[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jan 14 20:10:25 GMT 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
85baff29 by security tracker role at 2022-01-14T20:10:16+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,4 +1,48 @@
-CVE-2022-23222
+CVE-2022-23231
+	RESERVED
+CVE-2022-23230
+	RESERVED
+CVE-2022-23229
+	RESERVED
+CVE-2022-23228
+	RESERVED
+CVE-2022-23227 (NUUO NVRmini2 through 3.11 allows an unauthenticated attacker to uploa ...)
+	TODO: check
+CVE-2022-23226
+	RESERVED
+CVE-2022-23225
+	RESERVED
+CVE-2022-23224
+	RESERVED
+CVE-2022-23223
+	RESERVED
+CVE-2022-23221
+	RESERVED
+CVE-2022-23220
+	RESERVED
+CVE-2022-0237
+	RESERVED
+CVE-2022-0236
+	RESERVED
+CVE-2022-0235
+	RESERVED
+CVE-2022-0234
+	RESERVED
+CVE-2022-0233
+	RESERVED
+CVE-2022-0232
+	RESERVED
+CVE-2022-0231 (livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF) ...)
+	TODO: check
+CVE-2022-0230
+	RESERVED
+CVE-2022-0229
+	RESERVED
+CVE-2022-0228
+	RESERVED
+CVE-2021-46304
+	RESERVED
+CVE-2022-23222 (kernel/bpf/verifier.c in the Linux kernel through 5.15.14 allows local ...)
 	- linux <unfixed>
 	[buster] - linux <not-affected> (Vulnerable code not present)
 	[stretch] - linux <not-affected> (Vulnerable code not present)
@@ -73,12 +117,12 @@ CVE-2021-46285
 	RESERVED
 CVE-2021-46284
 	RESERVED
-CVE-2022-0226
-	RESERVED
+CVE-2022-0226 (livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF) ...)
+	TODO: check
 CVE-2022-0225
 	RESERVED
-CVE-2022-0224
-	RESERVED
+CVE-2022-0224 (dolibarr is vulnerable to Improper Neutralization of Special Elements  ...)
+	TODO: check
 CVE-2022-0223
 	RESERVED
 CVE-2022-0222
@@ -97,8 +141,8 @@ CVE-2022-0215
 	RESERVED
 CVE-2022-0214
 	RESERVED
-CVE-2022-0213
-	RESERVED
+CVE-2022-0213 (vim is vulnerable to Heap-based Buffer Overflow ...)
+	TODO: check
 CVE-2022-0212
 	RESERVED
 CVE-2022-0211
@@ -1458,7 +1502,7 @@ CVE-2022-22752
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-01/#CVE-2022-22752
 CVE-2022-22751
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -1475,7 +1519,7 @@ CVE-2022-22749
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-01/#CVE-2022-22749
 CVE-2022-22748
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -1484,7 +1528,7 @@ CVE-2022-22748
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22748
 CVE-2022-22747
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- nss 2:3.73-1
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
@@ -1504,7 +1548,7 @@ CVE-2022-22746
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22746
 CVE-2022-22745
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -1521,7 +1565,7 @@ CVE-2022-22744
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22744
 CVE-2022-22743
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -1530,7 +1574,7 @@ CVE-2022-22743
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22743
 CVE-2022-22742
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -1539,7 +1583,7 @@ CVE-2022-22742
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22742
 CVE-2022-22741
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -1548,7 +1592,7 @@ CVE-2022-22741
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22741
 CVE-2022-22740
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -1557,7 +1601,7 @@ CVE-2022-22740
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22740
 CVE-2022-22739
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -1566,7 +1610,7 @@ CVE-2022-22739
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22739
 CVE-2022-22738
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -1575,7 +1619,7 @@ CVE-2022-22738
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22738
 CVE-2022-22737
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -2148,100 +2192,124 @@ CVE-2022-22527
 	RESERVED
 CVE-2022-0120
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0119
 	RESERVED
 CVE-2022-0118
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0117
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0116
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0115
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0114
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0113
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0112
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0111
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0110
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0109
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0108
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0107
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0106
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0105
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0104
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0103
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0102
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0101
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0100
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0099
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0098
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0097
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0096
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-0095
@@ -3979,12 +4047,12 @@ CVE-2021-45765
 	RESERVED
 CVE-2021-45764
 	RESERVED
-CVE-2021-45763
-	RESERVED
-CVE-2021-45762
-	RESERVED
-CVE-2021-45761
-	RESERVED
+CVE-2021-45763 (GPAC v1.1.0 was discovered to contain an invalid call in the function  ...)
