[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jan 9 20:10:33 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cca1de24 by security tracker role at 2022-01-09T20:10:22+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2022-0158
+	RESERVED
+CVE-2022-0157
+	RESERVED
 CVE-2022-22848
 	RESERVED
 CVE-2022-22847
@@ -5,8 +9,8 @@ CVE-2022-22847
 CVE-2022-22846 (The dnslib package through 0.9.16 for Python does not verify that the  ...)
 	- python-dnslib <unfixed>
 	NOTE: https://github.com/paulc/dnslib/issues/30
-CVE-2022-22845
-	RESERVED
+CVE-2022-22845 (QXIP SIPCAPTURE homer-app before 1.4.28 for HOMER 7.x has the same 167 ...)
+	TODO: check
 CVE-2022-22844 (LibTIFF 4.3.0 has an out-of-bounds read in _TIFFmemcpy in tif_unix.c i ...)
 	- tiff <unfixed>
 	[bullseye] - tiff <no-dsa> (Minor issue)
@@ -51,8 +55,8 @@ CVE-2021-46165 (Zoho ManageEngine Desktop Central before 10.0.662, during startu
 	NOT-FOR-US: Zoho ManageEngine
 CVE-2021-46164 (Zoho ManageEngine Desktop Central before 10.0.662 allows remote code e ...)
 	NOT-FOR-US: Zoho ManageEngine
-CVE-2021-46163
-	RESERVED
+CVE-2021-46163 (Kentico Xperience 13.0.44 allows XSS via an XML document to the Media  ...)
+	TODO: check
 CVE-2022-0156
 	RESERVED
 CVE-2022-22827 (storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an in ...)
@@ -2432,8 +2436,8 @@ CVE-2021-45858
 	RESERVED
 CVE-2021-45857
 	RESERVED
-CVE-2021-45856
-	RESERVED
+CVE-2021-45856 (Accu-Time Systems MAXIMUS 1.0 telnet service suffers from a remote buf ...)
+	TODO: check
 CVE-2021-45855
 	RESERVED
 CVE-2021-45854
@@ -4086,8 +4090,8 @@ CVE-2021-45336 (Privilege escalation vulnerability in the Sandbox component of A
 	NOT-FOR-US: Avast Antivirus
 CVE-2021-45335 (Sandbox component in Avast Antivirus prior to 20.4 has an insecure per ...)
 	NOT-FOR-US: Avast Antivirus
-CVE-2021-45334
-	RESERVED
+CVE-2021-45334 (Sourcecodester Online Thesis Archiving System 1.0 is vulnerable to SQL ...)
+	TODO: check
 CVE-2021-45333
 	RESERVED
 CVE-2021-45332



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cca1de241f1e6cee5c11a97de722c7a07472260e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cca1de241f1e6cee5c11a97de722c7a07472260e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220109/da5ac7ca/attachment.htm>

More information about the debian-security-tracker-commits mailing list