Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
de34552d by security tracker role at 2022-10-24T20:10:26+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,189 @@
+CVE-2022-43724
+ RESERVED
+CVE-2022-43723
+ RESERVED
+CVE-2022-43722
+ RESERVED
+CVE-2022-43721
+ RESERVED
+CVE-2022-43720
+ RESERVED
+CVE-2022-43719
+ RESERVED
+CVE-2022-43718
+ RESERVED
+CVE-2022-43717
+ RESERVED
+CVE-2022-43716
+ RESERVED
+CVE-2022-43715
+ RESERVED
+CVE-2022-43714
+ RESERVED
+CVE-2022-43713
+ RESERVED
+CVE-2022-43712
+ RESERVED
+CVE-2022-43711
+ RESERVED
+CVE-2022-43710
+ RESERVED
+CVE-2022-43709
+ RESERVED
+CVE-2022-43708
+ RESERVED
+CVE-2022-43707
+ RESERVED
+CVE-2022-43706
+ RESERVED
+CVE-2022-43705
+ RESERVED
+CVE-2022-43704
+ RESERVED
+CVE-2022-43703
+ RESERVED
+CVE-2022-43702
+ RESERVED
+CVE-2022-43701
+ RESERVED
+CVE-2022-43700
+ RESERVED
+CVE-2022-43699
+ RESERVED
+CVE-2022-43698
+ RESERVED
+CVE-2022-43697
+ RESERVED
+CVE-2022-43696
+ RESERVED
+CVE-2022-43695
+ RESERVED
+CVE-2022-43694
+ RESERVED
+CVE-2022-43693
+ RESERVED
+CVE-2022-43692
+ RESERVED
+CVE-2022-43691
+ RESERVED
+CVE-2022-43690
+ RESERVED
+CVE-2022-43689
+ RESERVED
+CVE-2022-43688
+ RESERVED
+CVE-2022-43687
+ RESERVED
+CVE-2022-43686
+ RESERVED
+CVE-2022-43685
+ RESERVED
+CVE-2022-43684
+ RESERVED
+CVE-2022-43683
+ RESERVED
+CVE-2022-43682
+ RESERVED
+CVE-2022-43681
+ RESERVED
+CVE-2022-43680 (In libexpat through 2.4.9, there is a use-after free caused by
overeag ...)
+ TODO: check
+CVE-2022-43679
+ RESERVED
+CVE-2022-43678
+ RESERVED
+CVE-2022-43677 (In free5GC 3.2.1, a malformed NGAP message can crash the AMF
and NGAP ...)
+ TODO: check
+CVE-2022-43676
+ RESERVED
+CVE-2022-43675
+ RESERVED
+CVE-2022-43674
+ RESERVED
+CVE-2022-43673
+ RESERVED
+CVE-2022-43672
+ RESERVED
+CVE-2022-43671
+ RESERVED
+CVE-2022-43670
+ RESERVED
+CVE-2022-43667
+ RESERVED
+CVE-2022-43509
+ RESERVED
+CVE-2022-43508
+ RESERVED
+CVE-2022-43504
+ RESERVED
+CVE-2022-43500
+ RESERVED
+CVE-2022-43497
+ RESERVED
+CVE-2022-43487
+ RESERVED
+CVE-2022-43484
+ RESERVED
+CVE-2022-43470
+ RESERVED
+CVE-2022-43442
+ RESERVED
+CVE-2022-42486
+ RESERVED
+CVE-2022-41994
+ RESERVED
+CVE-2022-41830
+ RESERVED
+CVE-2022-41807
+ RESERVED
+CVE-2022-41798
+ RESERVED
+CVE-2022-3680
+ RESERVED
+CVE-2022-3679
+ RESERVED
+CVE-2022-3678
+ RESERVED
+CVE-2022-3677
+ RESERVED
+CVE-2022-3676 (In Eclipse Openj9 before version 0.35.0, interface calls can be
inline ...)
+ TODO: check
+CVE-2022-3675
+ RESERVED
+CVE-2022-3674
+ RESERVED
+CVE-2022-3673
+ RESERVED
+CVE-2022-3672
+ RESERVED
+CVE-2022-3671
+ RESERVED
+CVE-2022-3670
+ RESERVED
+CVE-2022-3669
+ RESERVED
+CVE-2022-3668
+ RESERVED
+CVE-2022-3667
+ RESERVED
+CVE-2022-3666
+ RESERVED
+CVE-2022-3665
+ RESERVED
+CVE-2022-3664
+ RESERVED
+CVE-2022-3663
+ RESERVED
+CVE-2022-3662
+ RESERVED
+CVE-2021-46850 (myVesta Control Panel before 0.9.8-26-43 and Vesta Control
Panel befor ...)
+ TODO: check
+CVE-2021-46849 (pikepdf before 2.10.0 allows an XXE attack against PDF XMP
metadata pa ...)
