + RESERVED +CVE-2022-24887 + RESERVED +CVE-2022-24886 + RESERVED +CVE-2022-24885 + RESERVED +CVE-2022-24884 + RESERVED +CVE-2022-24883 + RESERVED +CVE-2022-24882 + RESERVED +CVE-2022-24881 + RESERVED +CVE-2022-24880 + RESERVED +CVE-2022-24879 + RESERVED +CVE-2022-24878 + RESERVED +CVE-2022-24877 + RESERVED +CVE-2022-24876 + RESERVED +CVE-2022-24875 + RESERVED +CVE-2022-24874 + RESERVED +CVE-2022-24873 + RESERVED +CVE-2022-24872 + RESERVED +CVE-2022-24871 + RESERVED +CVE-2022-24870 + RESERVED +CVE-2022-24869 + RESERVED +CVE-2022-24868 + RESERVED +CVE-2022-24867 + RESERVED +CVE-2022-24866 + RESERVED +CVE-2022-24865 + RESERVED +CVE-2022-24864 + RESERVED +CVE-2022-24863 + RESERVED +CVE-2022-24862 + RESERVED +CVE-2022-24861 + RESERVED +CVE-2022-24860 + RESERVED +CVE-2022-24859 + RESERVED +CVE-2022-24858 + RESERVED +CVE-2022-24857 + RESERVED +CVE-2022-24856 + RESERVED +CVE-2022-24855 + RESERVED +CVE-2022-24854 + RESERVED +CVE-2022-24853 + RESERVED +CVE-2022-24852 + RESERVED +CVE-2022-24851 + RESERVED +CVE-2022-24850 + RESERVED +CVE-2022-24849 + RESERVED +CVE-2022-24848 + RESERVED +CVE-2022-24847 + RESERVED +CVE-2022-24846 + RESERVED +CVE-2022-24845 + RESERVED +CVE-2022-24844 + RESERVED +CVE-2022-24843 + RESERVED +CVE-2022-24842 + RESERVED +CVE-2022-24841 + RESERVED +CVE-2022-24840 + RESERVED +CVE-2022-24839 + RESERVED +CVE-2022-24838 + RESERVED +CVE-2022-24837 + RESERVED +CVE-2022-24836 + RESERVED +CVE-2022-24835 + RESERVED +CVE-2022-24834 + RESERVED +CVE-2022-24833 + RESERVED +CVE-2022-24832 + RESERVED +CVE-2022-24831 + RESERVED +CVE-2022-24830 + RESERVED +CVE-2022-24829 + RESERVED +CVE-2022-24828 + RESERVED +CVE-2022-24827 + RESERVED +CVE-2022-24826 + RESERVED +CVE-2022-24825 + RESERVED +CVE-2022-24824 + RESERVED +CVE-2022-24823 + RESERVED +CVE-2022-24822 + RESERVED +CVE-2022-24821 + RESERVED +CVE-2022-24820 + RESERVED +CVE-2022-24819 + RESERVED +CVE-2022-24818 + RESERVED +CVE-2022-24817 + RESERVED +CVE-2022-24816 + RESERVED +CVE-2022-24815 + RESERVED +CVE-2022-24814 + RESERVED +CVE-2022-24813 + RESERVED +CVE-2022-24812 + RESERVED +CVE-2022-24811 + RESERVED +CVE-2022-24810 + RESERVED +CVE-2022-24809 + RESERVED +CVE-2022-24808 + RESERVED +CVE-2022-24807 + RESERVED +CVE-2022-24806 + RESERVED +CVE-2022-24805 + RESERVED +CVE-2022-24804 + RESERVED +CVE-2022-24803 + RESERVED +CVE-2022-24802 + RESERVED +CVE-2022-24801 + RESERVED +CVE-2022-24800 + RESERVED +CVE-2022-24799 + RESERVED +CVE-2022-24798 + RESERVED +CVE-2022-24797 + RESERVED +CVE-2022-24796 + RESERVED +CVE-2022-24795 + RESERVED +CVE-2022-24794 + RESERVED +CVE-2022-24793 + RESERVED +CVE-2022-24792 + RESERVED +CVE-2022-24791 + RESERVED +CVE-2022-24790 + RESERVED +CVE-2022-24789 + RESERVED +CVE-2022-24788 + RESERVED +CVE-2022-24787 + RESERVED +CVE-2022-24786 + RESERVED +CVE-2022-24785 + RESERVED +CVE-2022-24784 + RESERVED +CVE-2022-24783 + RESERVED +CVE-2022-24782 + RESERVED +CVE-2022-24781 + RESERVED +CVE-2022-24780 + RESERVED +CVE-2022-24779 + RESERVED +CVE-2022-24778 + RESERVED +CVE-2022-24777 + RESERVED +CVE-2022-24776 + RESERVED +CVE-2022-24775 + RESERVED +CVE-2022-24774 + RESERVED +CVE-2022-24773 + RESERVED +CVE-2022-24772 + RESERVED +CVE-2022-24771 + RESERVED +CVE-2022-24770 + RESERVED +CVE-2022-24769 + RESERVED +CVE-2022-24768 + RESERVED +CVE-2022-24767 + RESERVED +CVE-2022-24766 + RESERVED +CVE-2022-24765 + RESERVED +CVE-2022-24764 + RESERVED +CVE-2022-24763 + RESERVED +CVE-2022-24762 + RESERVED +CVE-2022-24761 + RESERVED +CVE-2022-24760 + RESERVED +CVE-2022-24759 + RESERVED +CVE-2022-24758 + RESERVED +CVE-2022-24757 + RESERVED +CVE-2022-24756 + RESERVED +CVE-2022-24755 + RESERVED +CVE-2022-24754 + RESERVED +CVE-2022-24753 + RESERVED +CVE-2022-24752 + RESERVED +CVE-2022-24751 + RESERVED +CVE-2022-24750 + RESERVED +CVE-2022-24749 + RESERVED +CVE-2022-24748 + RESERVED +CVE-2022-24747 + RESERVED +CVE-2022-24746 + RESERVED +CVE-2022-24745 + RESERVED +CVE-2022-24744 + RESERVED +CVE-2022-24743 + RESERVED +CVE-2022-24742 + RESERVED +CVE-2022-24741 + RESERVED +CVE-2022-24740 + RESERVED +CVE-2022-24739 + RESERVED +CVE-2022-24738 + RESERVED +CVE-2022-24737 + RESERVED +CVE-2022-24736 + RESERVED +CVE-2022-24735 + RESERVED +CVE-2022-24734 + RESERVED +CVE-2022-24733 + RESERVED +CVE-2022-24732 + RESERVED +CVE-2022-24731 + RESERVED +CVE-2022-24730 + RESERVED +CVE-2022-24729 + RESERVED +CVE-2022-24728 + RESERVED +CVE-2022-24727 + RESERVED +CVE-2022-24726 + RESERVED +CVE-2022-24725 + RESERVED +CVE-2022-24724 + RESERVED +CVE-2022-24723 + RESERVED +CVE-2022-24722 + RESERVED +CVE-2022-24721 + RESERVED +CVE-2022-24720 + RESERVED +CVE-2022-24719 + RESERVED +CVE-2022-24718 + RESERVED +CVE-2022-24717 + RESERVED +CVE-2022-24716 + RESERVED +CVE-2022-24715 + RESERVED +CVE-2022-24714 + RESERVED +CVE-2022-24713 + RESERVED +CVE-2022-24712 + RESERVED +CVE-2022-24711 + RESERVED +CVE-2022-24710 + RESERVED +CVE-2022-24709 + RESERVED +CVE-2022-24708 + RESERVED +CVE-2022-24707 + RESERVED +CVE-2022-24706 + RESERVED +CVE-2022-24705 + RESERVED +CVE-2022-24704 + RESERVED +CVE-2022-23922 + RESERVED +CVE-2022-23104 + RESERVED +CVE-2022-0563 + RESERVED +CVE-2022-0562 + RESERVED +CVE-2022-0561 + RESERVED +CVE-2022-0560 + RESERVED +CVE-2022-0559 + RESERVED +CVE-2022-0558 (Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber ...) + TODO: check +CVE-2022-0557 + RESERVED CVE-2022-24703 RESERVED CVE-2022-24702 @@ -386,8 +816,8 @@ CVE-2022-24570 RESERVED CVE-2022-24569 RESERVED -CVE-2022-24568 - RESERVED +CVE-2022-24568 (Novel-plus v3.6.0 was discovered to be vulnerable to Server-Side Reque ...) + TODO: check CVE-2022-24567 RESERVED CVE-2022-24566 @@ -1805,8 +2235,8 @@ CVE-2003-5002 RESERVED CVE-2003-5001 RESERVED -CVE-2022-24111 - RESERVED +CVE-2022-24111 (In Mahara 21.04 before 21.04.3 and 21.10 before 21.10.1, portfolios cr ...) + TODO: check CVE-2022-24110 RESERVED CVE-2022-24109 @@ -4443,8 +4873,8 @@ CVE-2022-23323 RESERVED CVE-2022-23322 RESERVED -CVE-2022-23321 - RESERVED +CVE-2022-23321 (A persistent cross-site scripting (XSS) vulnerability exists on two in ...) + TODO: check CVE-2022-23320 (XMPie uStore 12.3.7244.0 allows for administrators to generate reports ...) NOT-FOR-US: XMPie uStore CVE-2022-23319 @@ -8919,18 +9349,18 @@ CVE-2022-0023 RESERVED CVE-2022-0022 RESERVED -CVE-2022-0021 - RESERVED -CVE-2022-0020 - RESERVED -CVE-2022-0019 - RESERVED -CVE-2022-0018 - RESERVED -CVE-2022-0017 - RESERVED -CVE-2022-0016 - RESERVED +CVE-2022-0021 (An information exposure through log file vulnerability exists in the P ...) + TODO: check +CVE-2022-0020 (A stored cross-site scripting (XSS) vulnerability in Palo Alto Network ...) + TODO: check +CVE-2022-0019 (An insufficiently protected credentials vulnerability exists in the Pa ...) + TODO: check +CVE-2022-0018 (An information exposure vulnerability exists in the Palo Alto Networks ...) + TODO: check +CVE-2022-0017 (An improper link resolution before file access ('link following') vuln ...) + TODO: check +CVE-2022-0016 (An improper handling of exceptional conditions vulnerability exists wi ...) + TODO: check CVE-2022-0015 (A local privilege