[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Tue Dec 22 08:10:26 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0cbe6fdf by security tracker role at 2020-12-22T08:10:18+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,311 @@
+CVE-2021-21233
+ RESERVED
+CVE-2021-21232
+ RESERVED
+CVE-2021-21231
+ RESERVED
+CVE-2021-21230
+ RESERVED
+CVE-2021-21229
+ RESERVED
+CVE-2021-21228
+ RESERVED
+CVE-2021-21227
+ RESERVED
+CVE-2021-21226
+ RESERVED
+CVE-2021-21225
+ RESERVED
+CVE-2021-21224
+ RESERVED
+CVE-2021-21223
+ RESERVED
+CVE-2021-21222
+ RESERVED
+CVE-2021-21221
+ RESERVED
+CVE-2021-21220
+ RESERVED
+CVE-2021-21219
+ RESERVED
+CVE-2021-21218
+ RESERVED
+CVE-2021-21217
+ RESERVED
+CVE-2021-21216
+ RESERVED
+CVE-2021-21215
+ RESERVED
+CVE-2021-21214
+ RESERVED
+CVE-2021-21213
+ RESERVED
+CVE-2021-21212
+ RESERVED
+CVE-2021-21211
+ RESERVED
+CVE-2021-21210
+ RESERVED
+CVE-2021-21209
+ RESERVED
+CVE-2021-21208
+ RESERVED
+CVE-2021-21207
+ RESERVED
+CVE-2021-21206
+ RESERVED
+CVE-2021-21205
+ RESERVED
+CVE-2021-21204
+ RESERVED
+CVE-2021-21203
+ RESERVED
+CVE-2021-21202
+ RESERVED
+CVE-2021-21201
+ RESERVED
+CVE-2021-21200
+ RESERVED
+CVE-2021-21199
+ RESERVED
+CVE-2021-21198
+ RESERVED
+CVE-2021-21197
+ RESERVED
+CVE-2021-21196
+ RESERVED
+CVE-2021-21195
+ RESERVED
+CVE-2021-21194
+ RESERVED
+CVE-2021-21193
+ RESERVED
+CVE-2021-21192
+ RESERVED
+CVE-2021-21191
+ RESERVED
+CVE-2021-21190
+ RESERVED
+CVE-2021-21189
+ RESERVED
+CVE-2021-21188
+ RESERVED
+CVE-2021-21187
+ RESERVED
+CVE-2021-21186
+ RESERVED
+CVE-2021-21185
+ RESERVED
+CVE-2021-21184
+ RESERVED
+CVE-2021-21183
+ RESERVED
+CVE-2021-21182
+ RESERVED
+CVE-2021-21181
+ RESERVED
+CVE-2021-21180
+ RESERVED
+CVE-2021-21179
+ RESERVED
+CVE-2021-21178
+ RESERVED
+CVE-2021-21177
+ RESERVED
+CVE-2021-21176
+ RESERVED
+CVE-2021-21175
+ RESERVED
+CVE-2021-21174
+ RESERVED
+CVE-2021-21173
+ RESERVED
+CVE-2021-21172
+ RESERVED
+CVE-2021-21171
+ RESERVED
+CVE-2021-21170
+ RESERVED
+CVE-2021-21169
+ RESERVED
+CVE-2021-21168
+ RESERVED
+CVE-2021-21167
+ RESERVED
+CVE-2021-21166
+ RESERVED
+CVE-2021-21165
+ RESERVED
+CVE-2021-21164
+ RESERVED
+CVE-2021-21163
+ RESERVED
+CVE-2021-21162
+ RESERVED
+CVE-2021-21161
+ RESERVED
+CVE-2021-21160
+ RESERVED
+CVE-2021-21159
+ RESERVED
+CVE-2021-21158
+ RESERVED
+CVE-2021-21157
+ RESERVED
+CVE-2021-21156
+ RESERVED
+CVE-2021-21155
+ RESERVED
+CVE-2021-21154
+ RESERVED
+CVE-2021-21153
+ RESERVED
+CVE-2021-21152
+ RESERVED
+CVE-2021-21151
+ RESERVED
+CVE-2021-21150
+ RESERVED
+CVE-2021-21149
+ RESERVED
+CVE-2021-21148
+ RESERVED
+CVE-2021-21147
+ RESERVED
+CVE-2021-21146
+ RESERVED
+CVE-2021-21145
+ RESERVED
+CVE-2021-21144
+ RESERVED
+CVE-2021-21143
+ RESERVED
+CVE-2021-21142
+ RESERVED
+CVE-2021-21141
+ RESERVED
+CVE-2021-21140
+ RESERVED
+CVE-2021-21139
+ RESERVED
+CVE-2021-21138
+ RESERVED
+CVE-2021-21137
+ RESERVED
+CVE-2021-21136
+ RESERVED
