[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jan 14 08:10:27 GMT 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a69e9b93 by security tracker role at 2022-01-14T08:10:10+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,71 @@
+CVE-2022-23219 (The deprecated compatibility function clnt_create in the sunrpc module ...)
+	TODO: check
+CVE-2022-23218 (The deprecated compatibility function svcunix_create in the sunrpc mod ...)
+	TODO: check
+CVE-2022-23217
+	RESERVED
+CVE-2022-23216
+	RESERVED
+CVE-2022-23215
+	RESERVED
+CVE-2022-23214
+	RESERVED
+CVE-2022-23213
+	RESERVED
+CVE-2022-23212
+	RESERVED
+CVE-2022-23211
+	RESERVED
+CVE-2022-23210
+	RESERVED
+CVE-2022-23209
+	RESERVED
+CVE-2022-23208
+	RESERVED
+CVE-2022-23207
+	RESERVED
+CVE-2022-0227
+	RESERVED
+CVE-2021-46303
+	RESERVED
+CVE-2021-46302
+	RESERVED
+CVE-2021-46301
+	RESERVED
+CVE-2021-46300
+	RESERVED
+CVE-2021-46299
+	RESERVED
+CVE-2021-46298
+	RESERVED
+CVE-2021-46297
+	RESERVED
+CVE-2021-46296
+	RESERVED
+CVE-2021-46295
+	RESERVED
+CVE-2021-46294
+	RESERVED
+CVE-2021-46293
+	RESERVED
+CVE-2021-46292
+	RESERVED
+CVE-2021-46291
+	RESERVED
+CVE-2021-46290
+	RESERVED
+CVE-2021-46289
+	RESERVED
+CVE-2021-46288
+	RESERVED
+CVE-2021-46287
+	RESERVED
+CVE-2021-46286
+	RESERVED
+CVE-2021-46285
+	RESERVED
+CVE-2021-46284
+	RESERVED
 CVE-2022-0226
 	RESERVED
 CVE-2022-0225
@@ -46,8 +114,8 @@ CVE-2021-31567
 	RESERVED
 CVE-2021-26256
 	RESERVED
-CVE-2021-23227
-	RESERVED
+CVE-2021-23227 (Cross-Site Request Forgery (CSRF) vulnerability discovered in PHP Ever ...)
+	TODO: check
 CVE-2021-23209
 	RESERVED
 CVE-2021-23174
@@ -564,14 +632,14 @@ CVE-2022-22993
 	RESERVED
 CVE-2022-22992
 	RESERVED
-CVE-2022-22991
-	RESERVED
-CVE-2022-22990
-	RESERVED
-CVE-2022-22989
-	RESERVED
-CVE-2022-22988
-	RESERVED
+CVE-2022-22991 (A malicious user on the same LAN could use DNS spoofing followed by a  ...)
+	TODO: check
+CVE-2022-22990 (A limited authentication bypass vulnerability was discovered that coul ...)
+	TODO: check
+CVE-2022-22989 (My Cloud OS 5 was vulnerable to a pre-authenticated stack overflow vul ...)
+	TODO: check
+CVE-2022-22988 (File and directory permissions have been corrected to prevent unintend ...)
+	TODO: check
 CVE-2022-21234
 	RESERVED
 CVE-2022-21210
@@ -586,8 +654,8 @@ CVE-2022-0180
 	RESERVED
 CVE-2022-0179 (snipe-it is vulnerable to Improper Access Control ...)
 	NOT-FOR-US: snipe-it
-CVE-2022-0178
-	RESERVED
+CVE-2022-0178 (snipe-it is vulnerable to Improper Access Control ...)
+	TODO: check
 CVE-2022-0177
 	RESERVED
 CVE-2021-4204 [eBPF Improper Input Validation Vulnerability]
@@ -931,8 +999,8 @@ CVE-2021-46257
 	RESERVED
 CVE-2021-46256
 	RESERVED
-CVE-2021-46255
-	RESERVED
+CVE-2021-46255 (eyouCMS V1.5.5-UTF8-SP3_1 suffers from Arbitrary file deletion due to  ...)