+	TODO: check
+CVE-2021-45762 (GPAC v1.1.0 was discovered to contain an invalid memory address derefe ...)
+	TODO: check
+CVE-2021-45761 (ROPium v3.1 was discovered to contain an invalid memory address derefe ...)
+	TODO: check
 CVE-2021-45760 (GPAC v1.1.0 was discovered to contain an invalid memory address derefe ...)
 	TODO: check
 CVE-2021-45759
@@ -4677,8 +4745,8 @@ CVE-2021-4161 (The affected products contain vulnerable firmware, which could al
 CVE-2021-45469 (In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15 ...)
 	- linux <unfixed>
 	NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=215235
-CVE-2021-45468
-	RESERVED
+CVE-2021-45468 (Imperva Web Application Firewall (WAF) before 2021-12-31 allows remote ...)
+	TODO: check
 CVE-2021-45467
 	RESERVED
 CVE-2021-45466
@@ -5729,7 +5797,7 @@ CVE-2021-4141
 	RESERVED
 CVE-2021-4140
 	RESERVED
-	{DSA-5044-1}
+	{DSA-5045-1 DSA-5044-1}
 	- firefox 96.0-1
 	- firefox-esr 91.5.0esr-1
 	- thunderbird 1:91.5.0-1
@@ -6437,24 +6505,24 @@ CVE-2021-45070
 	RESERVED
 CVE-2021-45069
 	RESERVED
-CVE-2021-45068
-	RESERVED
-CVE-2021-45067
-	RESERVED
+CVE-2021-45068 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-45067 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
 CVE-2021-45066
 	RESERVED
 CVE-2021-45065
 	RESERVED
-CVE-2021-45064
-	RESERVED
-CVE-2021-45063
-	RESERVED
-CVE-2021-45062
-	RESERVED
-CVE-2021-45061
-	RESERVED
-CVE-2021-45060
-	RESERVED
+CVE-2021-45064 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-45063 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-45062 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-45061 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-45060 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
 CVE-2021-45059 (Adobe InDesign version 16.4 (and earlier) is affected by a use-after-f ...)
 	TODO: check
 CVE-2021-45058 (Adobe InDesign version 16.4 (and earlier) is affected by an out-of-bou ...)
@@ -6469,10 +6537,10 @@ CVE-2021-45054 (Adobe InCopy version 16.4 (and earlier) is affected by a use-aft
 	TODO: check
 CVE-2021-45053 (Adobe InCopy version 16.4 (and earlier) is affected by an out-of-bound ...)
 	TODO: check
-CVE-2021-45052
-	RESERVED
-CVE-2021-45051
-	RESERVED
+CVE-2021-45052 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0 (and earlie ...)
+	TODO: check
+CVE-2021-45051 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0 (and earlie ...)
+	TODO: check
 CVE-2021-4120
 	RESERVED
 CVE-2021-45050
@@ -7359,22 +7427,27 @@ CVE-2021-44796
 	RESERVED
 CVE-2021-4102
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4101
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4100
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4099
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4098
 	RESERVED
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4097 (phpservermon is vulnerable to Improper Neutralization of CRLF Sequence ...)
@@ -7577,16 +7650,16 @@ CVE-2021-44745
 	RESERVED
 CVE-2021-44744
 	RESERVED
-CVE-2021-44743
-	RESERVED
-CVE-2021-44742
-	RESERVED
-CVE-2021-44741
-	RESERVED
-CVE-2021-44740
-	RESERVED
-CVE-2021-44739
-	RESERVED
+CVE-2021-44743 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0 (and earlie ...)
+	TODO: check
+CVE-2021-44742 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44741 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44740 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44739 (Acrobat Reader DC ActiveX Control versions 21.007.20099 (and earlier), ...)
