[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Oct 20 21:10:35 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f1b1a580 by security tracker role at 2021-10-20T20:10:25+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,69 @@
+CVE-2021-42763
+ RESERVED
+CVE-2021-42762 (BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allow ...)
+ TODO: check
+CVE-2021-42761
+ RESERVED
+CVE-2021-42760
+ RESERVED
+CVE-2021-42759
+ RESERVED
+CVE-2021-42758
+ RESERVED
+CVE-2021-42757
+ RESERVED
+CVE-2021-42756
+ RESERVED
+CVE-2021-42755
+ RESERVED
+CVE-2021-42754
+ RESERVED
+CVE-2021-42753
+ RESERVED
+CVE-2021-42752
+ RESERVED
+CVE-2021-42751
+ RESERVED
+CVE-2021-42750
+ RESERVED
+CVE-2021-42749
+ RESERVED
+CVE-2021-42748
+ RESERVED
+CVE-2021-42747
+ RESERVED
+CVE-2021-42745
+ RESERVED
+CVE-2021-3895
+ RESERVED
+CVE-2021-23192
+ RESERVED
+CVE-2020-36502
+ RESERVED
+CVE-2020-36501
+ RESERVED
+CVE-2020-36500
+ RESERVED
+CVE-2020-36499
+ RESERVED
+CVE-2020-36498
+ RESERVED
+CVE-2020-36497
+ RESERVED
+CVE-2020-36496
+ RESERVED
+CVE-2020-36495
+ RESERVED
+CVE-2020-36494
+ RESERVED
+CVE-2020-36493
+ RESERVED
+CVE-2020-36492
+ RESERVED
+CVE-2020-36491
+ RESERVED
+CVE-2020-36490
+ RESERVED
CVE-2021-XXXX [RUSTSEC-2020-0159: Potential segfault in localtime_r invocations]
- rust-chrono <unfixed> (bug #996913)
NOTE: https://rustsec.org/advisories/RUSTSEC-2020-0159.html
@@ -4749,8 +4815,8 @@ CVE-2021-41169
RESERVED
CVE-2021-41168
RESERVED
-CVE-2021-41167
- RESERVED
+CVE-2021-41167 (modern-async is an open source JavaScript tooling library for asynchro ...)
+ TODO: check
CVE-2021-41166
RESERVED
CVE-2021-41165
@@ -4815,8 +4881,8 @@ CVE-2021-41136 (Puma is a HTTP 1.1 server for Ruby/Rack applications. Prior to v
- puma <unfixed>
NOTE: https://github.com/puma/puma/security/advisories/GHSA-48w2-rm65-62xx
NOTE: https://github.com/puma/puma/commit/acdc3ae571dfae0e045cf09a295280127db65c7f
-CVE-2021-41135
- RESERVED
+CVE-2021-41135 (The Cosmos-SDK is a framework for building blockchain applications in ...)
+ TODO: check
CVE-2021-41134
RESERVED
CVE-2021-41132 (OMERO.web provides a web based client and plugin infrastructure. In ve ...)
@@ -10104,8 +10170,8 @@ CVE-2021-38898
RESERVED
CVE-2021-38897
RESERVED
-CVE-2021-38896
- RESERVED
+CVE-2021-38896 (IBM QRadar Advisor 2.5 through 2.6.1 is vulnerable to cross-site scrip ...)
+ TODO: check
CVE-2021-38895
RESERVED
CVE-2021-38894
@@ -17821,356 +17887,288 @@ CVE-2021-35668
RESERVED
CVE-2021-35667
RESERVED
-CVE-2021-35666
- RESERVED
-CVE-2021-35665
- RESERVED
+CVE-2021-35666 (Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middl ...)
+ TODO: check
+CVE-2021-35665 (Vulnerability in the Hyperion Financial Reporting product of Oracle Hy ...)