+	TODO: check
 CVE-2021-46254
 	RESERVED
 CVE-2021-46253
@@ -3908,8 +3976,8 @@ CVE-2021-45762
 	RESERVED
 CVE-2021-45761
 	RESERVED
-CVE-2021-45760
-	RESERVED
+CVE-2021-45760 (GPAC v1.1.0 was discovered to contain an invalid memory address derefe ...)
+	TODO: check
 CVE-2021-45759
 	RESERVED
 CVE-2021-45758
@@ -5090,12 +5158,12 @@ CVE-2022-22058
 	RESERVED
 CVE-2022-22057
 	RESERVED
-CVE-2022-22056
-	RESERVED
-CVE-2022-22055
-	RESERVED
-CVE-2022-22054
-	RESERVED
+CVE-2022-22056 (The Le-yan dental management system contains a hard-coded credentials  ...)
+	TODO: check
+CVE-2022-22055 (The Le-yan dental management system contains an SQL-injection vulnerab ...)
+	TODO: check
+CVE-2022-22054 (ASUS RT-AX56U’s login function contains a path traversal vulnera ...)
+	TODO: check
 CVE-2021-45458 (Apache Kylin provides encryption classes PasswordPlaceholderConfigurer ...)
 	NOT-FOR-US: Apache Kylin (different from Kylin desktop environment)
 CVE-2021-45457 (In Apache Kylin, Cross-origin requests with credentials are allowed to ...)
@@ -6377,20 +6445,20 @@ CVE-2021-45061
 	RESERVED
 CVE-2021-45060
 	RESERVED
-CVE-2021-45059
-	RESERVED
-CVE-2021-45058
-	RESERVED
-CVE-2021-45057
-	RESERVED
-CVE-2021-45056
-	RESERVED
-CVE-2021-45055
-	RESERVED
-CVE-2021-45054
-	RESERVED
-CVE-2021-45053
-	RESERVED
+CVE-2021-45059 (Adobe InDesign version 16.4 (and earlier) is affected by a use-after-f ...)
+	TODO: check
+CVE-2021-45058 (Adobe InDesign version 16.4 (and earlier) is affected by an out-of-bou ...)
+	TODO: check
+CVE-2021-45057 (Adobe InDesign version 16.4 (and earlier) is affected by an out-of-bou ...)
+	TODO: check
+CVE-2021-45056 (Adobe InCopy version 16.4 (and earlier) is affected by an out-of-bound ...)
+	TODO: check
+CVE-2021-45055 (Adobe InCopy version 16.4 (and earlier) is affected by an out-of-bound ...)
+	TODO: check
+CVE-2021-45054 (Adobe InCopy version 16.4 (and earlier) is affected by a use-after-fre ...)
+	TODO: check
+CVE-2021-45053 (Adobe InCopy version 16.4 (and earlier) is affected by an out-of-bound ...)
+	TODO: check
 CVE-2021-45052
 	RESERVED
 CVE-2021-45051
@@ -9123,12 +9191,12 @@ CVE-2021-44180 (Adobe Dimension versions 3.4.3 (and earlier) are affected by an
 	NOT-FOR-US: Adobe
 CVE-2021-44179 (Adobe Dimension versions 3.4.3 (and earlier) is affected by a memory c ...)
 	NOT-FOR-US: Adobe
-CVE-2021-44178
-	RESERVED
-CVE-2021-44177
-	RESERVED
-CVE-2021-44176
-	RESERVED
+CVE-2021-44178 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and below)  ...)
+	TODO: check
+CVE-2021-44177 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and below)  ...)
+	TODO: check
+CVE-2021-44176 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and below)  ...)
+	TODO: check
 CVE-2021-44175
 	RESERVED
 CVE-2021-44174
@@ -9873,12 +9941,11 @@ CVE-2022-21686
 	RESERVED
 CVE-2022-21685
 	RESERVED
-CVE-2022-21684
-	RESERVED
+CVE-2022-21684 (Discourse is an open source discussion platform. Versions prior to 2.7 ...)
