[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
carnil at debian.org
Thu Feb 4 20:10:34 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4a422061 by security tracker role at 2021-02-04T20:10:26+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,25 @@
+CVE-2021-26697
+ RESERVED
+CVE-2021-26696
+ RESERVED
+CVE-2021-26695
+ RESERVED
+CVE-2021-26694
+ RESERVED
+CVE-2021-26693
+ RESERVED
+CVE-2021-26692
+ RESERVED
+CVE-2021-26691
+ RESERVED
+CVE-2021-26690
+ RESERVED
+CVE-2021-26249
+ RESERVED
+CVE-2021-23202
+ RESERVED
+CVE-2021-23141
+ RESERVED
CVE-2021-3401 (Bitcoin Core before 0.19.0 might allow remote attackers to execute arb ...)
- bitcoin 0.20.1~dfsg-1
CVE-2021-3400
@@ -21755,8 +21777,8 @@ CVE-2021-1391
RESERVED
CVE-2021-1390
RESERVED
-CVE-2021-1389
- RESERVED
+CVE-2021-1389 (A vulnerability in the IPv6 traffic processing of Cisco IOS XR Softwar ...)
+ TODO: check
CVE-2021-1388
RESERVED
CVE-2021-1387
@@ -21793,8 +21815,8 @@ CVE-2021-1372
RESERVED
CVE-2021-1371
RESERVED
-CVE-2021-1370
- RESERVED
+CVE-2021-1370 (A vulnerability in a CLI command of Cisco IOS XR Software for the Cisc ...)
+ TODO: check
CVE-2021-1369
RESERVED
CVE-2021-1368
@@ -21825,8 +21847,8 @@ CVE-2021-1356
RESERVED
CVE-2021-1355 (Multiple vulnerabilities in Cisco Unified Communications Manager IM &a ...)
NOT-FOR-US: Cisco
-CVE-2021-1354
- RESERVED
+CVE-2021-1354 (A vulnerability in the certificate registration process of Cisco Unifi ...)
+ TODO: check
CVE-2021-1353 (A vulnerability in the IPv4 protocol handling of Cisco StarOS could al ...)
NOT-FOR-US: Cisco
CVE-2021-1352
@@ -21837,78 +21859,78 @@ CVE-2021-1350 (A vulnerability in the web UI of Cisco Umbrella could allow an un
NOT-FOR-US: Cisco
CVE-2021-1349 (A vulnerability in the web-based management interface of Cisco SD-WAN ...)
NOT-FOR-US: Cisco
-CVE-2021-1348
- RESERVED
-CVE-2021-1347
- RESERVED
-CVE-2021-1346
- RESERVED
-CVE-2021-1345
- RESERVED
-CVE-2021-1344
- RESERVED
-CVE-2021-1343
- RESERVED
-CVE-2021-1342
- RESERVED
-CVE-2021-1341
- RESERVED
-CVE-2021-1340
- RESERVED
-CVE-2021-1339
- RESERVED
-CVE-2021-1338
- RESERVED
-CVE-2021-1337
- RESERVED
-CVE-2021-1336
- RESERVED
-CVE-2021-1335
- RESERVED
-CVE-2021-1334
- RESERVED
-CVE-2021-1333
- RESERVED
-CVE-2021-1332
- RESERVED
-CVE-2021-1331
- RESERVED
-CVE-2021-1330
- RESERVED
-CVE-2021-1329
- RESERVED
-CVE-2021-1328
- RESERVED
-CVE-2021-1327
- RESERVED
-CVE-2021-1326
- RESERVED
-CVE-2021-1325
- RESERVED
-CVE-2021-1324
- RESERVED
-CVE-2021-1323
- RESERVED
-CVE-2021-1322
- RESERVED
-CVE-2021-1321
- RESERVED
-CVE-2021-1320
- RESERVED
-CVE-2021-1319
- RESERVED
-CVE-2021-1318
- RESERVED
-CVE-2021-1317
- RESERVED
-CVE-2021-1316
- RESERVED
-CVE-2021-1315
- RESERVED
-CVE-2021-1314
- RESERVED
-CVE-2021-1313
- RESERVED
+CVE-2021-1348 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1347 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1346 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1345 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1344 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1343 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1342 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1341 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1340 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1339 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1338 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1337 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1336 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1335 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1334 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1333 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1332 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1331 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1330 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1329 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1328 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1327 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1326 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1325 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1324 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1323 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1322 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1321 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1320 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1319 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1318 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1317 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1316 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1315 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1314 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1313 (Multiple vulnerabilities in the ingress packet processing function of ...)
+ TODO: check
CVE-2021-1312 (A vulnerability in the system resource management of Cisco Elastic Ser ...)
NOT-FOR-US: Cisco
CVE-2021-1311 (A vulnerability in the reclaim host role feature of Cisco Webex Meetin ...)