+ TODO: check
CVE-2021-35664
RESERVED
CVE-2021-35663
RESERVED
-CVE-2021-35662
- RESERVED
-CVE-2021-35661
- RESERVED
-CVE-2021-35660
- RESERVED
-CVE-2021-35659
- RESERVED
-CVE-2021-35658
- RESERVED
-CVE-2021-35657
- RESERVED
-CVE-2021-35656
- RESERVED
-CVE-2021-35655
- RESERVED
-CVE-2021-35654
- RESERVED
-CVE-2021-35653
- RESERVED
-CVE-2021-35652
- RESERVED
-CVE-2021-35651
- RESERVED
-CVE-2021-35650
- RESERVED
+CVE-2021-35662 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35661 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35660 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35659 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35658 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35657 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35656 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35655 (Vulnerability in the Essbase Administration Services product of Oracle ...)
+ TODO: check
+CVE-2021-35654 (Vulnerability in the Essbase Administration Services product of Oracle ...)
+ TODO: check
+CVE-2021-35653 (Vulnerability in the Essbase Administration Services product of Oracle ...)
+ TODO: check
+CVE-2021-35652 (Vulnerability in the Essbase Administration Services product of Oracle ...)
+ TODO: check
+CVE-2021-35651 (Vulnerability in the Essbase Administration Services product of Oracle ...)
+ TODO: check
+CVE-2021-35650 (Vulnerability in the Oracle Secure Global Desktop product of Oracle Vi ...)
NOT-FOR-US: Oracle Secure Global Desktop
-CVE-2021-35649
- RESERVED
+CVE-2021-35649 (Vulnerability in the Oracle Secure Global Desktop product of Oracle Vi ...)
NOT-FOR-US: Oracle Secure Global Desktop
-CVE-2021-35648
- RESERVED
+CVE-2021-35648 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35647
- RESERVED
+CVE-2021-35647 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35646
- RESERVED
+CVE-2021-35646 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35645
- RESERVED
+CVE-2021-35645 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35644
- RESERVED
+CVE-2021-35644 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35643
- RESERVED
+CVE-2021-35643 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35642
- RESERVED
+CVE-2021-35642 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35641
- RESERVED
+CVE-2021-35641 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35640
- RESERVED
+CVE-2021-35640 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35639
- RESERVED
+CVE-2021-35639 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35638
- RESERVED
+CVE-2021-35638 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35637
- RESERVED
+CVE-2021-35637 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35636
- RESERVED
+CVE-2021-35636 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35635
- RESERVED
+CVE-2021-35635 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35634
- RESERVED
+CVE-2021-35634 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35633
- RESERVED
+CVE-2021-35633 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35632
- RESERVED
+CVE-2021-35632 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35631
- RESERVED
+CVE-2021-35631 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35630
- RESERVED
+CVE-2021-35630 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35629
- RESERVED
+CVE-2021-35629 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35628
- RESERVED
+CVE-2021-35628 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35627
- RESERVED
+CVE-2021-35627 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35626
- RESERVED
+CVE-2021-35626 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35625
- RESERVED
+CVE-2021-35625 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35624
- RESERVED
+CVE-2021-35624 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
- mysql-5.7 <removed>
-CVE-2021-35623
- RESERVED
+CVE-2021-35623 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35622
- RESERVED
+CVE-2021-35622 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35621
- RESERVED
+CVE-2021-35621 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35620
- RESERVED
-CVE-2021-35619
- RESERVED
-CVE-2021-35618
- RESERVED
+CVE-2021-35620 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
+CVE-2021-35619 (Vulnerability in the Java VM component of Oracle Database Server. Supp ...)
+ TODO: check
+CVE-2021-35618 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35617
- RESERVED
-CVE-2021-35616
- RESERVED
+CVE-2021-35617 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
+CVE-2021-35616 (Vulnerability in the Oracle Transportation Management product of Oracl ...)
+ TODO: check
CVE-2021-35615
RESERVED
CVE-2021-35614
RESERVED
-CVE-2021-35613
- RESERVED
+CVE-2021-35613 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35612
- RESERVED
+CVE-2021-35612 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35611
- RESERVED
-CVE-2021-35610
- RESERVED
+CVE-2021-35611 (Vulnerability in the Oracle Sales Offline product of Oracle E-Business ...)
