[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Aug 27 09:10:24 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
022c5de0 by security tracker role at 2021-08-27T08:10:17+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2021-40150
+ RESERVED
+CVE-2021-40149
+ RESERVED
+CVE-2021-40148
+ RESERVED
+CVE-2021-3743
+ RESERVED
+CVE-2021-3742
+ RESERVED
+CVE-2021-3741
+ RESERVED
+CVE-2021-3740
+ RESERVED
CVE-2021-40147 (EmTec ZOC before 8.02.2 allows \e[201~ pastes, a different vulnerabili ...)
NOT-FOR-US: EmTec ZOC
CVE-2021-40146
@@ -38,8 +52,8 @@ CVE-2021-40144
RESERVED
CVE-2021-40143
RESERVED
-CVE-2021-40142
- RESERVED
+CVE-2021-40142 (In OPC Foundation Local Discovery Server (LDS) before 1.04.402.463, re ...)
+ TODO: check
CVE-2021-40141
RESERVED
CVE-2021-40140
@@ -1617,6 +1631,7 @@ CVE-2021-39367 (Canon Oce Print Exec Workgroup 1.3.2 allows Host header injectio
CVE-2021-39366
RESERVED
CVE-2021-39365 (In GNOME grilo though 0.3.13, grl-net-wc.c does not enable TLS certifi ...)
+ {DSA-4964-1}
- grilo <unfixed> (bug #992971)
NOTE: https://blogs.gnome.org/mcatanzaro/2021/05/25/reminder-soupsessionsync-and-soupsessionasync-default-to-no-tls-certificate-verification/
NOTE: https://gitlab.gnome.org/GNOME/grilo/-/issues/146
@@ -2116,22 +2131,22 @@ CVE-2021-39170
RESERVED
CVE-2021-39169
RESERVED
-CVE-2021-39168
- RESERVED
-CVE-2021-39167
- RESERVED
+CVE-2021-39168 (OpenZepplin is a library for smart contract development. In affected v ...)
+ TODO: check
+CVE-2021-39167 (OpenZepplin is a library for smart contract development. In affected v ...)
+ TODO: check
CVE-2021-39166
RESERVED
-CVE-2021-39165
- RESERVED
+CVE-2021-39165 (Cachet is an open source status page. With Cachet prior to and includi ...)
+ TODO: check
CVE-2021-39164
RESERVED
CVE-2021-39163
RESERVED
CVE-2021-39162
RESERVED
-CVE-2021-39161
- RESERVED
+CVE-2021-39161 (Discourse is an open source platform for community discussion. In affe ...)
+ TODO: check
CVE-2021-39160 (nbgitpuller is a Jupyter server extension to sync a git repository one ...)
TODO: check
CVE-2021-39159 (BinderHub is a kubernetes-based cloud service that allows users to sha ...)
@@ -5405,8 +5420,8 @@ CVE-2021-37717
RESERVED
CVE-2021-37716
RESERVED
-CVE-2021-37715
- RESERVED
+CVE-2021-37715 (A remote cross-site scripting (XSS) vulnerability was discovered in Ar ...)
+ TODO: check
CVE-2021-3671
RESERVED
CVE-2021-3670
@@ -24378,8 +24393,8 @@ CVE-2021-29864
RESERVED
CVE-2021-29863
RESERVED
-CVE-2021-29862
- RESERVED
+CVE-2021-29862 (IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user ...)
+ TODO: check
CVE-2021-29861
RESERVED
CVE-2021-29860
@@ -24500,8 +24515,8 @@ CVE-2021-29803 (IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cro
NOT-FOR-US: IBM
CVE-2021-29802 (IBM Security SOAR performs an operation at a privilege level that is h ...)
NOT-FOR-US: IBM
-CVE-2021-29801
- RESERVED
+CVE-2021-29801 (IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user ...)
+ TODO: check
CVE-2021-29800
RESERVED
CVE-2021-29799
@@ -24558,8 +24573,8 @@ CVE-2021-29774
RESERVED
CVE-2021-29773
RESERVED
-CVE-2021-29772
- RESERVED
+CVE-2021-29772 (IBM API Connect 5.0.0.0 through 5.0.8.11 could allow a user to potenti ...)
+ TODO: check
CVE-2021-29771
RESERVED
CVE-2021-29770 (IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4. ...)
@@ -24648,8 +24663,8 @@ CVE-2021-29729
RESERVED
CVE-2021-29728
RESERVED
-CVE-2021-29727
- RESERVED
+CVE-2021-29727 (IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a v ...)
+ TODO: check
CVE-2021-29726
RESERVED
CVE-2021-29725 (IBM Secure External Authentication Server 2.4.3.2, 6.0.1, 6.0.2 and IB ...)
@@ -24672,8 +24687,8 @@ CVE-2021-29717
RESERVED
CVE-2021-29716
RESERVED
-CVE-2021-29715
- RESERVED
+CVE-2021-29715 (IBM API Connect 5.0.0.0 through 5.0.8.11 could alllow a remote user to ...)
+ TODO: check
CVE-2021-29714 (IBM Content Navigator 3.0.CD could allow a malicious user to cause a d ...)
NOT-FOR-US: IBM
CVE-2021-29713
@@ -76551,8 +76566,8 @@ CVE-2020-20677
RESERVED
CVE-2020-20676
RESERVED
-CVE-2020-20675
- RESERVED
+CVE-2020-20675 (Nuishop v2.3 contains a SQL injection vulnerability in /goods/getGoods ...)
+ TODO: check
CVE-2020-20674
RESERVED
CVE-2020-20673
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/022c5de0077073abb7ab181a4f73148cba38370e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/022c5de0077073abb7ab181a4f73148cba38370e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210827/8c69b893/attachment.htm>
More information about the debian-security-tracker-commits
mailing list