+ TODO: check
+CVE-2021-46848 (GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array
size check ...)
+ TODO: check
+CVE-2021-46847
+ RESERVED
CVE-2022-43657
RESERVED
CVE-2022-43656
@@ -2459,8 +2645,8 @@ CVE-2022-42737
RESERVED
CVE-2022-42736
RESERVED
-CVE-2022-41797
- RESERVED
+CVE-2022-41797 (Improper authorization in handler for custom URL scheme
vulnerability ...)
+ TODO: check
CVE-2022-3451
RESERVED
CVE-2022-3450
@@ -3129,12 +3315,12 @@ CVE-2022-42001
RESERVED
CVE-2022-42000
RESERVED
-CVE-2022-41986
- RESERVED
+CVE-2022-41986 (Information disclosure vulnerability in Android App 'IIJ
SmartKey' ver ...)
+ TODO: check
CVE-2022-41814
RESERVED
-CVE-2022-41796
- RESERVED
+CVE-2022-41796 (Untrusted search path vulnerability in the installer of
Content Transf ...)
+ TODO: check
CVE-2022-41789
RESERVED
CVE-2022-41611
@@ -4537,8 +4723,8 @@ CVE-2022-41803
RESERVED
CVE-2022-41801
RESERVED
-CVE-2022-41799
- RESERVED
+CVE-2022-41799 (Improper access control vulnerability in GROWI prior to v5.1.4
(v5 ser ...)
+ TODO: check
CVE-2022-41782
RESERVED
CVE-2022-41771
@@ -5224,8 +5410,8 @@ CVE-2022-41556 (A resource leak in gw_backend.c in
lighttpd 1.4.56 through 1.4.6
NOTE: https://github.com/lighttpd/lighttpd1.4/pull/115
NOTE: Introduced by:
https://github.com/lighttpd/lighttpd1.4/commit/bcddbe186f010e2964f7551141c0b8350b36817d
(lighttpd-1.4.56-rc1)
NOTE: Fixed by:
https://github.com/lighttpd/lighttpd1.4/commit/b18de6f9264f914f7bf493abd3b6059343548e50
(lighttpd-1.4.67)
-CVE-2022-40690
- RESERVED
+CVE-2022-40690 (Cross-site scripting vulnerability in BookStack versions prior
to v22. ...)
+ TODO: check
CVE-2022-3322
RESERVED
CVE-2022-3321
@@ -5749,8 +5935,8 @@ CVE-2022-41345
CVE-2022-41344
RESERVED
NOT-FOR-US: Mediawiki extension PageTriage
-CVE-2022-40984
- RESERVED
+CVE-2022-40984 (Stack-based buffer overflow in WTViewerE series WTViewerE
761941 from ...)
+ TODO: check
CVE-2022-3299 (A vulnerability was found in Open5GS up to 2.4.10. It has been
declare ...)
NOT-FOR-US: Open5GS
CVE-2022-3298 (Allocation of Resources Without Limits or Throttling in GitHub
reposit ...)
@@ -5761,8 +5947,8 @@ CVE-2022-41343 (registerFont in FontMetrics.php in Dompdf
before 2.0.1 allows re
NOTE: https://github.com/dompdf/dompdf/pull/2995
NOTE: https://github.com/dompdf/dompdf/releases/tag/v2.0.1
NOTE: https://tantosec.com/blog/cve-2022-41343/
-CVE-2022-36368
- RESERVED
+CVE-2022-36368 (Multiple stored cross-site scripting vulnerabilities in the
web user i ...)
+ TODO: check
CVE-2022-41340 (The secp256k1-js package before 1.1.0 for Node.js implements
ECDSA wit ...)
NOT-FOR-US: Node secp256k1-js
CVE-2022-41339
@@ -10527,10 +10713,10 @@ CVE-2022-39316
RESERVED
CVE-2022-39315
RESERVED
-CVE-2022-39314
- RESERVED
-CVE-2022-39313
- RESERVED
+CVE-2022-39314 (Kirby is a flat-file CMS. In versions prior to 3.5.8.2,
3.6.6.2, 3.7.5 ...)
+ TODO: check
+CVE-2022-39313 (Parse Server is an open source backend that can be deployed to
any inf ...)
+ TODO: check
CVE-2022-39312
RESERVED
CVE-2022-39311 (GoCD is a continuous delivery server. GoCD helps you automate
and stre ...)
@@ -10545,8 +10731,8 @@ CVE-2022-39307
RESERVED
CVE-2022-39306
RESERVED
-CVE-2022-39305
- RESERVED
+CVE-2022-39305 (Gin-vue-admin is a backstage management system based on vue
and gin, w ...)
+ TODO: check
CVE-2022-39304
RESERVED
CVE-2022-39303 (Ree6 is a moderation bot. This vulnerability allows
manipulation of SQ ...)