+ TODO: check
+CVE-2021-35610 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35609
- RESERVED
-CVE-2021-35608
- RESERVED
+CVE-2021-35609 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2021-35608 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35607
- RESERVED
+CVE-2021-35607 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35606
- RESERVED
+CVE-2021-35606 (Vulnerability in the PeopleSoft Enterprise CS Campus Community product ...)
+ TODO: check
CVE-2021-35605
RESERVED
-CVE-2021-35604
- RESERVED
+CVE-2021-35604 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
- mysql-5.7 <removed>
-CVE-2021-35603
- RESERVED
+CVE-2021-35603 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-17 <unfixed>
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
-CVE-2021-35602
- RESERVED
+CVE-2021-35602 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35601
- RESERVED
+CVE-2021-35601 (Vulnerability in the PeopleSoft Enterprise CS SA Integration Pack prod ...)
+ TODO: check
CVE-2021-35600
RESERVED
-CVE-2021-35599
- RESERVED
-CVE-2021-35598
- RESERVED
+CVE-2021-35599 (Vulnerability in the Zero Downtime DB Migration to Cloud component of ...)
+ TODO: check
+CVE-2021-35598 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35597
- RESERVED
+CVE-2021-35597 (Vulnerability in the MySQL Client product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35596
- RESERVED
+CVE-2021-35596 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35595
- RESERVED
-CVE-2021-35594
- RESERVED
+CVE-2021-35595 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2021-35594 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35593
- RESERVED
+CVE-2021-35593 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35592
- RESERVED
+CVE-2021-35592 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35591
- RESERVED
+CVE-2021-35591 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35590
- RESERVED
+CVE-2021-35590 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35589
- RESERVED
-CVE-2021-35588
- RESERVED
+CVE-2021-35589 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
+ TODO: check
+CVE-2021-35588 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-8 <unfixed>
CVE-2021-35587
RESERVED
-CVE-2021-35586
- RESERVED
+CVE-2021-35586 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-17 <unfixed>
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
-CVE-2021-35585
- RESERVED
-CVE-2021-35584
- RESERVED
+CVE-2021-35585 (Vulnerability in the Oracle Incentive Compensation product of Oracle E ...)
+ TODO: check
+CVE-2021-35584 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35583
- RESERVED
+CVE-2021-35583 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <not-affected> (Windows-specific)
-CVE-2021-35582
- RESERVED
-CVE-2021-35581
- RESERVED
-CVE-2021-35580
- RESERVED
+CVE-2021-35582 (Vulnerability in the Oracle Applications Manager product of Oracle E-B ...)
+ TODO: check
+CVE-2021-35581 (Vulnerability in the Oracle Applications Manager product of Oracle E-B ...)
+ TODO: check
+CVE-2021-35580 (Vulnerability in the Oracle Applications Manager product of Oracle E-B ...)
+ TODO: check
CVE-2021-35579
RESERVED
-CVE-2021-35578
- RESERVED
+CVE-2021-35578 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-17 <unfixed>
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
-CVE-2021-35577
- RESERVED
+CVE-2021-35577 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35576
- RESERVED
-CVE-2021-35575
- RESERVED
+CVE-2021-35576 (Vulnerability in the Oracle Database Enterprise Edition Unified Audit ...)
+ TODO: check
+CVE-2021-35575 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35574
- RESERVED
-CVE-2021-35573
- RESERVED
-CVE-2021-35572
- RESERVED
-CVE-2021-35571
- RESERVED
-CVE-2021-35570
- RESERVED
-CVE-2021-35569
- RESERVED
-CVE-2021-35568
- RESERVED
-CVE-2021-35567
- RESERVED
+CVE-2021-35574 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35573 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35572 (Vulnerability in the Oracle Outside In Technology product of Oracle Fu ...)
+ TODO: check
+CVE-2021-35571 (Vulnerability in the PeopleSoft Enterprise CS Academic Advisement prod ...)
+ TODO: check
+CVE-2021-35570 (Vulnerability in the Oracle Mobile Field Service product of Oracle E-B ...)
+ TODO: check
+CVE-2021-35569 (Vulnerability in the Oracle Applications Manager product of Oracle E-B ...)