@@ -21939,26 +21961,26 @@ CVE-2021-1299 (Multiple vulnerabilities in Cisco SD-WAN products could allow an
NOT-FOR-US: Cisco
CVE-2021-1298 (Multiple vulnerabilities in Cisco SD-WAN products could allow an authe ...)
NOT-FOR-US: Cisco
-CVE-2021-1297
- RESERVED
-CVE-2021-1296
- RESERVED
-CVE-2021-1295
- RESERVED
-CVE-2021-1294
- RESERVED
-CVE-2021-1293
- RESERVED
-CVE-2021-1292
- RESERVED
-CVE-2021-1291
- RESERVED
-CVE-2021-1290
- RESERVED
-CVE-2021-1289
- RESERVED
-CVE-2021-1288
- RESERVED
+CVE-2021-1297 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1296 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1295 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1294 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1293 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1292 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1291 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1290 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1289 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+ TODO: check
+CVE-2021-1288 (Multiple vulnerabilities in the ingress packet processing function of ...)
+ TODO: check
CVE-2021-1287
RESERVED
CVE-2021-1286 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
@@ -21997,12 +22019,12 @@ CVE-2021-1270 (Multiple vulnerabilities in the web-based management interface of
NOT-FOR-US: Cisco
CVE-2021-1269 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
NOT-FOR-US: Cisco
-CVE-2021-1268
- RESERVED
+CVE-2021-1268 (A vulnerability in the IPv6 protocol handling of the management interf ...)
+ TODO: check
CVE-2021-1267 (A vulnerability in the dashboard widget of Cisco Firepower Management ...)
NOT-FOR-US: Cisco
-CVE-2021-1266
- RESERVED
+CVE-2021-1266 (A vulnerability in the REST API of Cisco Managed Services Accelerator ...)
+ TODO: check
CVE-2021-1265 (A vulnerability in the configuration archive functionality of Cisco DN ...)
NOT-FOR-US: Cisco
CVE-2021-1264 (A vulnerability in the Command Runner tool of Cisco DNA Center could a ...)
@@ -22045,10 +22067,10 @@ CVE-2021-1246 (Multiple vulnerabilities in the web-based management interface of
NOT-FOR-US: Cisco
CVE-2021-1245 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
NOT-FOR-US: Cisco
-CVE-2021-1244
- RESERVED
-CVE-2021-1243
- RESERVED
+CVE-2021-1244 (Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 ...)
+ TODO: check
+CVE-2021-1243 (A vulnerability in the Local Packet Transport Services (LPTS) programm ...)
+ TODO: check
CVE-2021-1242 (A vulnerability in Cisco Webex Teams could allow an unauthenticated, r ...)
NOT-FOR-US: Cisco
CVE-2021-1241 (Multiple vulnerabilities in Cisco SD-WAN products could allow an unaut ...)
@@ -22091,8 +22113,8 @@ CVE-2021-1223 (Multiple Cisco products are affected by a vulnerability in the Sn
NOT-FOR-US: Cisco
CVE-2021-1222 (A vulnerability in the web-based management interface of Cisco Smart S ...)
NOT-FOR-US: Cisco
-CVE-2021-1221
- RESERVED
+CVE-2021-1221 (A vulnerability in the user interface of Cisco Webex Meetings and Cisc ...)
+ TODO: check
CVE-2021-1220
RESERVED
CVE-2021-1219 (A vulnerability in Cisco Smart Software Manager Satellite could allow ...)
@@ -22261,8 +22283,8 @@ CVE-2021-1138 (Multiple vulnerabilities in the web UI of Cisco Smart Software Ma
NOT-FOR-US: Cisco
CVE-2021-1137
RESERVED
-CVE-2021-1136
- RESERVED
+CVE-2021-1136 (Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 ...)
+ TODO: check
CVE-2021-1135 (Multiple vulnerabilities in the REST API endpoint of Cisco Data Center ...)
NOT-FOR-US: Cisco
CVE-2021-1134
@@ -22277,8 +22299,8 @@ CVE-2021-1130 (A vulnerability in the web-based management interface of Cisco DN
NOT-FOR-US: Cisco
CVE-2021-1129 (A vulnerability in the authentication for the general purpose APIs imp ...)
NOT-FOR-US: Cisco
-CVE-2021-1128
- RESERVED
+CVE-2021-1128 (A vulnerability in the CLI parser of Cisco IOS XR Software could allow ...)
+ TODO: check
CVE-2021-1127 (A vulnerability in the web-based management interface of Cisco Enterpr ...)
NOT-FOR-US: Cisco
CVE-2021-1126 (A vulnerability in the storage of proxy server credentials of Cisco Fi ...)
@@ -22844,10 +22866,10 @@ CVE-2020-28452 (This affects the package com.softwaremill.akka-http-session:core
NOT-FOR-US: akka-http-session
CVE-2020-28451
RESERVED
-CVE-2020-28450
- RESERVED
-CVE-2020-28449
- RESERVED
+CVE-2020-28450 (This affects all versions of package decal. The vulnerability is in th ...)
