[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Dec 11 08:10:28 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a2dcd266 by security tracker role at 2021-12-11T08:10:19+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,109 @@
+CVE-2022-21832
+ RESERVED
+CVE-2022-21831
+ RESERVED
+CVE-2022-21830
+ RESERVED
+CVE-2022-21829
+ RESERVED
+CVE-2022-21828
+ RESERVED
+CVE-2022-21827
+ RESERVED
+CVE-2022-21826
+ RESERVED
+CVE-2022-21825
+ RESERVED
+CVE-2022-21824
+ RESERVED
+CVE-2022-21823
+ RESERVED
+CVE-2021-44831
+ RESERVED
+CVE-2021-44830
+ RESERVED
+CVE-2021-44829
+ RESERVED
+CVE-2021-44828
+ RESERVED
+CVE-2021-44827
+ RESERVED
+CVE-2021-44826
+ RESERVED
+CVE-2021-44825
+ RESERVED
+CVE-2021-44824
+ RESERVED
+CVE-2021-44823
+ RESERVED
+CVE-2021-44822
+ RESERVED
+CVE-2021-44821
+ RESERVED
+CVE-2021-44820
+ RESERVED
+CVE-2021-44819
+ RESERVED
+CVE-2021-44818
+ RESERVED
+CVE-2021-44817
+ RESERVED
+CVE-2021-44816
+ RESERVED
+CVE-2021-44815
+ RESERVED
+CVE-2021-44814
+ RESERVED
+CVE-2021-44813
+ RESERVED
+CVE-2021-44812
+ RESERVED
+CVE-2021-44811
+ RESERVED
+CVE-2021-44810
+ RESERVED
+CVE-2021-44809
+ RESERVED
+CVE-2021-44808
+ RESERVED
+CVE-2021-44807
+ RESERVED
+CVE-2021-44806
+ RESERVED
+CVE-2021-44805
+ RESERVED
+CVE-2021-44804
+ RESERVED
+CVE-2021-44803
+ RESERVED
+CVE-2021-44802
+ RESERVED
+CVE-2021-44801
+ RESERVED
+CVE-2021-44800
+ RESERVED
+CVE-2021-44799
+ RESERVED
+CVE-2021-44798
+ RESERVED
+CVE-2021-44797
+ RESERVED
+CVE-2021-44796
+ RESERVED
+CVE-2021-4102
+ RESERVED
+CVE-2021-4101
+ RESERVED
+CVE-2021-4100
+ RESERVED
+CVE-2021-4099
+ RESERVED
+CVE-2021-4098
+ RESERVED
+CVE-2021-4097
+ RESERVED
+CVE-2021-4096
+ RESERVED
CVE-2022-21822
RESERVED
CVE-2022-21821
@@ -116,8 +222,8 @@ CVE-2021-44780
RESERVED
CVE-2021-44764
RESERVED
-CVE-2021-4089
- RESERVED
+CVE-2021-4089 (snipe-it is vulnerable to Improper Access Control ...)
+ TODO: check
CVE-2021-37408
RESERVED
CVE-2021-31565
@@ -2836,8 +2942,8 @@ CVE-2021-43817
RESERVED
CVE-2021-43816
RESERVED
-CVE-2021-43815
- RESERVED
+CVE-2021-43815 (Grafana is an open-source platform for monitoring and observability. G ...)
+ TODO: check
CVE-2021-43814
RESERVED
CVE-2021-43813 (Grafana is an open-source platform for monitoring and observability. G ...)
@@ -12098,8 +12204,8 @@ CVE-2021-41244 (Grafana is an open-source platform for monitoring and observabil
- grafana <removed>
CVE-2021-41243 (There is a Potential Zip Slip Vulnerability and OS Command Injection V ...)
NOT-FOR-US: baserCMS
-CVE-2021-41242
- RESERVED
+CVE-2021-41242 (OpenOlat is a web-basedlearning management system. A path traversal vu ...)
+ TODO: check
CVE-2021-41241
RESERVED
CVE-2021-41240
@@ -48906,8 +49012,8 @@ CVE-2021-26342
RESERVED
CVE-2021-26341
RESERVED
-CVE-2021-26340
- RESERVED
+CVE-2021-26340 (A malicious hypervisor in conjunction with an unprivileged attacker pr ...)
+ TODO: check
CVE-2021-26339
RESERVED
CVE-2021-26338 (Improper access controls in System Management Unit (SMU) may allow for ...)
@@ -55384,8 +55490,8 @@ CVE-2021-23702
RESERVED
CVE-2021-23701
RESERVED
-CVE-2021-23700
- RESERVED
+CVE-2021-23700 (All versions of package merge-deep2 are vulnerable to Prototype Pollut ...)
+ TODO: check
CVE-2021-23699
RESERVED
CVE-2021-23698
@@ -55458,8 +55564,8 @@ CVE-2021-23665
RESERVED
CVE-2021-23664
RESERVED
-CVE-2021-23663
- RESERVED
+CVE-2021-23663 (All versions of package sey are vulnerable to Prototype Pollution via ...)
+ TODO: check
CVE-2021-23662
RESERVED
CVE-2021-23661
@@ -55506,8 +55612,8 @@ CVE-2021-23641
RESERVED
CVE-2021-23640
RESERVED
-CVE-2021-23639
- RESERVED
+CVE-2021-23639 (The package md-to-pdf before 5.0.0 are vulnerable to Remote Code Execu ...)
+ TODO: check
CVE-2021-23638
RESERVED
CVE-2021-23637
@@ -55662,8 +55768,8 @@ CVE-2021-23563
RESERVED
CVE-2021-23562 (This affects the package plupload before 2.3.9. A file name containing ...)
NOT-FOR-US: Node plupload
-CVE-2021-23561
- RESERVED
+CVE-2021-23561 (All versions of package comb are vulnerable to Prototype Pollution via ...)
+ TODO: check
CVE-2021-23560
RESERVED
CVE-2021-23559
@@ -55859,8 +55965,8 @@ CVE-2021-23465
RESERVED
CVE-2021-23464
RESERVED
-CVE-2021-23463
- RESERVED
+CVE-2021-23463 (The package com.h2database:h2 from 0 and before 2.0.202 are vulnerable ...)
+ TODO: check
CVE-2021-23462
RESERVED
CVE-2021-23461
@@ -111768,8 +111874,8 @@ CVE-2020-12892 (An untrusted search path in AMD Radeon settings Installer may le
CVE-2020-12891
RESERVED
NOT-FOR-US: AMD
-CVE-2020-12890
- RESERVED
+CVE-2020-12890 (Improper handling of pointers in the System Management Mode (SMM) hand ...)
+ TODO: check
CVE-2020-12889 (MISP MISP-maltego 1.4.4 incorrectly shares a MISP connection across us ...)
NOT-FOR-US: MISP
CVE-2020-12888 (The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles atte ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2dcd2667da43b5800bf367ad7f2b6005e4307fc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2dcd2667da43b5800bf367ad7f2b6005e4307fc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211211/43993b4f/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list