[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 10 20:10:25 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9be71002 by security tracker role at 2022-02-10T20:10:17+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,433 @@
+CVE-2022-24916 (Optimism before @eth-optimism/l2geth at 0.5.11 allows economic griefing b ...)
+ TODO: check
+CVE-2022-24908
+ RESERVED
+CVE-2022-24907
+ RESERVED
+CVE-2022-24906
+ RESERVED
+CVE-2022-24905
+ RESERVED
+CVE-2022-24904
+ RESERVED
+CVE-2022-24903
+ RESERVED
+CVE-2022-24902
+ RESERVED
+CVE-2022-24901
+ RESERVED
+CVE-2022-24900
+ RESERVED
+CVE-2022-24899
+ RESERVED
+CVE-2022-24898
+ RESERVED
+CVE-2022-24897
+ RESERVED
+CVE-2022-24896
+ RESERVED
+CVE-2022-24895
+ RESERVED
+CVE-2022-24894
+ RESERVED
+CVE-2022-24893
+ RESERVED
+CVE-2022-24892
+ RESERVED
+CVE-2022-24891
+ RESERVED
+CVE-2022-24890
+ RESERVED
+CVE-2022-24889
+ RESERVED
+CVE-2022-24888
+ RESERVED
+CVE-2022-24887
+ RESERVED
+CVE-2022-24886
+ RESERVED
+CVE-2022-24885
+ RESERVED
+CVE-2022-24884
+ RESERVED
+CVE-2022-24883
+ RESERVED
+CVE-2022-24882
+ RESERVED
+CVE-2022-24881
+ RESERVED
+CVE-2022-24880
+ RESERVED
+CVE-2022-24879
+ RESERVED
+CVE-2022-24878
+ RESERVED
+CVE-2022-24877
+ RESERVED
+CVE-2022-24876
+ RESERVED
+CVE-2022-24875
+ RESERVED
+CVE-2022-24874
+ RESERVED
+CVE-2022-24873
+ RESERVED
+CVE-2022-24872
+ RESERVED
+CVE-2022-24871
+ RESERVED
+CVE-2022-24870
+ RESERVED
+CVE-2022-24869
+ RESERVED
+CVE-2022-24868
+ RESERVED
+CVE-2022-24867
+ RESERVED
+CVE-2022-24866
+ RESERVED
+CVE-2022-24865
+ RESERVED
+CVE-2022-24864
+ RESERVED
+CVE-2022-24863
+ RESERVED
+CVE-2022-24862
+ RESERVED
+CVE-2022-24861
+ RESERVED
+CVE-2022-24860
+ RESERVED
+CVE-2022-24859
+ RESERVED
+CVE-2022-24858
+ RESERVED
+CVE-2022-24857
+ RESERVED
+CVE-2022-24856
+ RESERVED
+CVE-2022-24855
+ RESERVED
+CVE-2022-24854
+ RESERVED
+CVE-2022-24853
+ RESERVED
+CVE-2022-24852
+ RESERVED
+CVE-2022-24851
+ RESERVED
+CVE-2022-24850
+ RESERVED
+CVE-2022-24849
+ RESERVED
+CVE-2022-24848
+ RESERVED
+CVE-2022-24847
+ RESERVED
+CVE-2022-24846
+ RESERVED
+CVE-2022-24845
+ RESERVED
+CVE-2022-24844
+ RESERVED
+CVE-2022-24843
+ RESERVED
+CVE-2022-24842
+ RESERVED
+CVE-2022-24841
+ RESERVED
+CVE-2022-24840
+ RESERVED
+CVE-2022-24839
+ RESERVED
+CVE-2022-24838
+ RESERVED
+CVE-2022-24837
+ RESERVED
+CVE-2022-24836
+ RESERVED
+CVE-2022-24835
+ RESERVED
+CVE-2022-24834
+ RESERVED
+CVE-2022-24833
+ RESERVED
+CVE-2022-24832
+ RESERVED
+CVE-2022-24831
+ RESERVED
