[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Sep 3 21:10:37 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
65d105ac by security tracker role at 2021-09-03T20:10:28+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,29 @@
+CVE-2021-40504
+	RESERVED
+CVE-2021-40503
+	RESERVED
+CVE-2021-40502
+	RESERVED
+CVE-2021-40501
+	RESERVED
+CVE-2021-40500
+	RESERVED
+CVE-2021-40499
+	RESERVED
+CVE-2021-40498
+	RESERVED
+CVE-2021-40497
+	RESERVED
+CVE-2021-40496
+	RESERVED
+CVE-2021-40495
+	RESERVED
 CVE-2021-40494 (A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI throu ...)
 	NOT-FOR-US: AdaptiveScale LXDUI
 CVE-2021-40493
 	RESERVED
-CVE-2021-40492
-	RESERVED
+CVE-2021-40492 (A reflected XSS vulnerability exists in multiple pages in version 22 o ...)
+	TODO: check
 CVE-2021-40489
 	RESERVED
 CVE-2021-40488
@@ -2915,12 +2935,12 @@ CVE-2021-39195
 	RESERVED
 CVE-2021-39194
 	RESERVED
-CVE-2021-39193
-	RESERVED
-CVE-2021-39192
-	RESERVED
-CVE-2021-39191
-	RESERVED
+CVE-2021-39193 (Frontier is Substrate's Ethereum compatibility layer. Prior to commit  ...)
+	TODO: check
+CVE-2021-39192 (Ghost is a Node.js content management system. An error in the implemen ...)
+	TODO: check
+CVE-2021-39191 (mod_auth_openidc is an authentication/authorization module for the Apa ...)
+	TODO: check
 CVE-2021-39190
 	RESERVED
 CVE-2021-39189
@@ -40795,8 +40815,8 @@ CVE-2021-23439
 	RESERVED
 CVE-2021-23438 (This affects the package mpath before 0.8.4. A type confusion vulnerab ...)
 	NOT-FOR-US: Node mpath
-CVE-2021-23437
-	RESERVED
+CVE-2021-23437 (The package pillow from 0 and before 8.3.2 are vulnerable to Regular E ...)
+	TODO: check
 CVE-2021-23436 (This affects the package immer before 9.0.6. A type confusion vulnerab ...)
 	NOT-FOR-US: Node immer
 CVE-2021-23435



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/65d105ac9fb1e09ab87de59dcf78c6e4c79293a9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/65d105ac9fb1e09ab87de59dcf78c6e4c79293a9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210903/361a2a2c/attachment.htm>


More information about the debian-security-tracker-commits mailing list