[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Sep 27 09:10:23 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b7e74ae5 by security tracker role at 2021-09-27T08:10:15+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,299 @@
+CVE-2021-41765
+ RESERVED
+CVE-2021-41764
+ RESERVED
+CVE-2021-41763
+ RESERVED
+CVE-2021-41762
+ RESERVED
+CVE-2021-41761
+ RESERVED
+CVE-2021-41760
+ RESERVED
+CVE-2021-41759
+ RESERVED
+CVE-2021-41758
+ RESERVED
+CVE-2021-41757
+ RESERVED
+CVE-2021-41756
+ RESERVED
+CVE-2021-41755
+ RESERVED
+CVE-2021-41754
+ RESERVED
+CVE-2021-41753
+ RESERVED
+CVE-2021-41752
+ RESERVED
+CVE-2021-41751
+ RESERVED
+CVE-2021-41750
+ RESERVED
+CVE-2021-41749
+ RESERVED
+CVE-2021-41748
+ RESERVED
+CVE-2021-41747
+ RESERVED
+CVE-2021-41746
+ RESERVED
+CVE-2021-41745
+ RESERVED
+CVE-2021-41744
+ RESERVED
+CVE-2021-41743
+ RESERVED
+CVE-2021-41742
+ RESERVED
+CVE-2021-41741
+ RESERVED
+CVE-2021-41740
+ RESERVED
+CVE-2021-41739
+ RESERVED
+CVE-2021-41738
+ RESERVED
+CVE-2021-41737
+ RESERVED
+CVE-2021-41736
+ RESERVED
+CVE-2021-41735
+ RESERVED
+CVE-2021-41734
+ RESERVED
+CVE-2021-41733
+ RESERVED
+CVE-2021-41732
+ RESERVED
+CVE-2021-41731
+ RESERVED
+CVE-2021-41730
+ RESERVED
+CVE-2021-41729
+ RESERVED
+CVE-2021-41728
+ RESERVED
+CVE-2021-41727
+ RESERVED
+CVE-2021-41726
+ RESERVED
+CVE-2021-41725
+ RESERVED
+CVE-2021-41724
+ RESERVED
+CVE-2021-41723
+ RESERVED
+CVE-2021-41722
+ RESERVED
+CVE-2021-41721
+ RESERVED
+CVE-2021-41720
+ RESERVED
+CVE-2021-41719
+ RESERVED
+CVE-2021-41718
+ RESERVED
+CVE-2021-41717
+ RESERVED
+CVE-2021-41716
+ RESERVED
+CVE-2021-41715
+ RESERVED
+CVE-2021-41714
+ RESERVED
+CVE-2021-41713
+ RESERVED
+CVE-2021-41712
+ RESERVED
+CVE-2021-41711
+ RESERVED
+CVE-2021-41710
+ RESERVED
+CVE-2021-41709
+ RESERVED
+CVE-2021-41708
+ RESERVED
+CVE-2021-41707
+ RESERVED
+CVE-2021-41706
+ RESERVED
+CVE-2021-41705
+ RESERVED
+CVE-2021-41704
+ RESERVED
+CVE-2021-41703
+ RESERVED
+CVE-2021-41702
+ RESERVED
+CVE-2021-41701
+ RESERVED
+CVE-2021-41700
+ RESERVED
+CVE-2021-41699
+ RESERVED
+CVE-2021-41698
+ RESERVED
+CVE-2021-41697
+ RESERVED
+CVE-2021-41696
+ RESERVED
+CVE-2021-41695
+ RESERVED
+CVE-2021-41694
+ RESERVED
+CVE-2021-41693
+ RESERVED
+CVE-2021-41692
+ RESERVED
+CVE-2021-41691
+ RESERVED
+CVE-2021-41690
+ RESERVED
+CVE-2021-41689
+ RESERVED
+CVE-2021-41688
+ RESERVED
+CVE-2021-41687
+ RESERVED
+CVE-2021-41686
+ RESERVED
+CVE-2021-41685
+ RESERVED
+CVE-2021-41684
+ RESERVED
+CVE-2021-41683
+ RESERVED
+CVE-2021-41682
+ RESERVED
+CVE-2021-41681
+ RESERVED
+CVE-2021-41680
+ RESERVED
+CVE-2021-41679
+ RESERVED
+CVE-2021-41678
