[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Mon Feb 8 08:10:32 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c961c349 by security tracker role at 2021-02-08T08:10:16+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,27 @@
-CVE-2020-36242
+CVE-2021-26852
 	RESERVED
+CVE-2021-26851
+	RESERVED
+CVE-2021-26850
+	RESERVED
+CVE-2021-26849
+	RESERVED
+CVE-2021-26848
+	RESERVED
+CVE-2021-26847
+	RESERVED
+CVE-2021-26846
+	RESERVED
+CVE-2021-26845
+	RESERVED
+CVE-2021-26844
+	RESERVED
+CVE-2021-26843 (An issue was discovered in sthttpd through 2.27.1. On systems where th ...)
+	TODO: check
+CVE-2020-36243 (The Patient Portal of OpenEMR 5.0.2.1 is affected by a Command Injecti ...)
+	TODO: check
+CVE-2020-36242 (In the cryptography package before 3.3.2 for Python, certain sequences ...)
+	TODO: check
 CVE-2021-21299 [hyper: Multiple Transfer-Encoding headers misinterprets request payload]
 	RESERVED
 	- rust-hyper <unfixed>
@@ -187,8 +209,8 @@ CVE-2021-26756
 	RESERVED
 CVE-2021-26755
 	RESERVED
-CVE-2021-26754
-	RESERVED
+CVE-2021-26754 (wpDataTables before 3.4.1 mishandles order direction for server-side t ...)
+	TODO: check
 CVE-2021-26753
 	RESERVED
 CVE-2021-26752
@@ -6940,8 +6962,8 @@ CVE-2021-3124
 	RESERVED
 CVE-2021-3123
 	RESERVED
-CVE-2021-3122
-	RESERVED
+CVE-2021-3122 (CMCAgent in NCR Command Center Agent 16.3 on Aloha POS/BOH servers per ...)
+	TODO: check
 CVE-2021-3121 (An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unmarsha ...)
 	- golang-gogoprotobuf 1.3.2-1
 	NOTE: https://github.com/gogo/protobuf/commit/b03c65ea87cdc3521ede29f62fe3ce239267c1bc
@@ -10466,8 +10488,8 @@ CVE-2021-22163
 	RESERVED
 CVE-2021-22162
 	RESERVED
-CVE-2021-22161
-	RESERVED
+CVE-2021-22161 (In OpenWrt 19.07.x before 19.07.7, when IPv6 is used, a routing loop c ...)
+	TODO: check
 CVE-2021-22160
 	RESERVED
 CVE-2020-36159 (Veritas Desktop and Laptop Option (DLO) before 9.5 disclosed operation ...)
@@ -25041,6 +25063,7 @@ CVE-2021-0310 (In LazyServiceRegistrar of LazyServiceRegistrar.cpp, there is a p
 CVE-2021-0309 (In onCreate of grantCredentialsPermissionActivity, there is a confused ...)
 	NOT-FOR-US: Android
 CVE-2021-0308 (In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds  ...)
+	{DLA-2549-1}
 	- gdisk 1.0.6-1
 	NOTE: https://sourceforge.net/p/gptfdisk/code/ci/f523bbc0c2437fe259aa3aff5e819e24101aee29
 	NOTE: https://android.googlesource.com/platform/external/gptfdisk/+/6d369451868ce71618144c4f4bd645ae48f0d1c5
@@ -63883,8 +63906,8 @@ CVE-2020-11922
 	RESERVED
 CVE-2020-11921
 	RESERVED
-CVE-2020-11920
-	RESERVED
+CVE-2020-11920 (An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3. ...)
+	TODO: check
 CVE-2020-11919
 	RESERVED
 CVE-2020-11918
@@ -63893,8 +63916,8 @@ CVE-2020-11917
 	RESERVED
 CVE-2020-11916
 	RESERVED
-CVE-2020-11915
-	RESERVED
+CVE-2020-11915 (An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3. ...)
+	TODO: check
 CVE-2019-20786 (handleIncomingPacket in conn.go in Pion DTLS before 1.5.2 lacks a chec ...)
 	NOT-FOR-US: Pion DTLS
 CVE-2020-11914 (The Treck TCP/IP stack before 6.0.1.66 has an ARP Out-of-bounds Read. ...)
@@ -98282,6 +98305,7 @@ CVE-2020-0258 (In stopZygoteLocked of AppZygote.java, there is an insufficient c
 CVE-2020-0257 (In SpecializeCommon of com_android_internal_os_Zygote.cpp, there is a  ...)
 	NOT-FOR-US: Android
 CVE-2020-0256 (In LoadPartitionTable of gpt.cc, there is a possible out of bounds wri ...)
+	{DLA-2549-1}
 	- gdisk 1.0.6-1
 	NOTE: https://sourceforge.net/p/gptfdisk/code/ci/81c8bbee46ad6ebacf72eae70ba5147f376205a4/
 	NOTE: https://android.googlesource.com/platform/external/gptfdisk/+/7ffd0a26064cf25c0922f2bab511e4b4e8149083



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c961c349cb362a0183c87cf8ee3f4c17db97a171

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c961c349cb362a0183c87cf8ee3f4c17db97a171
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210208/abdd1d39/attachment.html>

More information about the debian-security-tracker-commits mailing list