+	TODO: check
 CVE-2022-21683
 	RESERVED
-CVE-2022-21682 [flatpak-builder --mirror-screenshots-url can access files outside the build directory]
-	RESERVED
+CVE-2022-21682 (Flatpak is a Linux application sandboxing and distribution framework.  ...)
 	- flatpak 1.12.3-1
 	NOTE: https://github.com/flatpak/flatpak/security/advisories/GHSA-8ch7-5j3h-g4fx
 	NOTE: https://github.com/flatpak/flatpak/commit/445bddeee657fdc8d2a0a1f0de12975400d4fc1a
@@ -11233,16 +11300,16 @@ CVE-2021-43767
 	RESERVED
 CVE-2021-43766
 	RESERVED
-CVE-2021-43765
-	RESERVED
-CVE-2021-43764
-	RESERVED
+CVE-2021-43765 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and below)  ...)
+	TODO: check
+CVE-2021-43764 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and below)  ...)
+	TODO: check
 CVE-2021-43763 (Adobe Dimension versions 3.4.3 (and earlier) are affected by an out-of ...)
 	NOT-FOR-US: Adobe
-CVE-2021-43762
-	RESERVED
-CVE-2021-43761
-	RESERVED
+CVE-2021-43762 (AEM's Cloud Service offering, as well as version 6.5.10.0 (and below)  ...)
+	TODO: check
+CVE-2021-43761 (AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), ...)
+	TODO: check
 CVE-2021-43760
 	RESERVED
 CVE-2021-43759
@@ -13457,8 +13524,7 @@ CVE-2022-20700
 	RESERVED
 CVE-2022-20699
 	RESERVED
-CVE-2022-20698
-	RESERVED
+CVE-2022-20698 (A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) ...)
 	- clamav 0.103.5+dfsg-1
 	[bullseye] - clamav <no-dsa> (clamav is updated via -updates)
 	[buster] - clamav <no-dsa> (clamav is updated via -updates)
@@ -13539,12 +13605,12 @@ CVE-2022-20662
 	RESERVED
 CVE-2022-20661
 	RESERVED
-CVE-2022-20660
-	RESERVED
+CVE-2022-20660 (A vulnerability in the information storage architecture of several Cis ...)
+	TODO: check
 CVE-2022-20659
 	RESERVED
-CVE-2022-20658
-	RESERVED
+CVE-2022-20658 (A vulnerability in the web-based management interface of Cisco Unified ...)
+	TODO: check
 CVE-2022-20657
 	RESERVED
 CVE-2022-20656
@@ -13565,32 +13631,32 @@ CVE-2022-20649
 	RESERVED
 CVE-2022-20648
 	RESERVED
-CVE-2022-20647
-	RESERVED
-CVE-2022-20646
-	RESERVED
-CVE-2022-20645
-	RESERVED
-CVE-2022-20644
-	RESERVED
-CVE-2022-20643
-	RESERVED
-CVE-2022-20642
-	RESERVED
-CVE-2022-20641
-	RESERVED
-CVE-2022-20640
-	RESERVED
-CVE-2022-20639
-	RESERVED
-CVE-2022-20638
-	RESERVED
-CVE-2022-20637
-	RESERVED
-CVE-2022-20636
-	RESERVED
-CVE-2022-20635
-	RESERVED
+CVE-2022-20647 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20646 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20645 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20644 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20643 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20642 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20641 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20640 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20639 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20638 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20637 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20636 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
+CVE-2022-20635 (Multiple vulnerabilities in the web-based management interface of Cisc ...)
+	TODO: check
 CVE-2022-20634
 	RESERVED
 CVE-2022-20633
@@ -20939,8 +21005,8 @@ CVE-2021-40724 (Acrobat Reader for Android versions 21.8.0 (and earlier) are aff
 	NOT-FOR-US: Adobe
 CVE-2021-40723
 	RESERVED
-CVE-2021-40722
-	RESERVED
+CVE-2021-40722 (AEM Forms Cloud Service offering, as well as version 6.5.10.0 (and bel ...)
