[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Dec 25 20:10:25 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
48e0d5ae by security tracker role at 2021-12-25T20:10:17+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2021-45492
+ RESERVED
+CVE-2021-4168
+ RESERVED
CVE-2021-45491
RESERVED
CVE-2021-45490
@@ -45,16 +49,16 @@ CVE-2021-45476
RESERVED
CVE-2021-45475
RESERVED
-CVE-2021-4166
- RESERVED
+CVE-2021-4166 (vim is vulnerable to Out-of-bounds Read ...)
+ TODO: check
CVE-2021-4165
RESERVED
CVE-2021-4164
RESERVED
CVE-2021-4163
RESERVED
-CVE-2021-4162
- RESERVED
+CVE-2021-4162 (archivy is vulnerable to Cross-Site Request Forgery (CSRF) ...)
+ TODO: check
CVE-2021-45474 (In MediaWiki through 1.37, the Special:ImportFile URI (aka FileImporte ...)
NOT-FOR-US: FileImporter MediaWiki extension
NOTE: https://gerrit.wikimedia.org/r/q/Id1c8910aeac5b452fbabeddab70360765518223e
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48e0d5ae6f787db8a303b2fce8fa9a287f2a21cc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48e0d5ae6f787db8a303b2fce8fa9a287f2a21cc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211225/9b80f4db/attachment.htm>
More information about the debian-security-tracker-commits
mailing list