escalation (PE) vulnerability exists in the Palo Alt ...) NOT-FOR-US: Palo Alto Networks CVE-2022-0014 (An untrusted search path vulnerability exists in the Palo Alto Network ...) @@ -8939,8 +9369,8 @@ CVE-2022-0013 (A file information exposure vulnerability exists in the Palo Alto NOT-FOR-US: Palo Alto Networks CVE-2022-0012 (An improper link resolution before file access vulnerability exists in ...) NOT-FOR-US: Palo Alto Networks -CVE-2022-0011 - RESERVED +CVE-2022-0011 (PAN-OS software provides options to exclude specific websites from URL ...) + TODO: check CVE-2021-45918 RESERVED CVE-2021-45917 (The server-request receiver function of Shockwall system has an improp ...) @@ -8993,8 +9423,8 @@ CVE-2021-45903 (A persistent cross-site scripting (XSS) issue in the web interfa NOT-FOR-US: SuiteCRM CVE-2021-45902 RESERVED -CVE-2021-45901 - RESERVED +CVE-2021-45901 (The password-reset form in ServiceNow Orlando provides different respo ...) + TODO: check CVE-2021-45900 RESERVED CVE-2021-45899 (SuiteCRM before 7.12.3 and 8.x before 8.0.2 allows PHAR deserializatio ...) @@ -10773,8 +11203,8 @@ CVE-2021-45366 RESERVED CVE-2021-45365 RESERVED -CVE-2021-45364 - RESERVED +CVE-2021-45364 (A Code Execution vulnerability exists in Statamic Version through 3.2. ...) + TODO: check CVE-2021-45363 RESERVED CVE-2021-45362 @@ -10787,8 +11217,8 @@ CVE-2021-45359 RESERVED CVE-2021-45358 RESERVED -CVE-2021-45357 - RESERVED +CVE-2021-45357 (Cross Site Scripting (XSS) vulnerability exists in Piwigo 12.x via the ...) + TODO: check CVE-2021-45356 RESERVED CVE-2021-45355 @@ -11784,6 +12214,7 @@ CVE-2021-4123 (livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF) NOT-FOR-US: livehelperchat CVE-2021-4122 [decryption through LUKS2 reencryption crash recovery] RESERVED + {DSA-5070-1} - cryptsetup 2:2.4.3-1 (bug #1003686) [buster] - cryptsetup <not-affected> (Vulnerable code not present; does not support online LUKS2 reencryption) [stretch] - cryptsetup <not-affected> (Vulnerable code not present; does not support LUKS2) @@ -12461,8 +12892,8 @@ CVE-2021-44894 RESERVED CVE-2021-44893 RESERVED -CVE-2021-44892 - RESERVED +CVE-2021-44892 (A Remote Code Execution (RCE) vulnerability exists in ThinkPHP 3.x.x v ...) + TODO: check CVE-2021-44891 RESERVED CVE-2021-44890 @@ -12572,8 +13003,8 @@ CVE-2021-44852 (An issue was discovered in BS_RCIO64.sys in Biostar RACING GT Ev NOT-FOR-US: Biostar RACING GT Evo CVE-2021-44851 RESERVED -CVE-2021-44850 - RESERVED +CVE-2021-44850 (On Xilinx Zynq-7000 SoC devices, physical modification of an SD boot i ...) + TODO: check CVE-2021-44849 RESERVED CVE-2021-44848 (In Cibele Thinfinity VirtualUI before 3.0, /changePassword returns dif ...) @@ -16687,7 +17118,7 @@ CVE-2022-21366 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise E - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 CVE-2022-21365 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 @@ -16700,7 +17131,7 @@ CVE-2022-21362 (Vulnerability in the MySQL Server product of Oracle MySQL (compo CVE-2022-21361 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...) NOT-FOR-US: Oracle CVE-2022-21360 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 @@ -16725,6 +17156,7 @@ CVE-2022-21351 (Vulnerability in the MySQL Server product of Oracle MySQL (compo CVE-2022-21350 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...) NOT-FOR-US: Oracle CVE-2022-21349 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) + {DLA-2917-1} - openjdk-8 <unfixed> CVE-2022-21348 