+ TODO: check
+CVE-2021-35568 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
+ TODO: check
+CVE-2021-35567 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-17 <unfixed>
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
-CVE-2021-35566
- RESERVED
-CVE-2021-35565
- RESERVED
+CVE-2021-35566 (Vulnerability in the Oracle Applications Manager product of Oracle E-B ...)
+ TODO: check
+CVE-2021-35565 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
-CVE-2021-35564
- RESERVED
+CVE-2021-35564 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-17 <unfixed>
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
-CVE-2021-35563
- RESERVED
-CVE-2021-35562
- RESERVED
-CVE-2021-35561
- RESERVED
+CVE-2021-35563 (Vulnerability in the Oracle Shipping Execution product of Oracle E-Bus ...)
+ TODO: check
+CVE-2021-35562 (Vulnerability in the Oracle Universal Work Queue product of Oracle E-B ...)
+ TODO: check
+CVE-2021-35561 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-17 <unfixed>
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
-CVE-2021-35560
- RESERVED
+CVE-2021-35560 (Vulnerability in the Java SE product of Oracle Java SE (component: Dep ...)
TODO: doublecheck for more details, Deployment components not part of OpenJDK, only present in Oracle Java
-CVE-2021-35559
- RESERVED
+CVE-2021-35559 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-17 <unfixed>
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
-CVE-2021-35558
- RESERVED
-CVE-2021-35557
- RESERVED
-CVE-2021-35556
- RESERVED
+CVE-2021-35558 (Vulnerability in the Core RDBMS component of Oracle Database Server. S ...)
+ TODO: check
+CVE-2021-35557 (Vulnerability in the Core RDBMS component of Oracle Database Server. S ...)
+ TODO: check
+CVE-2021-35556 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-17 <unfixed>
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
CVE-2021-35555
RESERVED
-CVE-2021-35554
- RESERVED
-CVE-2021-35553
- RESERVED
-CVE-2021-35552
- RESERVED
-CVE-2021-35551
- RESERVED
-CVE-2021-35550
- RESERVED
+CVE-2021-35554 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
+ TODO: check
+CVE-2021-35553 (Vulnerability in the PeopleSoft Enterprise CS Student Records product ...)
+ TODO: check
+CVE-2021-35552 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
+ TODO: check
+CVE-2021-35551 (Vulnerability in the RDBMS Security component of Oracle Database Serve ...)
+ TODO: check
+CVE-2021-35550 (Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition produc ...)
- openjdk-11 11.0.13+8-1
- openjdk-8 <unfixed>
-CVE-2021-35549
- RESERVED
+CVE-2021-35549 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
+ TODO: check
CVE-2021-35548
RESERVED
CVE-2021-35547
RESERVED
-CVE-2021-35546
- RESERVED
+CVE-2021-35546 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35545
- RESERVED
+CVE-2021-35545 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.28-dfsg-1
CVE-2021-35544
RESERVED
-CVE-2021-35543
- RESERVED
-CVE-2021-35542
- RESERVED
+CVE-2021-35543 (Vulnerability in the PeopleSoft Enterprise CC Common Application Objec ...)
+ TODO: check
+CVE-2021-35542 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.28-dfsg-1
-CVE-2021-35541
- RESERVED
-CVE-2021-35540
- RESERVED
+CVE-2021-35541 (Vulnerability in the PeopleSoft Enterprise SCM product of Oracle Peopl ...)
+ TODO: check
+CVE-2021-35540 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.28-dfsg-1
-CVE-2021-35539
- RESERVED
-CVE-2021-35538
- RESERVED
+CVE-2021-35539 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
+ TODO: check
+CVE-2021-35538 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox <not-affected> (Windows-specific)
-CVE-2021-35537
- RESERVED
+CVE-2021-35537 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-35536
- RESERVED
+CVE-2021-35536 (Vulnerability in the Oracle Deal Management product of Oracle E-Busine ...)