+ RESERVED
+CVE-2021-41677
+ RESERVED
+CVE-2021-41676
+ RESERVED
+CVE-2021-41675
+ RESERVED
+CVE-2021-41674
+ RESERVED
+CVE-2021-41673
+ RESERVED
+CVE-2021-41672
+ RESERVED
+CVE-2021-41671
+ RESERVED
+CVE-2021-41670
+ RESERVED
+CVE-2021-41669
+ RESERVED
+CVE-2021-41668
+ RESERVED
+CVE-2021-41667
+ RESERVED
+CVE-2021-41666
+ RESERVED
+CVE-2021-41665
+ RESERVED
+CVE-2021-41664
+ RESERVED
+CVE-2021-41663
+ RESERVED
+CVE-2021-41662
+ RESERVED
+CVE-2021-41661
+ RESERVED
+CVE-2021-41660
+ RESERVED
+CVE-2021-41659
+ RESERVED
+CVE-2021-41658
+ RESERVED
+CVE-2021-41657
+ RESERVED
+CVE-2021-41656
+ RESERVED
+CVE-2021-41655
+ RESERVED
+CVE-2021-41654
+ RESERVED
+CVE-2021-41653
+ RESERVED
+CVE-2021-41652
+ RESERVED
+CVE-2021-41651
+ RESERVED
+CVE-2021-41650
+ RESERVED
+CVE-2021-41649
+ RESERVED
+CVE-2021-41648
+ RESERVED
+CVE-2021-41647
+ RESERVED
+CVE-2021-41646
+ RESERVED
+CVE-2021-41645
+ RESERVED
+CVE-2021-41644
+ RESERVED
+CVE-2021-41643
+ RESERVED
+CVE-2021-41642
+ RESERVED
+CVE-2021-41641
+ RESERVED
+CVE-2021-41640
+ RESERVED
+CVE-2021-41639
+ RESERVED
+CVE-2021-41638
+ RESERVED
+CVE-2021-41637
+ RESERVED
+CVE-2021-41636
+ RESERVED
+CVE-2021-41635
+ RESERVED
+CVE-2021-41634
+ RESERVED
+CVE-2021-41633
+ RESERVED
+CVE-2021-41632
+ RESERVED
+CVE-2021-41631
+ RESERVED
+CVE-2021-41630
+ RESERVED
+CVE-2021-41629
+ RESERVED
+CVE-2021-41628
+ RESERVED
+CVE-2021-41627
+ RESERVED
+CVE-2021-41626
+ RESERVED
+CVE-2021-41625
+ RESERVED
+CVE-2021-41624
+ RESERVED
+CVE-2021-41623
+ RESERVED
+CVE-2021-41622
+ RESERVED
+CVE-2021-41621
+ RESERVED
+CVE-2021-41620
+ RESERVED
+CVE-2021-41619
+ RESERVED
+CVE-2021-41618
+ RESERVED
CVE-2021-41616
RESERVED
CVE-2021-3830 (btcpayserver is vulnerable to Improper Neutralization of Input During ...)
@@ -84,8 +380,8 @@ CVE-2021-41582
CVE-2021-41581 (x509_constraints_parse_mailbox in lib/libcrypto/x509/x509_constraints. ...)
- libressl <itp> (bug #754513)
NOTE: Affected code not present in any OpenSSL version in Bullseye/Buster/Stretch
-CVE-2021-41580
- RESERVED
+CVE-2021-41580 (** DISPUTED ** The passport-oauth2 package before 1.6.1 for Node.js mi ...)
+ TODO: check
CVE-2021-41579
RESERVED
CVE-2021-41578
@@ -498,8 +794,8 @@ CVE-2021-41387 (seatd-launch in seatd 0.6.x before 0.6.2 allows privilege escala
NOTE: https://lists.sr.ht/~kennylevinsen/seatd-announce/%3CGJ2IZQ.HCKS1J0LSI803%40kl.wtf%3E
CVE-2021-41386
RESERVED
-CVE-2021-41385
- RESERVED
+CVE-2021-41385 (The third party intelligence connector in Securonix SNYPR 6.3.1 Build ...)
+ TODO: check
CVE-2021-41384
RESERVED
CVE-2021-41383 (setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute ...)
