[Git][security-tracker-team/security-tracker][master] CVE-2021-35515, CVE-2021-35516, CVE-2021-35517, CVE-2021-36090

Henri Salo (@hsalo-guest) gitlab at salsa.debian.org
Tue Jul 13 08:47:06 BST 2021 


Henri Salo pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8015d59e by Henri Salo at 2021-07-13T10:46:51+03:00
CVE-2021-35515, CVE-2021-35516, CVE-2021-35517, CVE-2021-36090

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1310,6 +1310,8 @@ CVE-2021-3632
 	NOT-FOR-US: Keycloak
 CVE-2021-36090
 	RESERVED
+	- libcommons-compress-java <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2021/07/13/4
 CVE-2020-36416 (A stored cross scripting (XSS) vulnerability in CMS Made Simple 2.2.14 ...)
 	NOT-FOR-US: CMS Made Simple
 CVE-2020-36415 (A stored cross scripting (XSS) vulnerability in CMS Made Simple 2.2.14 ...)
@@ -2640,10 +2642,16 @@ CVE-2021-35518
 	RESERVED
 CVE-2021-35517
 	RESERVED
+	- libcommons-compress-java <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2021/07/13/3
 CVE-2021-35516
 	RESERVED
+	- libcommons-compress-java <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2021/07/13/2
 CVE-2021-35515
 	RESERVED
+	- libcommons-compress-java <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2021/07/13/1
 CVE-2021-35514 (Narou (aka Narou.rb) before 3.8.0 allows Ruby Code Injection via the t ...)
 	NOT-FOR-US: Narou
 CVE-2021-35513 (Mermaid before 8.11.0 allows XSS when the antiscript feature is used. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8015d59e114d9e9e59677fa98c3dddfe65b00ed2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8015d59e114d9e9e59677fa98c3dddfe65b00ed2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210713/d05ec32b/attachment.htm>

More information about the debian-security-tracker-commits mailing list