+CVE-2021-21135
+ RESERVED
+CVE-2021-21134
+ RESERVED
+CVE-2021-21133
+ RESERVED
+CVE-2021-21132
+ RESERVED
+CVE-2021-21131
+ RESERVED
+CVE-2021-21130
+ RESERVED
+CVE-2021-21129
+ RESERVED
+CVE-2021-21128
+ RESERVED
+CVE-2021-21127
+ RESERVED
+CVE-2021-21126
+ RESERVED
+CVE-2021-21125
+ RESERVED
+CVE-2021-21124
+ RESERVED
+CVE-2021-21123
+ RESERVED
+CVE-2021-21122
+ RESERVED
+CVE-2021-21121
+ RESERVED
+CVE-2021-21120
+ RESERVED
+CVE-2021-21119
+ RESERVED
+CVE-2021-21118
+ RESERVED
+CVE-2021-21117
+ RESERVED
+CVE-2021-21116
+ RESERVED
+CVE-2021-21115
+ RESERVED
+CVE-2021-21114
+ RESERVED
+CVE-2021-21113
+ RESERVED
+CVE-2021-21112
+ RESERVED
+CVE-2021-21111
+ RESERVED
+CVE-2021-21110
+ RESERVED
+CVE-2021-21109
+ RESERVED
+CVE-2021-21108
+ RESERVED
+CVE-2021-21107
+ RESERVED
+CVE-2021-21106
+ RESERVED
+CVE-2020-35626 (An issue was discovered in the PushToWatch extension for MediaWiki thr ...)
+ TODO: check
+CVE-2020-35625 (An issue was discovered in the Widgets extension for MediaWiki through ...)
+ TODO: check
+CVE-2020-35624 (An issue was discovered in the SecurePoll extension for MediaWiki thro ...)
+ TODO: check
+CVE-2020-35623 (An issue was discovered in the CasAuth extension for MediaWiki through ...)
+ TODO: check
+CVE-2020-35622 (An issue was discovered in the GlobalUsage extension for MediaWiki thr ...)
+ TODO: check
+CVE-2020-35621
+ RESERVED
+CVE-2020-35620
+ RESERVED
+CVE-2020-35619
+ RESERVED
+CVE-2020-35618
+ RESERVED
+CVE-2020-35617
+ RESERVED
+CVE-2020-35616
+ RESERVED
+CVE-2020-35615
+ RESERVED
+CVE-2020-35614
+ RESERVED
+CVE-2020-35613
+ RESERVED
+CVE-2020-35612
+ RESERVED
+CVE-2020-35611
+ RESERVED
+CVE-2020-35610
+ RESERVED
+CVE-2020-35609
+ RESERVED
+CVE-2020-35608
+ RESERVED
+CVE-2020-35607
+ RESERVED
+CVE-2020-35606 (Arbitrary command execution can occur in Webmin through 1.962. Any use ...)
+ TODO: check
+CVE-2020-35605 (The Graphics Protocol feature in graphics.c in kitty before 0.19.3 all ...)
+ TODO: check
+CVE-2020-35604 (An XXE attack can occur in Kronos WebTA 5.0.4 when SAML is used. ...)
+ TODO: check
+CVE-2020-35603
+ RESERVED
+CVE-2020-35602
+ RESERVED
+CVE-2020-35601
+ RESERVED
CVE-2020-35600
RESERVED
CVE-2020-35599
@@ -3149,8 +3457,8 @@ CVE-2020-35153
RESERVED
CVE-2020-35152
RESERVED
-CVE-2020-35151
- RESERVED
+CVE-2020-35151 (The Online Marriage Registration System 1.0 post parameter "searchdata ...)
+ TODO: check
CVE-2020-35150
RESERVED
CVE-2020-35149 (lib/utils.js in mquery before 3.2.3 allows a pollution attack because ...)
@@ -4986,8 +5294,8 @@ CVE-2020-29598
RESERVED
CVE-2020-29597 (IncomCMS 2.0 has a modules/uploader/showcase/script.php insecure file ...)
NOT-FOR-US: IncomCMS
-CVE-2020-29596
- RESERVED
+CVE-2020-29596 (MiniWeb HTTP server 0.8.19 allows remote attackers to cause a denial o ...)
+ TODO: check
CVE-2020-29595 (PlugIns\IDE_ACDStd.apl in ACDSee Photo Studio Studio Professional 2021 ...)