+	TODO: check
 CVE-2021-40721 (Adobe Connect version 11.2.3 (and earlier) is affected by a reflected  ...)
 	NOT-FOR-US: Adobe
 CVE-2021-40720 (Ops CLI version 2.0.4 (and earlier) is affected by a Deserialization o ...)
@@ -24322,7 +24388,7 @@ CVE-2021-39319 (The duoFAQ - Responsive, Flat, Simple FAQ WordPess plugin is vul
 	NOT-FOR-US: WordPess plugin
 CVE-2021-39318 (The H5P CSS Editor WordPress plugin is vulnerable to Reflected Cross-S ...)
 	NOT-FOR-US: WordPess plugin
-CVE-2021-39317 (Versions up to, and including, 1.0.6, of the Access Demo Importer Word ...)
+CVE-2021-39317 (A WordPress plugin and several WordPress themes developed by AccessPre ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-39316 (The Zoomsounds plugin <= 6.45 for WordPress allows arbitrary files, ...)
 	NOT-FOR-US: WordPress plugin
@@ -25863,14 +25929,14 @@ CVE-2020-36473 (UCWeb UC 12.12.3.1219 through 12.12.3.1226 uses cleartext HTTP,
 	NOT-FOR-US: UCWeb UC
 CVE-2021-38693
 	RESERVED
-CVE-2021-38692
-	RESERVED
-CVE-2021-38691
-	RESERVED
-CVE-2021-38690
-	RESERVED
-CVE-2021-38689
-	RESERVED
+CVE-2021-38692 (A stack buffer overflow vulnerability has been reported to affect QNAP ...)
+	TODO: check
+CVE-2021-38691 (A stack buffer overflow vulnerability has been reported to affect QNAP ...)
+	TODO: check
+CVE-2021-38690 (A stack buffer overflow vulnerability has been reported to affect QNAP ...)
+	TODO: check
+CVE-2021-38689 (A stack buffer overflow vulnerability has been reported to affect QNAP ...)
+	TODO: check
 CVE-2021-38688 (An improper authentication vulnerability has been reported to affect A ...)
 	NOT-FOR-US: QNAP
 CVE-2021-38687 (A stack buffer overflow vulnerability has been reported to affect QNAP ...)
@@ -25883,18 +25949,18 @@ CVE-2021-38684 (A stack buffer overflow vulnerability has been reported to affec
 	NOT-FOR-US: QNAP
 CVE-2021-38683
 	RESERVED
-CVE-2021-38682
-	RESERVED
+CVE-2021-38682 (A stack buffer overflow vulnerability has been reported to affect QNAP ...)
+	TODO: check
 CVE-2021-38681 (A reflected cross-site scripting (XSS) vulnerability has been reported ...)
 	NOT-FOR-US: QNAP
 CVE-2021-38680 (A cross-site scripting (XSS) vulnerability has been reported to affect ...)
 	NOT-FOR-US: QNAP
 CVE-2021-38679
 	RESERVED
-CVE-2021-38678
-	RESERVED
-CVE-2021-38677
-	RESERVED
+CVE-2021-38678 (An open redirect vulnerability has been reported to affect QNAP device ...)
+	TODO: check
+CVE-2021-38677 (A cross-site scripting (XSS) vulnerability has been reported to affect ...)
+	TODO: check
 CVE-2021-38676
 	RESERVED
 CVE-2021-38675 (A cross-site scripting (XSS) vulnerability has been reported to affect ...)
@@ -34828,18 +34894,18 @@ CVE-2021-35000
 	RESERVED
 CVE-2021-34999
 	RESERVED
-CVE-2021-34998
-	RESERVED
-CVE-2021-34997
-	RESERVED
-CVE-2021-34996
-	RESERVED
-CVE-2021-34995
-	RESERVED
-CVE-2021-34994
-	RESERVED
-CVE-2021-34993
-	RESERVED
+CVE-2021-34998 (This vulnerability allows local attackers to escalate privileges on af ...)