@@ -612,8 +908,8 @@ CVE-2021-41331
RESERVED
CVE-2021-41330
RESERVED
-CVE-2021-41329
- RESERVED
+CVE-2021-41329 (Datalust Seq before 2021.2.6259 allows users (with view filters applie ...)
+ TODO: check
CVE-2021-41328
RESERVED
CVE-2021-41327
@@ -1374,8 +1670,8 @@ CVE-2021-40983
RESERVED
CVE-2021-40982
RESERVED
-CVE-2021-40981
- RESERVED
+CVE-2021-40981 (ASUS ROG Armoury Crate Lite before 4.2.10 allows local users to gain p ...)
+ TODO: check
CVE-2021-40980
RESERVED
CVE-2021-40979
@@ -2833,8 +3129,8 @@ CVE-2021-40351
RESERVED
CVE-2021-40350 (webctrl.cgi.elf on Christie Digital DWU850-GS V06.46 devices allows at ...)
NOT-FOR-US: Christie Digital DWU850-GS V06.46 devices
-CVE-2021-40349
- RESERVED
+CVE-2021-40349 (e7d Speed Test (aka speedtest) 0.5.3 allows a path-traversal attack th ...)
+ TODO: check
CVE-2021-40348
RESERVED
CVE-2021-40347 (An issue was discovered in views/list.py in GNU Mailman Postorius befo ...)
@@ -6319,7 +6615,7 @@ CVE-2021-38860
CVE-2021-38859
RESERVED
CVE-2021-3712 (ASN.1 strings are represented internally within OpenSSL as an ASN1_STR ...)
- {DSA-4963-1}
+ {DSA-4963-1 DLA-2766-1}
- openssl 1.1.1l-1
- openssl1.0 <removed>
NOTE: https://www.openssl.org/news/secadv/20210824.txt
@@ -7602,8 +7898,8 @@ CVE-2021-38300 (arch/mips/net/bpf_jit.c in the Linux kernel through 5.14.6 can g
- linux 5.14.6-1
NOTE: https://www.openwall.com/lists/oss-security/2021/09/15/5
NOTE: https://lore.kernel.org/bpf/20210915160437.4080-1-piotras@gmail.com/
-CVE-2021-38299
- RESERVED
+CVE-2021-38299 (Webauthn Framework 3.3.x before 3.3.4 has Incorrect Access Control. An ...)
+ TODO: check
CVE-2021-38298
RESERVED
CVE-2021-38297
@@ -16807,14 +17103,14 @@ CVE-2021-34353
RESERVED
CVE-2021-34352
RESERVED
-CVE-2021-34351
- RESERVED
+CVE-2021-34351 (A command injection vulnerability has been reported to affect QNAP dev ...)
+ TODO: check
CVE-2021-34350
RESERVED
-CVE-2021-34349
- RESERVED
-CVE-2021-34348
- RESERVED
+CVE-2021-34349 (A command injection vulnerability has been reported to affect QNAP dev ...)
+ TODO: check
+CVE-2021-34348 (A command injection vulnerability has been reported to affect QNAP dev ...)
+ TODO: check
CVE-2021-34347
RESERVED
CVE-2021-34346 (A stack buffer overflow vulnerability has been reported to affect QNAP ...)
@@ -23736,12 +24032,12 @@ CVE-2021-31608
CVE-2021-31607 (In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerabi ...)
- salt 3002.6+dfsg1-2 (bug #987496)
NOTE: https://sec.stealthcopter.com/saltstack-snapper-minion-privledge-escaltion/
-CVE-2021-31606
- RESERVED
-CVE-2021-31605
- RESERVED
-CVE-2021-31604
- RESERVED
+CVE-2021-31606 (furlongm openvpn-monitor through 1.1.3 allows Authorization Bypass to ...)
+ TODO: check
+CVE-2021-31605 (furlongm openvpn-monitor through 1.1.3 allows %0a command injection vi ...)
+ TODO: check
+CVE-2021-31604 (furlongm openvpn-monitor through 1.1.3 allows CSRF to disconnect an ar ...)
+ TODO: check
CVE-2021-31603
RESERVED
CVE-2021-31602
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7e74ae59a98e4d6d17c91cf36a6c77950133233
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7e74ae59a98e4d6d17c91cf36a6c77950133233
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210927/f9488cf7/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list