[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue May 18 09:10:34 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0eb6cd18 by security tracker role at 2021-05-18T08:10:27+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,253 @@
+CVE-2021-33167
+ RESERVED
+CVE-2021-33166
+ RESERVED
+CVE-2021-33165
+ RESERVED
+CVE-2021-33164
+ RESERVED
+CVE-2021-33163
+ RESERVED
+CVE-2021-33162
+ RESERVED
+CVE-2021-33161
+ RESERVED
+CVE-2021-33160
+ RESERVED
+CVE-2021-33159
+ RESERVED
+CVE-2021-33158
+ RESERVED
+CVE-2021-33157
+ RESERVED
+CVE-2021-33156
+ RESERVED
+CVE-2021-33155
+ RESERVED
+CVE-2021-33154
+ RESERVED
+CVE-2021-33153
+ RESERVED
+CVE-2021-33152
+ RESERVED
+CVE-2021-33151
+ RESERVED
+CVE-2021-33150
+ RESERVED
+CVE-2021-33149
+ RESERVED
+CVE-2021-33148
+ RESERVED
+CVE-2021-33147
+ RESERVED
+CVE-2021-33146
+ RESERVED
+CVE-2021-33145
+ RESERVED
+CVE-2021-33144
+ RESERVED
+CVE-2021-33143
+ RESERVED
+CVE-2021-33142
+ RESERVED
+CVE-2021-33141
+ RESERVED
+CVE-2021-33140
+ RESERVED
+CVE-2021-33139
+ RESERVED
+CVE-2021-33138
+ RESERVED
+CVE-2021-33137
+ RESERVED
+CVE-2021-33136
+ RESERVED
+CVE-2021-33135
+ RESERVED
+CVE-2021-33134
+ RESERVED
+CVE-2021-33133
+ RESERVED
+CVE-2021-33132
+ RESERVED
+CVE-2021-33131
+ RESERVED
+CVE-2021-33130
+ RESERVED
+CVE-2021-33129
+ RESERVED
+CVE-2021-33128
+ RESERVED
+CVE-2021-33127
+ RESERVED
+CVE-2021-33126
+ RESERVED
+CVE-2021-33125
+ RESERVED
+CVE-2021-33124
+ RESERVED
+CVE-2021-33123
+ RESERVED
+CVE-2021-33122
+ RESERVED
+CVE-2021-33121
+ RESERVED
+CVE-2021-33120
+ RESERVED
+CVE-2021-33119
+ RESERVED
+CVE-2021-33118
+ RESERVED
+CVE-2021-33117
+ RESERVED
+CVE-2021-33116
+ RESERVED
+CVE-2021-33115
+ RESERVED
+CVE-2021-33114
+ RESERVED
+CVE-2021-33113
+ RESERVED
+CVE-2021-33112
+ RESERVED
+CVE-2021-33111
+ RESERVED
+CVE-2021-33110
+ RESERVED
+CVE-2021-33109
+ RESERVED
+CVE-2021-33108
+ RESERVED
+CVE-2021-33107
+ RESERVED
+CVE-2021-33106
+ RESERVED
+CVE-2021-33105
+ RESERVED
+CVE-2021-33104
+ RESERVED
+CVE-2021-33103
+ RESERVED
+CVE-2021-33102
+ RESERVED
+CVE-2021-33101
+ RESERVED
+CVE-2021-33100
+ RESERVED
+CVE-2021-33099
+ RESERVED
+CVE-2021-33098
+ RESERVED
+CVE-2021-33097
+ RESERVED
+CVE-2021-33096
+ RESERVED
+CVE-2021-33095
+ RESERVED
+CVE-2021-33094
+ RESERVED
+CVE-2021-33093
+ RESERVED
+CVE-2021-33092
+ RESERVED
+CVE-2021-33091
+ RESERVED
+CVE-2021-33090
+ RESERVED
+CVE-2021-33089
+ RESERVED
+CVE-2021-33088
+ RESERVED
+CVE-2021-33087
+ RESERVED
+CVE-2021-33086
+ RESERVED
+CVE-2021-33085
+ RESERVED
+CVE-2021-33084
+ RESERVED
+CVE-2021-33083
+ RESERVED
+CVE-2021-33082
+ RESERVED
+CVE-2021-33081
+ RESERVED
+CVE-2021-33080
+ RESERVED
+CVE-2021-33079
+ RESERVED
+CVE-2021-33078
+ RESERVED
+CVE-2021-33077
+ RESERVED
+CVE-2021-33076
+ RESERVED
+CVE-2021-33075
+ RESERVED
+CVE-2021-33074
+ RESERVED
+CVE-2021-33073
+ RESERVED
+CVE-2021-33072
+ RESERVED
+CVE-2021-33071
+ RESERVED
+CVE-2021-33070
+ RESERVED
+CVE-2021-33069
+ RESERVED
+CVE-2021-33068
+ RESERVED
+CVE-2021-33067
+ RESERVED
+CVE-2021-33066
+ RESERVED
+CVE-2021-33065
+ RESERVED
+CVE-2021-33064
+ RESERVED
+CVE-2021-33063
+ RESERVED
+CVE-2021-33062
+ RESERVED
+CVE-2021-33061
+ RESERVED
+CVE-2021-33060
+ RESERVED
+CVE-2021-33059
+ RESERVED
+CVE-2021-33058
+ RESERVED
+CVE-2021-33057
+ RESERVED
+CVE-2021-33056
+ RESERVED
+CVE-2021-33055
+ RESERVED
+CVE-2021-33054
+ RESERVED
+CVE-2021-33053
+ RESERVED
+CVE-2021-33052
+ RESERVED
+CVE-2021-33051
+ RESERVED
+CVE-2021-33050
+ RESERVED
+CVE-2021-33049
+ RESERVED
+CVE-2021-33048
+ RESERVED
+CVE-2021-33047
+ RESERVED
+CVE-2021-33046
+ RESERVED
+CVE-2021-33045
+ RESERVED
+CVE-2021-33044
+ RESERVED
+CVE-2020-36363
+ RESERVED
CVE-2021-3554
RESERVED
CVE-2021-3553
@@ -256,6 +506,7 @@ CVE-2021-32923
CVE-2021-32922
RESERVED
CVE-2021-32921 (An issue was discovered in Prosody before 0.11.9. It does not use a co ...)