@@ -10900,6 +11086,7 @@ CVE-2022-39179
CVE-2022-39178
RESERVED
CVE-2022-39177 (BlueZ before 5.59 allows physically proximate attackers to
cause a den ...)
+ {DLA-3157-1}
- bluez 5.61-1
[bullseye] - bluez <no-dsa> (Minor issue)
NOTE:
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=e2b0f0d8d63e1223bb714a9efb37e2257818268b
(5.59)
@@ -10908,6 +11095,7 @@ CVE-2022-39177 (BlueZ before 5.59 allows physically
proximate attackers to cause
NOTE:
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=e21680c9355a0f9d5ef6d4a5ae032de274e87b37
(5.61)
NOTE: https://bugs.launchpad.net/ubuntu/+source/bluez/+bug/1977968
CVE-2022-39176 (BlueZ before 5.59 allows physically proximate attackers to
obtain sens ...)
+ {DLA-3157-1}
- bluez 5.61-1
[bullseye] - bluez <no-dsa> (Minor issue)
NOTE:
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=e2b0f0d8d63e1223bb714a9efb37e2257818268b
(5.59)
@@ -14204,8 +14392,8 @@ CVE-2022-38119
RESERVED
CVE-2022-38118 (OAKlouds Portal website’s Meeting Room has insufficient
validati ...)
NOT-FOR-US: OAKlouds
-CVE-2022-38117
- RESERVED
+CVE-2022-38117 (Juiker app hard-coded its AES key in the source code. A
physical attac ...)
+ TODO: check
CVE-2022-38116 (Le-yan Personnel and Salary Management System has hard-coded
database ...)
NOT-FOR-US: Le-yan Personnel and Salary Management System
CVE-2022-38103
@@ -34227,18 +34415,18 @@ CVE-2022-1706 (A vulnerability was found in Ignition
where ignition configs are
- ignition 2.14.0+ds1-1 (bug #1014716)
NOTE: https://github.com/coreos/ignition/issues/1300
NOTE: https://github.com/coreos/ignition/pull/1350
-CVE-2021-46279
- RESERVED
-CVE-2021-45925
- RESERVED
-CVE-2021-44776
- RESERVED
-CVE-2021-44769
- RESERVED
-CVE-2021-44467
- RESERVED
-CVE-2021-4228
- RESERVED
+CVE-2021-46279 (Session fixation and insufficient session expiration
vulnerabilities a ...)
+ TODO: check
+CVE-2021-45925 (Observable discrepancies in the login process allow an
attacker to gue ...)
+ TODO: check
+CVE-2021-44776 (A broken access control vulnerability in the
SubNet_handler_func funct ...)
+ TODO: check
+CVE-2021-44769 (An improper input validation vulnerability in the TLS
certificate gene ...)
+ TODO: check
+CVE-2021-44467 (A broken access control vulnerability in the KillDupUsr_func
function ...)
+ TODO: check
+CVE-2021-4228 (Use of hard-coded TLS certificate by default allows an attacker
to per ...)
+ TODO: check
CVE-2022-30689 (HashiCorp Vault and Vault Enterprise from 1.10.0 to 1.10.2 did
not cor ...)
NOT-FOR-US: HashiCorp Vault
CVE-2022-30688 (needrestart 0.8 through 3.5 before 3.6 is prone to local
privilege esc ...)
@@ -57656,6 +57844,7 @@ CVE-2022-0206 (The NewStatPress WordPress plugin before
1.3.6 does not properly
CVE-2022-0205 (The YOP Poll WordPress plugin before 6.3.5 does not sanitise
and escap ...)
NOT-FOR-US: WordPress plugin
CVE-2022-0204 (A heap overflow vulnerability was found in bluez in versions
prior to ...)
+ {DLA-3157-1}
- bluez 5.64-1 (bug #1003712)
[bullseye] - bluez <no-dsa> (Minor issue)
[stretch] - bluez <no-dsa> (Minor issue)
@@ -71178,6 +71367,7 @@ CVE-2021-3929 (A DMA reentrancy issue was found in the
NVM Express Controller (N
NOTE: Proposed patchset:
https://lists.nongnu.org/archive/html/qemu-devel/2021-08/msg03692.html
NOTE: Fixed by:
https://gitlab.com/qemu-project/qemu/-/commit/736b01642d85be832385063f278fe7cd4ffb5221
(v7.0.0-rc0)
CVE-2021-43400 (An issue was discovered in gatt-database.c in BlueZ 5.61. A
use-after- ...)