+ TODO: check
+CVE-2020-28449 (This affects all versions of package decal. The vulnerability is in th ...)
+ TODO: check
CVE-2020-28448 (This affects the package multi-ini before 2.1.1. It is possible to pol ...)
NOT-FOR-US: Node multi-ini
CVE-2020-28447
@@ -24521,24 +24543,24 @@ CVE-2021-0353 (In kisd, there is a possible memory corruption due to a heap buff
TODO: check
CVE-2021-0352 (In RT regmap driver, there is a possible memory corruption due to type ...)
TODO: check
-CVE-2021-0351
- RESERVED
-CVE-2021-0350
- RESERVED
-CVE-2021-0349
- RESERVED
-CVE-2021-0348
- RESERVED
-CVE-2021-0347
- RESERVED
-CVE-2021-0346
- RESERVED
-CVE-2021-0345
- RESERVED
-CVE-2021-0344
- RESERVED
-CVE-2021-0343
- RESERVED
+CVE-2021-0351 (In wlan driver, there is a possible system crash due to a missing boun ...)
+ TODO: check
+CVE-2021-0350 (In ged, there is a possible system crash due to an improper input vali ...)
+ TODO: check
+CVE-2021-0349 (In display driver, there is a possible memory corruption due to a use ...)
+ TODO: check
+CVE-2021-0348 (In vpu, there is a possible out of bounds write due to a missing bound ...)
+ TODO: check
+CVE-2021-0347 (In ccu, there is a possible out of bounds read due to a missing bounds ...)
+ TODO: check
+CVE-2021-0346 (In vpu, there is a possible out of bounds write due to an incorrect bo ...)
+ TODO: check
+CVE-2021-0345 (In mobile_log_d, there is a possible escalation of privilege due to im ...)
+ TODO: check
+CVE-2021-0344 (In mtkpower, there is a possible memory corruption due to a missing bo ...)
+ TODO: check
+CVE-2021-0343 (In kisd, there is a possible out of bounds write due to a missing boun ...)
+ TODO: check
CVE-2021-0342 (In tun_get_user of tun.c, there is possible memory corruption due to a ...)
- linux 5.7.6-1
[buster] - linux 4.19.131-1
@@ -25859,10 +25881,10 @@ CVE-2020-27875
RESERVED
CVE-2020-27874
RESERVED
-CVE-2020-27873
- RESERVED
-CVE-2020-27872
- RESERVED
+CVE-2020-27873 (This vulnerability allows network-adjacent attackers to disclose sensi ...)
+ TODO: check
+CVE-2020-27872 (This vulnerability allows network-adjacent attackers to bypass authent ...)
+ TODO: check
CVE-2020-27871
RESERVED
CVE-2020-27870
@@ -51239,8 +51261,8 @@ CVE-2020-16196
REJECTED
CVE-2020-16195
RESERVED
-CVE-2020-16194
- RESERVED
+CVE-2020-16194 (An Insecure Direct Object Reference (IDOR) vulnerability was found in ...)
+ TODO: check
CVE-2020-16193 (osTicket before 1.14.3 allows XSS because include/staff/banrule.inc.ph ...)
NOT-FOR-US: osTicket
CVE-2020-16192 (LimeSurvey 4.3.2 allows reflected XSS because application/controllers/ ...)
@@ -82262,8 +82284,8 @@ CVE-2020-5034
RESERVED
CVE-2020-5033
RESERVED
-CVE-2020-5032
- RESERVED
+CVE-2020-5032 (IBM QRadar SIEM 7.3 and 7.4 in some configurations may be vulnerable t ...)
+ TODO: check
CVE-2020-5031
RESERVED
CVE-2020-5030
@@ -82670,14 +82692,14 @@ CVE-2020-4830
RESERVED
CVE-2020-4829 (IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a v ...)
NOT-FOR-US: IBM
-CVE-2020-4828
- RESERVED
-CVE-2020-4827
- RESERVED
-CVE-2020-4826
- RESERVED
-CVE-2020-4825
- RESERVED
+CVE-2020-4828 (IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018. ...)
+ TODO: check
+CVE-2020-4827 (IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018. ...)
+ TODO: check
+CVE-2020-4826 (IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018. ...)
+ TODO: check
+CVE-2020-4825 (IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018. ...)
+ TODO: check
CVE-2020-4824
RESERVED
CVE-2020-4823
@@ -83049,8 +83071,8 @@ CVE-2020-4642 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server)
NOT-FOR-US: IBM
CVE-2020-4641
RESERVED
-CVE-2020-4640
- RESERVED
+CVE-2020-4640 (Certain IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 throu ...)
+ TODO: check
CVE-2020-4639
RESERVED
CVE-2020-4638 (IBM API Connect's API Manager 2018.4.1.0 through 2018.4.1.12 is vulner ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4a4220614ffe347936152447c89574f366ab82e4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4a4220614ffe347936152447c89574f366ab82e4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210204/b2c35844/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list