+	TODO: check
 CVE-2021-44545
 	RESERVED
 CVE-2021-44457
@@ -7686,38 +7759,38 @@ CVE-2021-44716 (net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows un
 	NOTE: https://github.com/golang/go/commit/48d948963c5ce7add72af5665a871caff6c1d35a (go1.17.5)
 	NOTE: https://github.com/golang/go/commit/d0aebe3e74fe14799f97ddd3f01129697c6a290a (go1.16.12)
 	NOTE: https://github.com/golang/net/commit/491a49abca63de5e07ef554052d180a1b5fe2d70
-CVE-2021-44715
-	RESERVED
-CVE-2021-44714
-	RESERVED
-CVE-2021-44713
-	RESERVED
-CVE-2021-44712
-	RESERVED
-CVE-2021-44711
-	RESERVED
-CVE-2021-44710
-	RESERVED
-CVE-2021-44709
-	RESERVED
-CVE-2021-44708
-	RESERVED
-CVE-2021-44707
-	RESERVED
-CVE-2021-44706
-	RESERVED
-CVE-2021-44705
-	RESERVED
-CVE-2021-44704
-	RESERVED
-CVE-2021-44703
-	RESERVED
-CVE-2021-44702
-	RESERVED
-CVE-2021-44701
-	RESERVED
-CVE-2021-44700
-	RESERVED
+CVE-2021-44715 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44714 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44713 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44712 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44711 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44710 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44709 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44708 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44707 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44706 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44705 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44704 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44703 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44702 (Acrobat Reader DC ActiveX Control versions 21.007.20099 (and earlier), ...)
+	TODO: check
+CVE-2021-44701 (Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (an ...)
+	TODO: check
+CVE-2021-44700 (Adobe Illustrator versions 25.4.2 (and earlier) and 26.0.1 (and earlie ...)
+	TODO: check
 CVE-2021-44699 (Adobe Audition versions 14.4 (and earlier), and 22.0 (and earlier)are  ...)
 	NOT-FOR-US: Adobe
 CVE-2021-44698 (Adobe Audition versions 14.4 (and earlier), and 22.0 (and earlier)are  ...)
@@ -7733,9 +7806,11 @@ CVE-2021-44694
 CVE-2021-44693
 	RESERVED
 CVE-2021-4079 (Out of bounds write in WebRTC in Google Chrome prior to 96.0.4664.93 a ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4078 (Type confusion in V8 in Google Chrome prior to 96.0.4664.93 allowed a  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4077
@@ -8066,53 +8141,69 @@ CVE-2021-4069 (vim is vulnerable to Use After Free ...)
 CVE-2021-44548 (An Improper Input Validation vulnerability in DataImportHandler of Apa ...)
 	TODO: check
 CVE-2021-4068 (Insufficient data validation in new tab page in Google Chrome prior to ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4067 (Use after free in window manager in Google Chrome on ChromeOS prior to ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4066 (Integer underflow in ANGLE in Google Chrome prior to 96.0.4664.93 allo ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4065 (Use after free in autofill in Google Chrome prior to 96.0.4664.93 allo ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4064 (Use after free in screen capture in Google Chrome on ChromeOS prior to ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4063 (Use after free in developer tools in Google Chrome prior to 96.0.4664. ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4062 (Heap buffer overflow in BFCache in Google Chrome prior to 96.0.4664.93 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4061 (Type confusion in V8 in Google Chrome prior to 96.0.4664.93 allowed a  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4060
 	RESERVED
 CVE-2021-4059 (Insufficient data validation in loader in Google Chrome prior to 96.0. ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4058 (Heap buffer overflow in ANGLE in Google Chrome prior to 96.0.4664.93 a ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4057 (Use after free in file API in Google Chrome prior to 96.0.4664.93 allo ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4056 (Type confusion in loader in Google Chrome prior to 96.0.4664.93 allowe ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4055 (Heap buffer overflow in extensions in Google Chrome prior to 96.0.4664 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4054 (Incorrect security UI in autofill in Google Chrome prior to 96.0.4664. ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4053 (Use after free in UI in Google Chrome on Linux prior to 96.0.4664.93 a ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4052 (Use after free in web apps in Google Chrome prior to 96.0.4664.93 allo ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-4051
@@ -9185,11 +9276,11 @@ CVE-2021-44189
 	RESERVED
 CVE-2021-44188
 	RESERVED
-CVE-2021-44187 (Adobe Bridge versions 11.1.1 (and earlier) are affected by an out-of-b ...)
+CVE-2021-44187 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0 (and earlie ...)
 	NOT-FOR-US: Adobe
-CVE-2021-44186 (Adobe Bridge versions 11.1.1 (and earlier) are affected by an out-of-b ...)
+CVE-2021-44186 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0 (and earlie ...)
 	NOT-FOR-US: Adobe
-CVE-2021-44185 (Adobe Bridge versions 11.1.1 (and earlier) are affected by an out-of-b ...)
