[Git][security-tracker-team/security-tracker][master] automatic update

Sat Feb 27 20:10:29 GMT 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b4464635 by security tracker role at 2021-02-27T20:10:21+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15637,6 +15637,7 @@ CVE-2021-21332
 CVE-2021-21331
 	RESERVED
 CVE-2021-21330 (aiohttp is an asynchronous HTTP client/server framework for asyncio an ...)
+	{DSA-4864-1}
 	- python-aiohttp 3.7.4-1
 	NOTE: https://github.com/aio-libs/aiohttp/issues/5497
 	NOTE: https://github.com/aio-libs/aiohttp/security/advisories/GHSA-v6wp-4m6f-gcjg
@@ -15751,10 +15752,12 @@ CVE-2021-21287 (MinIO is a High Performance Object Storage released under Apache
 CVE-2021-21286 (AVideo Platform is an open-source Audio and Video platform. It is simi ...)
 	NOT-FOR-US: AVideo Platform
 CVE-2021-21285 (In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in ...)
+	{DSA-4865-1}
 	- docker.io 20.10.3+dfsg1-1
 	NOTE: https://github.com/moby/moby/security/advisories/GHSA-6fj5-m822-rqx8
 	NOTE: https://github.com/moby/moby/commit/420b1d36250f9cfdc561f086f25a213ecb669b6f (v19.03)
 CVE-2021-21284 (In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in ...)
+	{DSA-4865-1}
 	- docker.io 20.10.3+dfsg1-1
 	NOTE: https://github.com/moby/moby/security/advisories/GHSA-7452-xqpj-6rpc
 	NOTE: https://github.com/moby/moby/commit/1342c51d5e809d2994e6f7e490c8d2b3b12c28ae (v19.03)
@@ -56682,6 +56685,7 @@ CVE-2020-15259 (ad-ldap-connector's admin panel before version 5.0.13 does not p
 CVE-2020-15258 (In Wire before 3.20.x, `shell.openExternal` was used without checking  ...)
 	NOT-FOR-US: Wire app
 CVE-2020-15257 (containerd is an industry-standard container runtime and is available  ...)
+	{DSA-4865-1}
 	- containerd 1.4.3~ds1-1
 	- docker.io 20.10.0~rc1+dfsg2-1
 	NOTE: https://github.com/containerd/containerd/security/advisories/GHSA-36xw-fx78-c5r4
@@ -56934,6 +56938,7 @@ CVE-2020-15159 (baserCMS 4.3.6 and earlier is affected by Cross Site Scripting (
 CVE-2020-15158 (In libIEC61850 before version 1.4.3, when a message with COTP message  ...)
 	NOT-FOR-US: libIEC61850
 CVE-2020-15157 (In containerd (an industry-standard container runtime) before version  ...)
+	{DSA-4865-1}
 	- containerd 1.3.2~ds1-2
 	- docker.io 19.03.13+dfsg2-1
 	NOTE: https://www.openwall.com/lists/oss-security/2020/10/15/1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4464635f45c7cce993655b907528ff402021dd1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4464635f45c7cce993655b907528ff402021dd1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210227/f2a621b9/attachment-0001.htm>