NOT-FOR-US: ACDSee Photo Studio Studio Professional
CVE-2020-29594
@@ -14599,7 +14907,7 @@ CVE-2020-26941
RESERVED
CVE-2020-26940
RESERVED
-CVE-2020-26939 (In Legion of the Bouncy Castle BC before 1.55 and BC-FJA before 1.0.1. ...)
+CVE-2020-26939 (In Legion of the Bouncy Castle BC before 1.61 and BC-FJA before 1.0.1. ...)
{DLA-2433-1}
- bouncycastle 1.61-1
NOTE: https://github.com/bcgit/bc-java/wiki/CVE-2020-26939
@@ -16020,22 +16328,22 @@ CVE-2020-26286
RESERVED
CVE-2020-26285
RESERVED
-CVE-2020-26284
- RESERVED
+CVE-2020-26284 (Hugo is a fast and Flexible Static Site Generator built in Go. Hugo de ...)
+ TODO: check
CVE-2020-26283
RESERVED
CVE-2020-26282
RESERVED
-CVE-2020-26281
- RESERVED
+CVE-2020-26281 (async-h1 is an asynchronous HTTP/1.1 parser for Rust (crates.io). Ther ...)
+ TODO: check
CVE-2020-26280 (OpenSlides is a free, Web-based presentation and assembly system for m ...)
NOT-FOR-US: OpenSlides
CVE-2020-26279
RESERVED
CVE-2020-26278
RESERVED
-CVE-2020-26277
- RESERVED
+CVE-2020-26277 (DBdeployer is a tool that deploys MySQL database servers easily. In DB ...)
+ TODO: check
CVE-2020-26276 (Fleet is an open source osquery manager. In Fleet before version 3.5.1 ...)
NOT-FOR-US: Fleet (osquery frontend)
CVE-2020-26275 (The Jupyter Server provides the backend (i.e. the core services, APIs, ...)
@@ -26547,10 +26855,10 @@ CVE-2020-21380
RESERVED
CVE-2020-21379
RESERVED
-CVE-2020-21378
- RESERVED
-CVE-2020-21377
- RESERVED
+CVE-2020-21378 (SQL injection vulnerability in SeaCMS 10.1 (2020.02.08) via the id par ...)
+ TODO: check
+CVE-2020-21377 (SQL injection vulnerability in yunyecms V2.0.1 via the selcart paramet ...)
+ TODO: check
CVE-2020-21376
RESERVED
CVE-2020-21375
@@ -50131,8 +50439,8 @@ CVE-2020-11719
RESERVED
CVE-2020-11718
RESERVED
-CVE-2020-11717
- RESERVED
+CVE-2020-11717 (An issue was discovered in Programi 014 31.01.2020. It has multiple SQ ...)
+ TODO: check
CVE-2020-11716 (Panasonic P110, Eluga Z1 Pro, Eluga X1, and Eluga X1 Pro devices throu ...)
NOT-FOR-US: Panasonic
CVE-2020-11715 (Panasonic P99 devices through 2020-04-10 have Incorrect Access Control ...)
@@ -57593,8 +57901,8 @@ CVE-2020-8996 (AnyShare Cloud 6.0.9 allows authenticated directory traversal to
NOT-FOR-US: AnyShare Cloud
CVE-2019-20456 (Goverlan Reach Console before 9.50, Goverlan Reach Server before 3.50, ...)
NOT-FOR-US: Goverlan
-CVE-2020-8995
- RESERVED
+CVE-2020-8995 (Programi Bilanc Build 007 Release 014 31.01.2020 supplies a .exe file ...)
+ TODO: check
CVE-2019-20455 (Gateways/Gateway.php in Heartland & Global Payments PHP SDK before ...)
NOT-FOR-US: Heartland & Global Payments PHP SDK
CVE-2019-20454 (An out-of-bounds read was discovered in PCRE before 10.34 when the pat ...)
@@ -169563,8 +169871,8 @@ CVE-2018-7582 (WebLog Expert Web Server Enterprise 9.4 allows Remote Denial Of S
NOT-FOR-US: WebLog Expert Web Server Enterprise
CVE-2018-7581 (\ProgramData\WebLog Expert\WebServer\WebServer.cfg in WebLog Expert We ...)
NOT-FOR-US: WebLog Expert Web Server Enterprise
-CVE-2018-7580
- RESERVED
+CVE-2018-7580 (Philips Hue is vulnerable to a Denial of Service attack. Sending a SYN ...)
+ TODO: check
CVE-2017-18211 (In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was fou ...)
{DLA-2366-1}
- imagemagick 8:6.9.9.34+dfsg-3 (low)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0cbe6fdf6e109aeedf97d3e2663dd35704d360e8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0cbe6fdf6e109aeedf97d3e2663dd35704d360e8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201222/5170fcc3/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list