+	TODO: check
+CVE-2021-34997 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34996 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34995 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34994 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34993 (This vulnerability allows remote attackers to bypass authentication on ...)
+	TODO: check
 CVE-2021-34992 (This vulnerability allows remote attackers to execute arbitrary code o ...)
 	NOT-FOR-US: Orckestra C1 CMS
 CVE-2021-34991 (This vulnerability allows network-adjacent attackers to execute arbitr ...)
@@ -34854,10 +34920,10 @@ CVE-2021-34987
 	RESERVED
 CVE-2021-34986
 	RESERVED
-CVE-2021-34985
-	RESERVED
-CVE-2021-34984
-	RESERVED
+CVE-2021-34985 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34984 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
 CVE-2021-34983
 	RESERVED
 CVE-2021-34982
@@ -34869,14 +34935,14 @@ CVE-2021-34981 [Bluetooth CMTP Module Double Free Privilege Escalation Vulnerabi
 	[stretch] - linux 4.9.272-1
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-21-1223/
 	NOTE: https://git.kernel.org/linus/3cfdf8fcaafa62a4123f92eb0f4a72650da3a479 (5.14-rc1)
-CVE-2021-34980
-	RESERVED
-CVE-2021-34979
-	RESERVED
-CVE-2021-34978
-	RESERVED
-CVE-2021-34977
-	RESERVED
+CVE-2021-34980 (This vulnerability allows network-adjacent attackers to execute arbitr ...)
+	TODO: check
+CVE-2021-34979 (This vulnerability allows network-adjacent attackers to execute arbitr ...)
+	TODO: check
+CVE-2021-34978 (This vulnerability allows network-adjacent attackers to execute arbitr ...)
+	TODO: check
+CVE-2021-34977 (This vulnerability allows network-adjacent attackers to bypass authent ...)
+	TODO: check
 CVE-2021-34976
 	RESERVED
 CVE-2021-34975
@@ -34937,158 +35003,158 @@ CVE-2021-34948
 	RESERVED
 CVE-2021-34947
 	RESERVED
-CVE-2021-34946
-	RESERVED
-CVE-2021-34945
-	RESERVED
-CVE-2021-34944
-	RESERVED
-CVE-2021-34943
-	RESERVED
-CVE-2021-34942
-	RESERVED
-CVE-2021-34941
-	RESERVED
-CVE-2021-34940
-	RESERVED
-CVE-2021-34939
-	RESERVED
-CVE-2021-34938
-	RESERVED
-CVE-2021-34937
-	RESERVED
-CVE-2021-34936
-	RESERVED
-CVE-2021-34935
-	RESERVED
-CVE-2021-34934
-	RESERVED
-CVE-2021-34933
-	RESERVED
-CVE-2021-34932
-	RESERVED
-CVE-2021-34931
-	RESERVED
-CVE-2021-34930
-	RESERVED
-CVE-2021-34929
-	RESERVED
-CVE-2021-34928
-	RESERVED
-CVE-2021-34927
-	RESERVED
-CVE-2021-34926
-	RESERVED
-CVE-2021-34925
-	RESERVED
-CVE-2021-34924
-	RESERVED
-CVE-2021-34923
-	RESERVED
-CVE-2021-34922
-	RESERVED
-CVE-2021-34921
-	RESERVED
-CVE-2021-34920
-	RESERVED
-CVE-2021-34919
-	RESERVED
-CVE-2021-34918
-	RESERVED
-CVE-2021-34917
-	RESERVED
-CVE-2021-34916
-	RESERVED
-CVE-2021-34915
-	RESERVED
-CVE-2021-34914
-	RESERVED
-CVE-2021-34913
-	RESERVED
-CVE-2021-34912
-	RESERVED
-CVE-2021-34911
-	RESERVED
-CVE-2021-34910
-	RESERVED
-CVE-2021-34909
-	RESERVED
-CVE-2021-34908
-	RESERVED
-CVE-2021-34907
-	RESERVED
-CVE-2021-34906
-	RESERVED
-CVE-2021-34905
-	RESERVED
-CVE-2021-34904
-	RESERVED
-CVE-2021-34903
-	RESERVED
-CVE-2021-34902
-	RESERVED
-CVE-2021-34901
-	RESERVED
-CVE-2021-34900
-	RESERVED
-CVE-2021-34899
-	RESERVED
-CVE-2021-34898
-	RESERVED
-CVE-2021-34897
-	RESERVED
-CVE-2021-34896
-	RESERVED
-CVE-2021-34895
-	RESERVED
-CVE-2021-34894
-	RESERVED
-CVE-2021-34893
-	RESERVED
-CVE-2021-34892
-	RESERVED
-CVE-2021-34891
-	RESERVED
-CVE-2021-34890
-	RESERVED
-CVE-2021-34889
-	RESERVED
-CVE-2021-34888
-	RESERVED
-CVE-2021-34887
-	RESERVED
-CVE-2021-34886
-	RESERVED
-CVE-2021-34885
-	RESERVED
-CVE-2021-34884
-	RESERVED
-CVE-2021-34883
-	RESERVED
-CVE-2021-34882
-	RESERVED
-CVE-2021-34881
-	RESERVED
-CVE-2021-34880
-	RESERVED
-CVE-2021-34879
-	RESERVED
-CVE-2021-34878
-	RESERVED
-CVE-2021-34877
-	RESERVED
-CVE-2021-34876
-	RESERVED
-CVE-2021-34875
-	RESERVED
-CVE-2021-34874
-	RESERVED
-CVE-2021-34873
-	RESERVED
-CVE-2021-34872
-	RESERVED
-CVE-2021-34871
-	RESERVED
+CVE-2021-34946 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34945 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34944 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34943 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34942 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34941 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34940 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34939 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34938 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34937 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34936 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34935 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34934 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34933 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34932 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34931 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34930 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34929 