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...) - mysql-8.0 <unfixed> @@ -16742,12 +17174,12 @@ CVE-2022-21343 CVE-2022-21342 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...) - mysql-8.0 <unfixed> CVE-2022-21341 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 CVE-2022-21340 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 @@ -16820,7 +17252,7 @@ CVE-2022-21307 (Vulnerability in the MySQL Cluster product of Oracle MySQL (comp CVE-2022-21306 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...) NOT-FOR-US: Oracle CVE-2022-21305 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 @@ -16837,7 +17269,7 @@ CVE-2022-21301 (Vulnerability in the MySQL Server product of Oracle MySQL (compo CVE-2022-21300 (Vulnerability in the PeopleSoft Enterprise CS SA Integration Pack prod ...) NOT-FOR-US: Oracle CVE-2022-21299 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 @@ -16846,19 +17278,19 @@ CVE-2022-21298 (Vulnerability in the Oracle Solaris product of Oracle Systems (c CVE-2022-21297 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...) - mysql-8.0 <unfixed> CVE-2022-21296 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 CVE-2022-21295 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...) - virtualbox <not-affected> (Windows-specific) CVE-2022-21294 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 CVE-2022-21293 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 @@ -16884,11 +17316,11 @@ CVE-2022-21285 (Vulnerability in the MySQL Cluster product of Oracle MySQL (comp CVE-2022-21284 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...) NOT-FOR-US: MySQL Cluster CVE-2022-21283 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 CVE-2022-21282 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 @@ -16963,7 +17395,7 @@ CVE-2022-21250 (Vulnerability in the Oracle Trade Management product of Oracle E CVE-2022-21249 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...) - mysql-8.0 <unfixed> CVE-2022-21248 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...) - {DSA-5058-1 DSA-5057-1} + {DSA-5058-1 DSA-5057-1 DLA-2917-1} - openjdk-8 <unfixed> - openjdk-11 11.0.14+9-1 - openjdk-17 17.0.2+8-1 @@ -19120,8 +19552,8 @@ CVE-2022-20751 RESERVED CVE-2022-20750 RESERVED -CVE-2022-20749 - RESERVED +CVE-2022-20749 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check CVE-2022-20748 RESERVED CVE-2022-20747 @@ -19142,8 +19574,8 @@ CVE-2022-20740 RESERVED CVE-2022-20739 RESERVED -CVE-2022-20738 - RESERVED +CVE-2022-20738 (A vulnerability in the Cisco Umbrella Secure Web Gateway service could ...) + TODO: check CVE-2022-20737 RESERVED CVE-2022-20736 @@ -19194,34 +19626,34 @@ CVE-2022-20714 RESERVED CVE-2022-20713 RESERVED -CVE-2022-20712 - RESERVED -CVE-2022-20711 - RESERVED -CVE-2022-20710 - RESERVED -CVE-2022-20709 - RESERVED -CVE-2022-20708 - RESERVED -CVE-2022-20707 - RESERVED -CVE-2022-20706 - RESERVED -CVE-2022-20705 - RESERVED -CVE-2022-20704 - RESERVED -CVE-2022-20703 - RESERVED -CVE-2022-20702 - RESERVED -CVE-2022-20701 - RESERVED -CVE-2022-20700 - RESERVED -CVE-2022-20699 - RESERVED +CVE-2022-20712 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20711 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20710 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20709 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20708 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20707 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20706 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20705 