+CVE-2022-24830
+ RESERVED
+CVE-2022-24829
+ RESERVED
+CVE-2022-24828
+ RESERVED
+CVE-2022-24827
+ RESERVED
+CVE-2022-24826
+ RESERVED
+CVE-2022-24825
+ RESERVED
+CVE-2022-24824
+ RESERVED
+CVE-2022-24823
+ RESERVED
+CVE-2022-24822
+ RESERVED
+CVE-2022-24821
+ RESERVED
+CVE-2022-24820
+ RESERVED
+CVE-2022-24819
+ RESERVED
+CVE-2022-24818
+ RESERVED
+CVE-2022-24817
+ RESERVED
+CVE-2022-24816
+ RESERVED
+CVE-2022-24815
+ RESERVED
+CVE-2022-24814
+ RESERVED
+CVE-2022-24813
+ RESERVED
+CVE-2022-24812
+ RESERVED
+CVE-2022-24811
+ RESERVED
+CVE-2022-24810
+ RESERVED
+CVE-2022-24809
+ RESERVED
+CVE-2022-24808
+ RESERVED
+CVE-2022-24807
+ RESERVED
+CVE-2022-24806
+ RESERVED
+CVE-2022-24805
+ RESERVED
+CVE-2022-24804
+ RESERVED
+CVE-2022-24803
+ RESERVED
+CVE-2022-24802
+ RESERVED
+CVE-2022-24801
+ RESERVED
+CVE-2022-24800
+ RESERVED
+CVE-2022-24799
+ RESERVED
+CVE-2022-24798
+ RESERVED
+CVE-2022-24797
+ RESERVED
+CVE-2022-24796
+ RESERVED
+CVE-2022-24795
+ RESERVED
+CVE-2022-24794
+ RESERVED
+CVE-2022-24793
+ RESERVED
+CVE-2022-24792
+ RESERVED
+CVE-2022-24791
+ RESERVED
+CVE-2022-24790
+ RESERVED
+CVE-2022-24789
+ RESERVED
+CVE-2022-24788
+ RESERVED
+CVE-2022-24787
+ RESERVED
+CVE-2022-24786
+ RESERVED
+CVE-2022-24785
+ RESERVED
+CVE-2022-24784
+ RESERVED
+CVE-2022-24783
+ RESERVED
+CVE-2022-24782
+ RESERVED
+CVE-2022-24781
+ RESERVED
+CVE-2022-24780
+ RESERVED
+CVE-2022-24779
+ RESERVED
+CVE-2022-24778
+ RESERVED
+CVE-2022-24777
+ RESERVED
+CVE-2022-24776
+ RESERVED
+CVE-2022-24775
+ RESERVED
+CVE-2022-24774
+ RESERVED
+CVE-2022-24773
+ RESERVED
+CVE-2022-24772
+ RESERVED
+CVE-2022-24771
+ RESERVED
+CVE-2022-24770
+ RESERVED
+CVE-2022-24769
+ RESERVED
+CVE-2022-24768
+ RESERVED
+CVE-2022-24767
+ RESERVED
+CVE-2022-24766
+ RESERVED
+CVE-2022-24765
+ RESERVED
+CVE-2022-24764
+ RESERVED
+CVE-2022-24763
+ RESERVED
+CVE-2022-24762
+ RESERVED
+CVE-2022-24761
+ RESERVED
+CVE-2022-24760
+ RESERVED
+CVE-2022-24759
+ RESERVED
+CVE-2022-24758
+ RESERVED
+CVE-2022-24757
+ RESERVED
+CVE-2022-24756
+ RESERVED
+CVE-2022-24755
+ RESERVED
+CVE-2022-24754
+ RESERVED
+CVE-2022-24753
+ RESERVED
+CVE-2022-24752
+ RESERVED
+CVE-2022-24751
+ RESERVED
+CVE-2022-24750
+ RESERVED
+CVE-2022-24749
+ RESERVED
+CVE-2022-24748
+ RESERVED
+CVE-2022-24747
+ RESERVED
+CVE-2022-24746
+ RESERVED
+CVE-2022-24745
+ RESERVED
+CVE-2022-24744
+ RESERVED
+CVE-2022-24743
+ RESERVED
+CVE-2022-24742
+ RESERVED
+CVE-2022-24741
+ RESERVED
+CVE-2022-24740
+ RESERVED
