[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Dec 12 08:10:21 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4f4b93a0 by security tracker role at 2021-12-12T08:10:12+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2021-44833 (The CLI 1.0.0 for Amazon AWS OpenSearch has weak permissions for the c ...)
+	TODO: check
+CVE-2021-4103
+	RESERVED
 CVE-2021-44832
 	RESERVED
 CVE-2022-21832
@@ -102,8 +106,8 @@ CVE-2021-4099
 	RESERVED
 CVE-2021-4098
 	RESERVED
-CVE-2021-4097
-	RESERVED
+CVE-2021-4097 (phpservermon is vulnerable to Improper Neutralization of CRLF Sequence ...)
+	TODO: check
 CVE-2021-4096
 	RESERVED
 CVE-2022-21822
@@ -961,9 +965,9 @@ CVE-2021-44517
 	RESERVED
 CVE-2021-44516
 	RESERVED
-CVE-2021-44515
-	RESERVED
-CVE-2021-44514 (ManageEngine's OpUtils 12.5.556 and prior allow access to a few audit  ...)
+CVE-2021-44515 (Zoho ManageEngine Desktop Central is vulnerable to authentication bypa ...)
+	TODO: check
+CVE-2021-44514 (OpUtils in Zoho ManageEngine OpManager 12.5 before 125490 mishandles a ...)
 	NOT-FOR-US: ManageEngine
 CVE-2021-44513 (Insecure creation of temporary directories in tmate-ssh-server 2.3.0 a ...)
 	- tmate-ssh-server <unfixed> (bug #1001225)
@@ -10882,8 +10886,8 @@ CVE-2021-41807
 	RESERVED
 CVE-2021-41806
 	RESERVED
-CVE-2021-41805
-	RESERVED
+CVE-2021-41805 (HashiCorp Consul Enterprise before 1.8.17, 1.9.x before 1.9.11, and 1. ...)
+	TODO: check
 CVE-2021-41804
 	RESERVED
 CVE-2021-41803



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f4b93a0e40ba24be42513fef21ea7fc6d25a18c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f4b93a0e40ba24be42513fef21ea7fc6d25a18c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211212/b0aef6c3/attachment.htm>

More information about the debian-security-tracker-commits mailing list