+ {DSA-4916-1}
- prosody 0.11.9-1 (bug #988668)
NOTE: https://www.openwall.com/lists/oss-security/2021/05/13/1
NOTE: https://prosody.im/security/advisory_20210512.txt
@@ -263,6 +514,7 @@ CVE-2021-32921 (An issue was discovered in Prosody before 0.11.9. It does not us
NOTE: https://hg.prosody.im/trunk/rev/13b84682518e
NOTE: https://hg.prosody.im/trunk/rev/6f56170ea986
CVE-2021-32920 (Prosody before 0.11.9 allows Uncontrolled CPU Consumption via a flood ...)
+ {DSA-4916-1}
- prosody 0.11.9-1 (bug #988668)
NOTE: https://www.openwall.com/lists/oss-security/2021/05/13/1
NOTE: https://prosody.im/security/advisory_20210512.txt
@@ -270,12 +522,14 @@ CVE-2021-32920 (Prosody before 0.11.9 allows Uncontrolled CPU Consumption via a
NOTE: https://hg.prosody.im/trunk/rev/5a484bd050a7
NOTE: https://hg.prosody.im/trunk/rev/aaf9c6b6d18d
CVE-2021-32919 (An issue was discovered in Prosody before 0.11.9. The undocumented dia ...)
+ {DSA-4916-1}
- prosody 0.11.9-1 (bug #988668)
NOTE: https://www.openwall.com/lists/oss-security/2021/05/13/1
NOTE: https://prosody.im/security/advisory_20210512.txt
NOTE: https://hg.prosody.im/trunk/rev/6be890ca492e
NOTE: https://hg.prosody.im/trunk/rev/d0e9ffccdef9
CVE-2021-32918 (An issue was discovered in Prosody before 0.11.9. Default settings are ...)
+ {DSA-4916-1}
- prosody 0.11.9-1 (bug #988668)
NOTE: https://www.openwall.com/lists/oss-security/2021/05/13/1
NOTE: https://prosody.im/security/advisory_20210512.txt
@@ -286,6 +540,7 @@ CVE-2021-32918 (An issue was discovered in Prosody before 0.11.9. Default settin
NOTE: https://hg.prosody.im/trunk/rev/1937b3c3efb5
NOTE: https://hg.prosody.im/trunk/rev/3413fea9e6db
CVE-2021-32917 (An issue was discovered in Prosody before 0.11.9. The proxy65 componen ...)
+ {DSA-4916-1}
- prosody 0.11.9-1 (bug #988668)
NOTE: https://www.openwall.com/lists/oss-security/2021/05/13/1
NOTE: https://prosody.im/security/advisory_20210512.txt
@@ -878,8 +1133,8 @@ CVE-2021-32624
RESERVED
CVE-2021-32623
RESERVED
-CVE-2021-32622
- RESERVED
+CVE-2021-32622 (Matrix-React-SDK is a react-based SDK for inserting a Matrix chat/voip ...)
+ TODO: check
CVE-2021-32621
RESERVED
CVE-2021-32620
@@ -5749,14 +6004,17 @@ CVE-2021-30521
RESERVED
CVE-2021-30520
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30519
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30518
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30517
@@ -5765,46 +6023,57 @@ CVE-2021-30517
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30516
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30515
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30514
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30513
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30512
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30511
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30510
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30509
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30508
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30507
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30506
RESERVED
+ {DSA-4917-1}
- chromium 90.0.4430.212-1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-30505
@@ -13222,7 +13491,7 @@ CVE-2021-27386 (A vulnerability has been identified in SIMATIC HMI Comfort Outdo
NOT-FOR-US: Siemens
CVE-2021-27385 (A remote attacker could send specially crafted packets to a SmartVNC d ...)
NOT-FOR-US: Siemens
-CVE-2021-27384 (A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Pan ...)
