[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jan 2 08:10:19 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d91b87ec by security tracker role at 2022-01-02T08:10:10+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,55 @@
+CVE-2022-22293 (admin/limits.php in Dolibarr 7.0.2 allows HTML injection, as demonstra ...)
+	TODO: check
+CVE-2022-0081
+	RESERVED
+CVE-2021-45984
+	RESERVED
+CVE-2021-45983
+	RESERVED
+CVE-2021-45982
+	RESERVED
+CVE-2021-45981
+	RESERVED
+CVE-2021-45980
+	RESERVED
+CVE-2021-45979
+	RESERVED
+CVE-2021-45978
+	RESERVED
+CVE-2021-45977
+	RESERVED
+CVE-2021-45976
+	RESERVED
+CVE-2021-45975
+	RESERVED
+CVE-2021-45974
+	RESERVED
+CVE-2021-45973
+	RESERVED
+CVE-2021-45972 (The giftrans function in giftrans 1.12.2 contains a stack-based buffer ...)
+	TODO: check
+CVE-2021-45971
+	RESERVED
+CVE-2021-45970
+	RESERVED
+CVE-2021-45969
+	RESERVED
+CVE-2021-45968
+	RESERVED
+CVE-2021-45967
+	RESERVED
+CVE-2021-45966
+	RESERVED
+CVE-2021-45965
+	RESERVED
+CVE-2021-45964
+	RESERVED
+CVE-2021-45963
+	RESERVED
+CVE-2021-45962
+	RESERVED
+CVE-2021-45961
+	RESERVED
 CVE-2022-0080
 	RESERVED
 CVE-2021-45960 (In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) pla ...)
@@ -3728,8 +3780,8 @@ CVE-2021-44898
 	RESERVED
 CVE-2021-44897
 	RESERVED
-CVE-2021-44896
-	RESERVED
+CVE-2021-44896 (DMP Roadmap before 3.0.4 allows XSS. ...)
+	TODO: check
 CVE-2021-44895
 	RESERVED
 CVE-2021-44894
@@ -17961,7 +18013,7 @@ CVE-2021-40533
 CVE-2021-40532 (Telegram Web K Alpha before 0.7.2 mishandles the characters in a docum ...)
 	NOT-FOR-US: tweb
 	NOTE: https://github.com/morethanwords/tweb
-CVE-2021-40531 (An issue discovered in sketch before version 75,that allows for librar ...)
+CVE-2021-40531 (Sketch before 75 allows library feeds to be used to bypass file quaran ...)
 	NOT-FOR-US: Sketch collaborative design (Mac or Web app)
 	NOTE: sketch.com, not the sketch package in Debian.
 CVE-2021-40530 (The ElGamal implementation in Crypto++ through 8.5 allows plaintext re ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d91b87eca8af973cf64ab1887240509b25cd4fe2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d91b87eca8af973cf64ab1887240509b25cd4fe2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220102/ab9123f7/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list