+CVE-2022-24739
+ RESERVED
+CVE-2022-24738
+ RESERVED
+CVE-2022-24737
+ RESERVED
+CVE-2022-24736
+ RESERVED
+CVE-2022-24735
+ RESERVED
+CVE-2022-24734
+ RESERVED
+CVE-2022-24733
+ RESERVED
+CVE-2022-24732
+ RESERVED
+CVE-2022-24731
+ RESERVED
+CVE-2022-24730
+ RESERVED
+CVE-2022-24729
+ RESERVED
+CVE-2022-24728
+ RESERVED
+CVE-2022-24727
+ RESERVED
+CVE-2022-24726
+ RESERVED
+CVE-2022-24725
+ RESERVED
+CVE-2022-24724
+ RESERVED
+CVE-2022-24723
+ RESERVED
+CVE-2022-24722
+ RESERVED
+CVE-2022-24721
+ RESERVED
+CVE-2022-24720
+ RESERVED
+CVE-2022-24719
+ RESERVED
+CVE-2022-24718
+ RESERVED
+CVE-2022-24717
+ RESERVED
+CVE-2022-24716
+ RESERVED
+CVE-2022-24715
+ RESERVED
+CVE-2022-24714
+ RESERVED
+CVE-2022-24713
+ RESERVED
+CVE-2022-24712
+ RESERVED
+CVE-2022-24711
+ RESERVED
+CVE-2022-24710
+ RESERVED
+CVE-2022-24709
+ RESERVED
+CVE-2022-24708
+ RESERVED
+CVE-2022-24707
+ RESERVED
+CVE-2022-24706
+ RESERVED
+CVE-2022-24705
+ RESERVED
+CVE-2022-24704
+ RESERVED
+CVE-2022-23922
+ RESERVED
+CVE-2022-23104
+ RESERVED
+CVE-2022-0563
+ RESERVED
+CVE-2022-0562
+ RESERVED
+CVE-2022-0561
+ RESERVED
+CVE-2022-0560
+ RESERVED
+CVE-2022-0559
+ RESERVED
+CVE-2022-0558 (Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber ...)
+ TODO: check
+CVE-2022-0557
+ RESERVED
CVE-2022-24703
RESERVED
CVE-2022-24702
@@ -386,8 +816,8 @@ CVE-2022-24570
RESERVED
CVE-2022-24569
RESERVED
-CVE-2022-24568
- RESERVED
+CVE-2022-24568 (Novel-plus v3.6.0 was discovered to be vulnerable to Server-Side Reque ...)
+ TODO: check
CVE-2022-24567
RESERVED
CVE-2022-24566
@@ -1805,8 +2235,8 @@ CVE-2003-5002
RESERVED
CVE-2003-5001
RESERVED
-CVE-2022-24111
- RESERVED
+CVE-2022-24111 (In Mahara 21.04 before 21.04.3 and 21.10 before 21.10.1, portfolios cr ...)
+ TODO: check
CVE-2022-24110
RESERVED
CVE-2022-24109
@@ -4443,8 +4873,8 @@ CVE-2022-23323
RESERVED
CVE-2022-23322
RESERVED
-CVE-2022-23321
- RESERVED
+CVE-2022-23321 (A persistent cross-site scripting (XSS) vulnerability exists on two in ...)
+ TODO: check
CVE-2022-23320 (XMPie uStore 12.3.7244.0 allows for administrators to generate reports ...)
NOT-FOR-US: XMPie uStore
CVE-2022-23319
@@ -8919,18 +9349,18 @@ CVE-2022-0023
RESERVED
CVE-2022-0022
RESERVED
-CVE-2022-0021
- RESERVED
-CVE-2022-0020
- RESERVED
-CVE-2022-0019
- RESERVED
-CVE-2022-0018
- RESERVED
-CVE-2022-0017
- RESERVED
-CVE-2022-0016
- RESERVED
+CVE-2022-0021 (An information exposure through log file vulnerability exists in the P ...)
