[Git][security-tracker-team/security-tracker][master] automatic update

Sun Jun 6 21:10:35 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d2b160e3 by security tracker role at 2021-06-06T20:10:27+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,21 @@
+CVE-2021-33887
+	RESERVED
+CVE-2021-33886
+	RESERVED
+CVE-2021-33885
+	RESERVED
+CVE-2021-33884
+	RESERVED
+CVE-2021-33883
+	RESERVED
+CVE-2021-33882
+	RESERVED
+CVE-2021-33881 (On NXP MIFARE Ultralight and NTAG cards, an attacker can interrupt a w ...)
+	TODO: check
+CVE-2021-33880 (The aaugustin websockets library before 9.1 for Python has an Observab ...)
+	TODO: check
+CVE-2021-33879
+	RESERVED
 CVE-2021-33878
 	RESERVED
 CVE-2021-33877
@@ -3788,8 +3806,8 @@ CVE-2021-32200
 	RESERVED
 CVE-2021-32199
 	RESERVED
-CVE-2021-32198
-	RESERVED
+CVE-2021-32198 (EmTec ZOC before 8.02.2 allows \e[201~ pastes. ...)
+	TODO: check
 CVE-2021-32197
 	RESERVED
 CVE-2021-32196
@@ -5184,8 +5202,8 @@ CVE-2021-31703 (Frontier ichris through 5.18 allows users to upload malicious ex
 	NOT-FOR-US: Frontier ichris
 CVE-2021-31702 (Frontier ichris through 5.18 mishandles making a DNS request for the h ...)
 	NOT-FOR-US: Frontier ichris
-CVE-2021-31701
-	RESERVED
+CVE-2021-31701 (Mintty before 3.4.7 mishandles Bracketed Paste Mode. ...)
+	TODO: check
 CVE-2021-31700
 	RESERVED
 CVE-2021-31699
@@ -48732,6 +48750,7 @@ CVE-2020-26249 (Red Discord Bot Dashboard is an easy-to-use interactive web dash
 CVE-2020-26248 (In the PrestaShop module "productcomments" before version 4.2.1, an at ...)
 	NOT-FOR-US: PrestaShop module
 CVE-2020-26247 (Nokogiri is a Rubygem providing HTML, XML, SAX, and Reader parsers wit ...)
+	{DLA-2678-1}
 	- ruby-nokogiri 1.11.1+dfsg-1 (low; bug #978967)
 	[buster] - ruby-nokogiri <no-dsa> (Minor issue)
 	NOTE: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-vr8q-g5c7-m54m



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2b160e3dc8d5815afc3d0982f0d3d6104325aca

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2b160e3dc8d5815afc3d0982f0d3d6104325aca
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210606/4755a3f5/attachment.htm>