+CVE-2021-27384 (SmartVNC has an out-of-bounds memory access vulnerability in the devic ...)
NOT-FOR-US: Siemens
CVE-2021-27383 (SmartVNC has a heap allocation leak vulnerability in the server Tight ...)
NOT-FOR-US: Siemens
@@ -17562,7 +17831,7 @@ CVE-2021-25663 (A vulnerability has been identified in Nucleus 4 (All versions &
NOT-FOR-US: Nucleus (Siemens)
CVE-2021-25662 (SmartVNC client fails to handle an exception properly if the program e ...)
NOT-FOR-US: Siemens
-CVE-2021-25661 (A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Pan ...)
+CVE-2021-25661 (SmartVNC has an out-of-bounds memory access vulnerability that could b ...)
NOT-FOR-US: Siemens
CVE-2021-25660 (A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Pan ...)
NOT-FOR-US: Siemens
@@ -23141,6 +23410,7 @@ CVE-2021-3052
RESERVED
CVE-2021-3051
RESERVED
+ {DSA-4917-1}
CVE-2021-3050
RESERVED
CVE-2021-3049
@@ -50089,8 +50359,8 @@ CVE-2020-24757
RESERVED
CVE-2020-24756
RESERVED
-CVE-2020-24755
- RESERVED
+CVE-2020-24755 (In Ubiquiti UniFi Video v3.10.13, when the executable starts, its firs ...)
+ TODO: check
CVE-2020-24754
RESERVED
CVE-2020-24753 (A memory corruption vulnerability in Objective Open CBOR Run-time (ooc ...)
@@ -56110,42 +56380,42 @@ CVE-2020-21846
RESERVED
CVE-2020-21845 (Codoforum 4.8.3 allows HTML Injection in the 'admin dashboard Manage u ...)
NOT-FOR-US: Codoforum
-CVE-2020-21844
- RESERVED
-CVE-2020-21843
- RESERVED
-CVE-2020-21842
- RESERVED
-CVE-2020-21841
- RESERVED
-CVE-2020-21840
- RESERVED
-CVE-2020-21839
- RESERVED
-CVE-2020-21838
- RESERVED
+CVE-2020-21844 (GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: ...)
+ TODO: check
+CVE-2020-21843 (A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 ...)
+ TODO: check
+CVE-2020-21842 (A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 ...)
+ TODO: check
+CVE-2020-21841 (A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 ...)
+ TODO: check
+CVE-2020-21840 (A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 ...)
+ TODO: check
+CVE-2020-21839 (An issue was discovered in GNU LibreDWG 0.10. Crafted input will lead ...)
+ TODO: check
+CVE-2020-21838 (A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 ...)
+ TODO: check
CVE-2020-21837
RESERVED
-CVE-2020-21836
- RESERVED
-CVE-2020-21835
- RESERVED
-CVE-2020-21834
- RESERVED
-CVE-2020-21833
- RESERVED
-CVE-2020-21832
- RESERVED
-CVE-2020-21831
- RESERVED
-CVE-2020-21830
- RESERVED
+CVE-2020-21836 (A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 ...)
+ TODO: check
+CVE-2020-21835 (A null pointer deference issue exists in GNU LibreDWG 0.10 via read_20 ...)
+ TODO: check
+CVE-2020-21834 (A null pointer deference issue exists in GNU LibreDWG 0.10 via get_bmp ...)
+ TODO: check
+CVE-2020-21833 (A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 ...)
+ TODO: check
+CVE-2020-21832 (A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 ...)
+ TODO: check
+CVE-2020-21831 (A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 ...)
+ TODO: check
+CVE-2020-21830 (A heap based buffer overflow vulneraibility exists in GNU LibreDWG 0.1 ...)
+ TODO: check
CVE-2020-21829
RESERVED
CVE-2020-21828
RESERVED
-CVE-2020-21827
- RESERVED
+CVE-2020-21827 (A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 ...)
+ TODO: check
CVE-2020-21826
RESERVED
CVE-2020-21825
@@ -63422,16 +63692,16 @@ CVE-2020-18200
RESERVED
CVE-2020-18199
RESERVED
-CVE-2020-18198
- RESERVED
+CVE-2020-18198 (Cross Site Request Forgery (CSRF) in Pluck CMS v4.7.9 allows remote at ...)
+ TODO: check
CVE-2020-18197
RESERVED
CVE-2020-18196
RESERVED
-CVE-2020-18195
- RESERVED
-CVE-2020-18194
- RESERVED
+CVE-2020-18195 (Cross Site Request Forgery (CSRF) in Pluck CMS v4.7.9 allows remote at ...)
+ TODO: check
+CVE-2020-18194 (Cross Site Scripting (XSS) in emlog v6.0.0 allows remote attackers to ...)
+ TODO: check
CVE-2020-18193
RESERVED
CVE-2020-18192
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0eb6cd186d60edaf61c5ba34d39c65fd0ab9ea47
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0eb6cd186d60edaf61c5ba34d39c65fd0ab9ea47
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210518/b020253f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list