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34928 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34927 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34926 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34925 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34924 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34923 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34922 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34921 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34920 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34919 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34918 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34917 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34916 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34915 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34914 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34913 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34912 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34911 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34910 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34909 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34908 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34907 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34906 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34905 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34904 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34903 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34902 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34901 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34900 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34899 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34898 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34897 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34896 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34895 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34894 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34893 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34892 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34891 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34890 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34889 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34888 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34887 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34886 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34885 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34884 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34883 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34882 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34881 (This vulnerability allows remote attackers to disclose sensitive infor ...)
+	TODO: check
+CVE-2021-34880 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34879 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34878 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34877 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34876 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34875 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34874 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34873 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34872 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
+CVE-2021-34871 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
 CVE-2021-34870
 	RESERVED
 CVE-2021-34869
@@ -35118,8 +35184,8 @@ CVE-2021-34860 (This vulnerability allows network-adjacent attackers to disclose
 	NOT-FOR-US: D-Link
 CVE-2021-34859 (This vulnerability allows remote attackers to execute arbitrary code o ...)
 	NOT-FOR-US: TeamViewer
-CVE-2021-34858
-	RESERVED
+CVE-2021-34858 (This vulnerability allows remote attackers to execute arbitrary code o ...)
+	TODO: check
 CVE-2021-34857 (This vulnerability allows local attackers to escalate privileges on af ...)
 	NOT-FOR-US: Parallels Desktop
 CVE-2021-34856 (This vulnerability allows local attackers to escalate privileges on af ...)
@@ -39474,8 +39540,8 @@ CVE-2021-33048
 	RESERVED
 CVE-2021-33047
 	RESERVED
-CVE-2021-33046
-	RESERVED
+CVE-2021-33046 (Some Dahua products have access control vulnerability in the password  ...)
+	TODO: check
 CVE-2021-33045 (The identity authentication bypass vulnerability found in some Dahua p ...)
 	NOT-FOR-US: Dahua
 CVE-2021-33044 (The identity authentication bypass vulnerability found in some Dahua p ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a69e9b93d09954e2023168e8a242c68f864820fd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a69e9b93d09954e2023168e8a242c68f864820fd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220114/f8ce22eb/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list