+ TODO: check
+CVE-2022-0020 (A stored cross-site scripting (XSS) vulnerability in Palo Alto Network ...)
+ TODO: check
+CVE-2022-0019 (An insufficiently protected credentials vulnerability exists in the Pa ...)
+ TODO: check
+CVE-2022-0018 (An information exposure vulnerability exists in the Palo Alto Networks ...)
+ TODO: check
+CVE-2022-0017 (An improper link resolution before file access ('link following') vuln ...)
+ TODO: check
+CVE-2022-0016 (An improper handling of exceptional conditions vulnerability exists wi ...)
+ TODO: check
CVE-2022-0015 (A local privilege escalation (PE) vulnerability exists in the Palo Alt ...)
NOT-FOR-US: Palo Alto Networks
CVE-2022-0014 (An untrusted search path vulnerability exists in the Palo Alto Network ...)
@@ -8939,8 +9369,8 @@ CVE-2022-0013 (A file information exposure vulnerability exists in the Palo Alto
NOT-FOR-US: Palo Alto Networks
CVE-2022-0012 (An improper link resolution before file access vulnerability exists in ...)
NOT-FOR-US: Palo Alto Networks
-CVE-2022-0011
- RESERVED
+CVE-2022-0011 (PAN-OS software provides options to exclude specific websites from URL ...)
+ TODO: check
CVE-2021-45918
RESERVED
CVE-2021-45917 (The server-request receiver function of Shockwall system has an improp ...)
@@ -8993,8 +9423,8 @@ CVE-2021-45903 (A persistent cross-site scripting (XSS) issue in the web interfa
NOT-FOR-US: SuiteCRM
CVE-2021-45902
RESERVED
-CVE-2021-45901
- RESERVED
+CVE-2021-45901 (The password-reset form in ServiceNow Orlando provides different respo ...)
+ TODO: check
CVE-2021-45900
RESERVED
CVE-2021-45899 (SuiteCRM before 7.12.3 and 8.x before 8.0.2 allows PHAR deserializatio ...)
@@ -10773,8 +11203,8 @@ CVE-2021-45366
RESERVED
CVE-2021-45365
RESERVED
-CVE-2021-45364
- RESERVED
+CVE-2021-45364 (A Code Execution vulnerability exists in Statamic Version through 3.2. ...)
+ TODO: check
CVE-2021-45363
RESERVED
CVE-2021-45362
@@ -10787,8 +11217,8 @@ CVE-2021-45359
RESERVED
CVE-2021-45358
RESERVED
-CVE-2021-45357
- RESERVED
+CVE-2021-45357 (Cross Site Scripting (XSS) vulnerability exists in Piwigo 12.x via the ...)
+ TODO: check
CVE-2021-45356
RESERVED
CVE-2021-45355
@@ -11784,6 +12214,7 @@ CVE-2021-4123 (livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
NOT-FOR-US: livehelperchat
CVE-2021-4122 [decryption through LUKS2 reencryption crash recovery]
RESERVED
+ {DSA-5070-1}
- cryptsetup 2:2.4.3-1 (bug #1003686)
[buster] - cryptsetup <not-affected> (Vulnerable code not present; does not support online LUKS2 reencryption)
[stretch] - cryptsetup <not-affected> (Vulnerable code not present; does not support LUKS2)
@@ -12461,8 +12892,8 @@ CVE-2021-44894
RESERVED
CVE-2021-44893
RESERVED
-CVE-2021-44892
- RESERVED
+CVE-2021-44892 (A Remote Code Execution (RCE) vulnerability exists in ThinkPHP 3.x.x v ...)
+ TODO: check
CVE-2021-44891
RESERVED
CVE-2021-44890
@@ -12572,8 +13003,8 @@ CVE-2021-44852 (An issue was discovered in BS_RCIO64.sys in Biostar RACING GT Ev
NOT-FOR-US: Biostar RACING GT Evo
CVE-2021-44851
RESERVED
-CVE-2021-44850
- RESERVED
+CVE-2021-44850 (On Xilinx Zynq-7000 SoC devices, physical modification of an SD boot i ...)