+ {DLA-3157-1}
- bluez 5.62-1 (bug #998626)
[bullseye] - bluez <no-dsa> (Minor issue; can be fixed in point release)
[stretch] - bluez <ignored> (invasive patch, requires post-stretch
revamps)
@@ -77043,8 +77233,7 @@ CVE-2021-42011 (An incorrect permission assignment
vulnerability in Trend Micro
NOT-FOR-US: Trend Micro
CVE-2021-3863 (snipe-it is vulnerable to Improper Neutralization of Input
During Web ...)
- snipe-it <itp> (bug #1005172)
-CVE-2021-42010
- RESERVED
+CVE-2021-42010 (Heron versions <= 0.20.4-incubating allows CRLF log
injection becau ...)
NOT-FOR-US: Apache Heron
CVE-2021-42009 (An authenticated Apache Traffic Control Traffic Ops user with
Portal-l ...)
NOT-FOR-US: Apache Traffic Control
@@ -79015,7 +79204,7 @@ CVE-2021-41231
CVE-2021-41230 (Pomerium is an open source identity-aware access proxy. In
affected ve ...)
NOT-FOR-US: Pomerium
CVE-2021-41229 (BlueZ is a Bluetooth protocol stack for Linux. In affected
versions a ...)
- {DLA-2827-1}
+ {DLA-3157-1 DLA-2827-1}
- bluez 5.62-2 (bug #1000262)
[bullseye] - bluez <no-dsa> (Minor issue)
NOTE:
https://github.com/bluez/bluez/security/advisories/GHSA-3fqg-r8j5-f5xq
@@ -115848,20 +116037,20 @@ CVE-2021-26735
RESERVED
CVE-2021-26734
RESERVED
-CVE-2021-26733
- RESERVED
-CVE-2021-26732
- RESERVED
-CVE-2021-26731
- RESERVED
-CVE-2021-26730
- RESERVED
-CVE-2021-26729
- RESERVED
-CVE-2021-26728
- RESERVED
-CVE-2021-26727
- RESERVED
+CVE-2021-26733 (A broken access control vulnerability in the
FirstReset_handler_func f ...)
+ TODO: check
+CVE-2021-26732 (A broken access control vulnerability in the
First_network_func functi ...)
+ TODO: check
+CVE-2021-26731 (Command injection and multiple stack-based buffer overflows
vulnerabil ...)
+ TODO: check
+CVE-2021-26730 (A stack-based buffer overflow vulnerability in a subfunction
of the Lo ...)
+ TODO: check
+CVE-2021-26729 (Command injection and multiple stack-based buffer overflows
vulnerabil ...)
+ TODO: check
+CVE-2021-26728 (Command injection and stack-based buffer overflow
vulnerabilities in t ...)
+ TODO: check
+CVE-2021-26727 (Multiple command injections and stack-based buffer overflows
vulnerabi ...)
+ TODO: check
CVE-2021-26726 (A remote code execution vulnerability affecting a Valmet DNA
service l ...)
NOT-FOR-US: Valmet
CVE-2021-26725 (Path Traversal vulnerability when changing timezone using web
GUI of N ...)
@@ -160152,6 +160341,7 @@ CVE-2020-21367
CVE-2020-21366
RESERVED
CVE-2020-21365 (Directory traversal vulnerability in wkhtmltopdf through
0.12.5 allows ...)
+ {DLA-3158-1}
- wkhtmltopdf 0.12.6-1
NOTE:
https://github.com/wkhtmltopdf/wkhtmltopdf/commit/2a5f25077895fb075812c0f599326f079a59d6cf
(0.12.6)
NOTE: https://github.com/wkhtmltopdf/wkhtmltopdf/issues/4536
@@ -247805,12 +247995,12 @@ CVE-2019-8924 (XAMPP through 5.6.8 allows XSS via
the cds-fpdf.php interpret or
CVE-2019-8923 (XAMPP through 5.6.8 and previous allows SQL injection via the
cds-fpdf ...)
NOT-FOR-US: XAMPP
CVE-2019-8922 (A heap-based buffer overflow was discovered in bluetoothd in
BlueZ thr ...)
- {DLA-2827-1}
+ {DLA-3157-1 DLA-2827-1}
- bluez 5.54-1
NOTE:
https://ssd-disclosure.com/ssd-advisory-linux-bluez-information-leak-and-heap-overflow/
NOTE:
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=6c7243fb6ab90b7b855cead98c66394fedea135f
(5.51)
CVE-2019-8921 (An issue was discovered in bluetoothd in BlueZ through 5.48.
The vulne ...)
- {DLA-2827-1}
+ {DLA-3157-1 DLA-2827-1}
- bluez 5.54-1
NOTE:
https://ssd-disclosure.com/ssd-advisory-linux-bluez-information-leak-and-heap-overflow/
NOTE:
https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=7bf67b32709d828fafa26256b4c78331760c6e93
(5.51)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de34552d08d4dbc58878a470c86cfd1bbf47a020
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de34552d08d4dbc58878a470c86cfd1bbf47a020
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