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20704 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20703 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20702 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20701 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20700 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check +CVE-2022-20699 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...) + TODO: check CVE-2022-20698 (A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) ...) - clamav 0.103.5+dfsg-1 [bullseye] - clamav <no-dsa> (clamav is updated via -updates) @@ -19263,8 +19695,8 @@ CVE-2022-20682 RESERVED CVE-2022-20681 RESERVED -CVE-2022-20680 - RESERVED +CVE-2022-20680 (A vulnerability in the web-based management interface of Cisco Prime S ...) + TODO: check CVE-2022-20679 RESERVED CVE-2022-20678 @@ -19363,8 +19795,8 @@ CVE-2022-20632 RESERVED CVE-2022-20631 RESERVED -CVE-2022-20630 - RESERVED +CVE-2022-20630 (A vulnerability in the audit log of Cisco DNA Center could allow an au ...) + TODO: check CVE-2022-20629 RESERVED CVE-2022-20628 @@ -24980,8 +25412,8 @@ CVE-2021-41447 RESERVED CVE-2021-41446 RESERVED -CVE-2021-41445 - RESERVED +CVE-2021-41445 (A reflected cross-site-scripting attack in web application of D-Link D ...) + TODO: check CVE-2021-41444 RESERVED CVE-2021-41443 @@ -34660,8 +35092,8 @@ CVE-2021-37615 (Exiv2 is a command-line utility and C++ library for reading, wri NOTE: https://github.com/Exiv2/exiv2/pull/1758 CVE-2021-37614 (In certain Progress MOVEit Transfer versions before 2021.0.3 (aka 13.0 ...) NOT-FOR-US: MOVEit Transfer -CVE-2021-37613 - RESERVED +CVE-2021-37613 (Stormshield Network Security (SNS) 1.0.0 through 4.2.3 allows a Denial ...) + TODO: check CVE-2021-37612 RESERVED CVE-2021-37611 @@ -48872,8 +49304,8 @@ CVE-2021-3513 NOT-FOR-US: Keycloak CVE-2021-31815 (GAEN (aka Google/Apple Exposure Notifications) through 2021-04-27 on A ...) NOT-FOR-US: GAEN (aka Google/Apple Exposure Notifications) -CVE-2021-31814 - RESERVED +CVE-2021-31814 (In Stormshield 1.1.0, and 2.1.0 through 2.9.0, an attacker can block a ...) + TODO: check CVE-2021-31813 (Zoho ManageEngine Applications Manager before 15130 is vulnerable to S ...) NOT-FOR-US: Zoho CVE-2021-31812 (In Apache PDFBox, a carefully crafted PDF file can trigger an infinite ...) @@ -61962,8 +62394,8 @@ CVE-2021-26677 (A local authenticated escalation of privilege vulnerability was NOT-FOR-US: Aruba CVE-2021-3399 RESERVED -CVE-2021-3398 - RESERVED +CVE-2021-3398 (Stormshield Network Security (SNS) 3.x has an Integer Overflow in the ...) + TODO: check CVE-2021-3397 RESERVED CVE-2021-3396 (OpenNMS Meridian 2016, 2017, 2018 before 2018.1.25, 2019 before 2019.1 ...) @@ -63744,8 +64176,8 @@ CVE-2021-25994 (In Userfrosting, versions v0.3.1 to v4.6.2 are vulnerable to Hos NOT-FOR-US: Userfrosting CVE-2021-25993 (In Requarks wiki.js, versions 2.0.0-beta.147 to 2.5.255 are affected b ...) NOT-FOR-US: Requarks wiki.js -CVE-2021-25992 - RESERVED +CVE-2021-25992 (In Ifme, versions 1.0.0 to v.7.33.2 don’t properly invalidate a ...) + TODO: check CVE-2021-25991 (In Ifme, versions v5.0.0 to v7.32 are vulnerable against an improper a ...) NOT-FOR-US: Ifme CVE-2021-25990 (In “ifme”, versions v7.22.0 to v7.31.4 are vulnerable agai ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9be7100250a0dee891abbea4c9fe6214fe47386e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9be7100250a0dee891abbea4c9fe6214fe47386e You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