+ TODO: check
CVE-2021-44849
RESERVED
CVE-2021-44848 (In Cibele Thinfinity VirtualUI before 3.0, /changePassword returns dif ...)
@@ -16687,7 +17118,7 @@ CVE-2022-21366 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise E
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
CVE-2022-21365 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
@@ -16700,7 +17131,7 @@ CVE-2022-21362 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2022-21361 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
NOT-FOR-US: Oracle
CVE-2022-21360 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
@@ -16725,6 +17156,7 @@ CVE-2022-21351 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2022-21350 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
NOT-FOR-US: Oracle
CVE-2022-21349 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
+ {DLA-2917-1}
- openjdk-8 <unfixed>
CVE-2022-21348 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
@@ -16742,12 +17174,12 @@ CVE-2022-21343
CVE-2022-21342 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2022-21341 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
CVE-2022-21340 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
@@ -16820,7 +17252,7 @@ CVE-2022-21307 (Vulnerability in the MySQL Cluster product of Oracle MySQL (comp
CVE-2022-21306 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
NOT-FOR-US: Oracle
CVE-2022-21305 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
@@ -16837,7 +17269,7 @@ CVE-2022-21301 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2022-21300 (Vulnerability in the PeopleSoft Enterprise CS SA Integration Pack prod ...)
NOT-FOR-US: Oracle
CVE-2022-21299 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
@@ -16846,19 +17278,19 @@ CVE-2022-21298 (Vulnerability in the Oracle Solaris product of Oracle Systems (c
CVE-2022-21297 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2022-21296 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
CVE-2022-21295 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox <not-affected> (Windows-specific)
CVE-2022-21294 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
CVE-2022-21293 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
@@ -16884,11 +17316,11 @@ CVE-2022-21285 (Vulnerability in the MySQL Cluster product of Oracle MySQL (comp
CVE-2022-21284 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
NOT-FOR-US: MySQL Cluster
CVE-2022-21283 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
CVE-2022-21282 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
@@ -16963,7 +17395,7 @@ CVE-2022-21250 (Vulnerability in the Oracle Trade Management product of Oracle E
CVE-2022-21249 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2022-21248 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- {DSA-5058-1 DSA-5057-1}
+ {DSA-5058-1 DSA-5057-1 DLA-2917-1}
- openjdk-8 <unfixed>
- openjdk-11 11.0.14+9-1
- openjdk-17 17.0.2+8-1
@@ -19120,8 +19552,8 @@ CVE-2022-20751
RESERVED
CVE-2022-20750
RESERVED
-CVE-2022-20749
- RESERVED
+CVE-2022-20749 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
CVE-2022-20748
RESERVED
CVE-2022-20747
@@ -19142,8 +19574,8 @@ CVE-2022-20740
RESERVED
CVE-2022-20739
RESERVED
-CVE-2022-20738
- RESERVED
+CVE-2022-20738 (A vulnerability in the Cisco Umbrella Secure Web Gateway service could ...)
+ TODO: check
CVE-2022-20737
RESERVED
CVE-2022-20736
@@ -19194,34 +19626,34 @@ CVE-2022-20714
RESERVED
CVE-2022-20713
RESERVED
-CVE-2022-20712
- RESERVED
-CVE-2022-20711
- RESERVED
-CVE-2022-20710
- RESERVED
-CVE-2022-20709
- RESERVED
-CVE-2022-20708
- RESERVED
-CVE-2022-20707
- RESERVED
-CVE-2022-20706
- RESERVED
-CVE-2022-20705
- RESERVED
-CVE-2022-20704
- RESERVED
-CVE-2022-20703
- RESERVED
-CVE-2022-20702
- RESERVED
-CVE-2022-20701
- RESERVED
-CVE-2022-20700
- RESERVED
-CVE-2022-20699
- RESERVED
+CVE-2022-20712 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20711 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20710 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20709 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20708 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20707 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20706 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20705 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20704 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20703 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20702 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20701 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20700 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
+CVE-2022-20699 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, ...)
+ TODO: check
CVE-2022-20698 (A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) ...)