+ TODO: check
CVE-2021-35535
RESERVED
CVE-2021-35534
@@ -25545,7 +25543,7 @@ CVE-2021-3546 (A flaw was found in vhost-user-gpu of QEMU in versions up to and
NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2021-05/msg01154.html
NOTE: https://gitlab.com/qemu-project/qemu/-/commit/9f22893a
CVE-2021-3542
- RESERVED
+ REJECTED
CVE-2021-32493 (A flaw was found in djvulibre-3.5.28 and earlier. A heap buffer overfl ...)
{DLA-2667-1}
- djvulibre 3.5.28-2
@@ -42054,14 +42052,14 @@ CVE-2021-25974
RESERVED
CVE-2021-25973
RESERVED
-CVE-2021-25972
- RESERVED
-CVE-2021-25971
- RESERVED
-CVE-2021-25970
- RESERVED
-CVE-2021-25969
- RESERVED
+CVE-2021-25972 (In Camaleon CMS, versions 2.1.2.0 to 2.6.0, are vulnerable to Server-S ...)
+ TODO: check
+CVE-2021-25971 (In Camaleon CMS, versions 2.0.1 to 2.6.0 are vulnerable to an Uncaught ...)
+ TODO: check
+CVE-2021-25970 (Camaleon CMS 0.1.7 to 2.6.0 doesn’t terminate the active session ...)
+ TODO: check
+CVE-2021-25969 (In “Camaleon CMS” application, versions 0.0.1 to 2.6.0 are ...)
+ TODO: check
CVE-2021-25968 (In “OpenCMS”, versions 10.5.0 to 11.0.2 are affected by a ...)
TODO: check
CVE-2021-25967
@@ -47987,8 +47985,8 @@ CVE-2021-23454
RESERVED
CVE-2021-23453
RESERVED
-CVE-2021-23452
- RESERVED
+CVE-2021-23452 (This affects all versions of package x-assign. The global proto object ...)
+ TODO: check
CVE-2021-23451
RESERVED
CVE-2021-23450
@@ -52058,20 +52056,20 @@ CVE-2021-21751
RESERVED
CVE-2021-21750
RESERVED
-CVE-2021-21749
- RESERVED
-CVE-2021-21748
- RESERVED
-CVE-2021-21747
- RESERVED
-CVE-2021-21746
- RESERVED
-CVE-2021-21745
- RESERVED
-CVE-2021-21744
- RESERVED
-CVE-2021-21743
- RESERVED
+CVE-2021-21749 (ZTE MF971R product has two stack-based buffer overflow vulnerabilities ...)
+ TODO: check
+CVE-2021-21748 (ZTE MF971R product has two stack-based buffer overflow vulnerabilities ...)
+ TODO: check
+CVE-2021-21747 (ZTE MF971R product has reflective XSS vulnerability. An attacker could ...)
+ TODO: check
+CVE-2021-21746 (ZTE MF971R product has reflective XSS vulnerability. An attacker could ...)
+ TODO: check
+CVE-2021-21745 (ZTE MF971R product has a Referer authentication bypass vulnerability. ...)
+ TODO: check
+CVE-2021-21744 (ZTE MF971R product has a configuration file control vulnerability. An ...)
+ TODO: check
+CVE-2021-21743 (ZTE MF971R product has a CRLF injection vulnerability. An attacker cou ...)
+ TODO: check
CVE-2021-21742 (There is an information leak vulnerability in the message service app ...)
NOT-FOR-US: ZTE
CVE-2021-21741 (A conference management system of ZTE is impacted by a command executi ...)
@@ -59071,40 +59069,36 @@ CVE-2020-29668 (Sympa before 6.2.59b.2 allows remote attackers to obtain full SO
- sympa 6.2.58~dfsg-2 (bug #976020)
NOTE: https://github.com/sympa-community/sympa/issues/1041
NOTE: https://github.com/sympa-community/sympa/pull/1044
-CVE-2021-2485
- RESERVED
-CVE-2021-2484
- RESERVED
-CVE-2021-2483
- RESERVED
-CVE-2021-2482
- RESERVED
-CVE-2021-2481
- RESERVED
+CVE-2021-2485 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
+ TODO: check
+CVE-2021-2484 (Vulnerability in the Oracle Operations Intelligence product of Oracle ...)
+ TODO: check
+CVE-2021-2483 (Vulnerability in the Oracle Content Manager product of Oracle E-Busine ...)
+ TODO: check
+CVE-2021-2482 (Vulnerability in the Oracle Payables product of Oracle E-Business Suit ...)
+ TODO: check
+CVE-2021-2481 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-2480
- RESERVED
-CVE-2021-2479
- RESERVED
+CVE-2021-2480 (Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middl ...)
+ TODO: check
+CVE-2021-2479 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-2478
- RESERVED
+CVE-2021-2478 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-2477
- RESERVED
-CVE-2021-2476
- RESERVED
-CVE-2021-2475
- RESERVED
+CVE-2021-2477 (Vulnerability in the Oracle Applications Framework product of Oracle E ...)
+ TODO: check
+CVE-2021-2476 (Vulnerability in the Oracle Transportation Management product of Oracl ...)
+ TODO: check
+CVE-2021-2475 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 6.1.28-dfsg-1
-CVE-2021-2474
- RESERVED
+CVE-2021-2474 (Vulnerability in the Oracle Web Analytics product of Oracle E-Business ...)
+ TODO: check
CVE-2021-2473
RESERVED
CVE-2021-2472
RESERVED
-CVE-2021-2471
- RESERVED
+CVE-2021-2471 (Vulnerability in the MySQL Connectors product of Oracle MySQL (compone ...)
+ TODO: check
CVE-2021-2470
RESERVED
CVE-2021-2469
@@ -59123,8 +59117,8 @@ CVE-2021-2463 (Vulnerability in the Oracle Commerce Platform product of Oracle C
NOT-FOR-US: Oracle
CVE-2021-2462 (Vulnerability in the Oracle Commerce Service Center product of Oracle ...)
NOT-FOR-US: Oracle
-CVE-2021-2461
- RESERVED
+CVE-2021-2461 (Vulnerability in the Oracle Communications Interactive Session Recorde ...)
+ TODO: check
CVE-2021-2460 (Vulnerability in the Oracle Application Express Data Reporter componen ...)
NOT-FOR-US: Oracle
CVE-2021-2459
@@ -59214,12 +59208,12 @@ CVE-2021-2418 (Vulnerability in the MySQL Server product of Oracle MySQL (compon
- mysql-8.0 <unfixed>
CVE-2021-2417 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
-CVE-2021-2416
- RESERVED
+CVE-2021-2416 (Vulnerability in the Oracle Communications Session Border Controller p ...)
+ TODO: check
CVE-2021-2415 (Vulnerability in the Oracle Time and Labor product of Oracle E-Busines ...)
NOT-FOR-US: Oracle
-CVE-2021-2414
- RESERVED
+CVE-2021-2414 (Vulnerability in the Oracle Communications Session Border Controller p ...)
+ TODO: check
CVE-2021-2413
RESERVED
CVE-2021-2412 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
@@ -59404,8 +59398,8 @@ CVE-2021-2334 (Vulnerability in the Oracle Database - Enterprise Edition Data Re
NOT-FOR-US: Oracle
CVE-2021-2333 (Vulnerability in the Oracle XML DB component of Oracle Database Server ...)
NOT-FOR-US: Oracle
-CVE-2021-2332
- RESERVED
+CVE-2021-2332 (Vulnerability in the Oracle LogMiner component of Oracle Database Serv ...)
+ TODO: check
CVE-2021-2331
RESERVED
CVE-2021-2330 (Vulnerability in the Core RDBMS component of Oracle Database Server. T ...)
@@ -59829,8 +59823,8 @@ CVE-2021-2139
RESERVED
CVE-2021-2138 (Vulnerability in the Oracle Cloud Infrastructure Data Science Notebook ...)
NOT-FOR-US: Oracle
-CVE-2021-2137
- RESERVED
+CVE-2021-2137 (Vulnerability in the Enterprise Manager Base Platform product of Oracl ...)
+ TODO: check
CVE-2021-2136 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
NOT-FOR-US: Oracle
CVE-2021-2135 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f1b1a580457a6d90cd1402c8067b79b6cf1319f6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f1b1a580457a6d90cd1402c8067b79b6cf1319f6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211020/032d53c2/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list