- clamav 0.103.5+dfsg-1
[bullseye] - clamav <no-dsa> (clamav is updated via -updates)
@@ -19263,8 +19695,8 @@ CVE-2022-20682
RESERVED
CVE-2022-20681
RESERVED
-CVE-2022-20680
- RESERVED
+CVE-2022-20680 (A vulnerability in the web-based management interface of Cisco Prime S ...)
+ TODO: check
CVE-2022-20679
RESERVED
CVE-2022-20678
@@ -19363,8 +19795,8 @@ CVE-2022-20632
RESERVED
CVE-2022-20631
RESERVED
-CVE-2022-20630
- RESERVED
+CVE-2022-20630 (A vulnerability in the audit log of Cisco DNA Center could allow an au ...)
+ TODO: check
CVE-2022-20629
RESERVED
CVE-2022-20628
@@ -24980,8 +25412,8 @@ CVE-2021-41447
RESERVED
CVE-2021-41446
RESERVED
-CVE-2021-41445
- RESERVED
+CVE-2021-41445 (A reflected cross-site-scripting attack in web application of D-Link D ...)
+ TODO: check
CVE-2021-41444
RESERVED
CVE-2021-41443
@@ -34660,8 +35092,8 @@ CVE-2021-37615 (Exiv2 is a command-line utility and C++ library for reading, wri
NOTE: https://github.com/Exiv2/exiv2/pull/1758
CVE-2021-37614 (In certain Progress MOVEit Transfer versions before 2021.0.3 (aka 13.0 ...)
NOT-FOR-US: MOVEit Transfer
-CVE-2021-37613
- RESERVED
+CVE-2021-37613 (Stormshield Network Security (SNS) 1.0.0 through 4.2.3 allows a Denial ...)
+ TODO: check
CVE-2021-37612
RESERVED
CVE-2021-37611
@@ -48872,8 +49304,8 @@ CVE-2021-3513
NOT-FOR-US: Keycloak
CVE-2021-31815 (GAEN (aka Google/Apple Exposure Notifications) through 2021-04-27 on A ...)
NOT-FOR-US: GAEN (aka Google/Apple Exposure Notifications)
-CVE-2021-31814
- RESERVED
+CVE-2021-31814 (In Stormshield 1.1.0, and 2.1.0 through 2.9.0, an attacker can block a ...)
+ TODO: check
CVE-2021-31813 (Zoho ManageEngine Applications Manager before 15130 is vulnerable to S ...)
NOT-FOR-US: Zoho
CVE-2021-31812 (In Apache PDFBox, a carefully crafted PDF file can trigger an infinite ...)
@@ -61962,8 +62394,8 @@ CVE-2021-26677 (A local authenticated escalation of privilege vulnerability was
NOT-FOR-US: Aruba
CVE-2021-3399
RESERVED
-CVE-2021-3398
- RESERVED
+CVE-2021-3398 (Stormshield Network Security (SNS) 3.x has an Integer Overflow in the ...)
+ TODO: check
CVE-2021-3397
RESERVED
CVE-2021-3396 (OpenNMS Meridian 2016, 2017, 2018 before 2018.1.25, 2019 before 2019.1 ...)
@@ -63744,8 +64176,8 @@ CVE-2021-25994 (In Userfrosting, versions v0.3.1 to v4.6.2 are vulnerable to Hos
NOT-FOR-US: Userfrosting
CVE-2021-25993 (In Requarks wiki.js, versions 2.0.0-beta.147 to 2.5.255 are affected b ...)
NOT-FOR-US: Requarks wiki.js
-CVE-2021-25992
- RESERVED
+CVE-2021-25992 (In Ifme, versions 1.0.0 to v.7.33.2 don’t properly invalidate a ...)
+ TODO: check
CVE-2021-25991 (In Ifme, versions v5.0.0 to v7.32 are vulnerable against an improper a ...)
NOT-FOR-US: Ifme
CVE-2021-25990 (In “ifme”, versions v7.22.0 to v7.31.4 are vulnerable agai ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9be7100250a0dee891abbea4c9fe6214fe47386e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9be7100250a0dee891abbea4c9fe6214fe47386e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220210/a3953ecc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list