+CVE-2021-44185 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0 (and earlie ...)
 	NOT-FOR-US: Adobe
 CVE-2021-44184
 	RESERVED
@@ -9951,8 +10042,8 @@ CVE-2022-21687
 	RESERVED
 CVE-2022-21686
 	RESERVED
-CVE-2022-21685
-	RESERVED
+CVE-2022-21685 (Frontier is Substrate's Ethereum compatibility layer. Prior to commit  ...)
+	TODO: check
 CVE-2022-21684 (Discourse is an open source discussion platform. Versions prior to 2.7 ...)
 	TODO: check
 CVE-2022-21683
@@ -9962,16 +10053,16 @@ CVE-2022-21682 (Flatpak is a Linux application sandboxing and distribution frame
 	NOTE: https://github.com/flatpak/flatpak/security/advisories/GHSA-8ch7-5j3h-g4fx
 	NOTE: https://github.com/flatpak/flatpak/commit/445bddeee657fdc8d2a0a1f0de12975400d4fc1a
 	NOTE: Documentation: https://github.com/flatpak/flatpak/commit/4d11f77aa7fd3e64cfa80af89d92567ab9e8e6fa
-CVE-2022-21681
-	RESERVED
-CVE-2022-21680
-	RESERVED
+CVE-2022-21681 (Marked is a markdown parser and compiler. Prior to version 4.0.10, the ...)
+	TODO: check
+CVE-2022-21680 (Marked is a markdown parser and compiler. Prior to version 4.0.10, the ...)
+	TODO: check
 CVE-2022-21679
 	RESERVED
 CVE-2022-21678 (Discourse is an open source discussion platform. Prior to version 2.8. ...)
 	TODO: check
-CVE-2022-21677
-	RESERVED
+CVE-2022-21677 (Discourse is an open source discussion platform. Discourse groups can  ...)
+	TODO: check
 CVE-2022-21676 (Engine.IO is the implementation of transport-based cross-browser/cross ...)
 	TODO: check
 CVE-2022-21675 (Bytecode Viewer (BCV) is a Java/Android reverse engineering suite. Ver ...)
@@ -11338,8 +11429,8 @@ CVE-2021-43754
 	RESERVED
 CVE-2021-43753
 	RESERVED
-CVE-2021-43752
-	RESERVED
+CVE-2021-43752 (Adobe Illustrator versions 25.4.2 (and earlier) and 26.0.1 (and earlie ...)
+	TODO: check
 CVE-2021-43751
 	RESERVED
 CVE-2021-43750 (Adobe Premiere Rush versions 1.5.16 (and earlier) are affected by a Nu ...)
@@ -15364,8 +15455,8 @@ CVE-2021-42553
 	RESERVED
 CVE-2021-42552
 	RESERVED
-CVE-2021-42551
-	RESERVED
+CVE-2021-42551 (Cross-site Scripting (XSS) vulnerability in the search functionality o ...)
+	TODO: check
 CVE-2021-42549 (Insufficient Input Validation in the search functionality of Wordpress ...)
 	NOT-FOR-US: Wordpress plugin
 CVE-2021-42548 (Insufficient Input Validation in the search functionality of Wordpress ...)
@@ -25219,8 +25310,8 @@ CVE-2021-39034
 	RESERVED
 CVE-2021-39033
 	RESERVED
-CVE-2021-39032
-	RESERVED
+CVE-2021-39032 (IBM Sterling Gentran:Server for Microsoft Windows 5.3 stores potential ...)
+	TODO: check
 CVE-2021-39031
 	RESERVED
 CVE-2021-39030
@@ -27734,203 +27825,269 @@ CVE-2021-38024
 CVE-2021-38023
 	RESERVED
 CVE-2021-38022 (Inappropriate implementation in WebAuthentication in Google Chrome pri ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38021 (Inappropriate implementation in referrer in Google Chrome prior to 96. ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38020 (Insufficient policy enforcement in contacts picker in Google Chrome on ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38019 (Insufficient policy enforcement in CORS in Google Chrome prior to 96.0 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38018 (Inappropriate implementation in navigation in Google Chrome prior to 9 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38017 (Insufficient policy enforcement in iframe sandbox in Google Chrome pri ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38016 (Insufficient policy enforcement in background fetch in Google Chrome p ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38015 (Inappropriate implementation in input in Google Chrome prior to 96.0.4 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38014 (Out of bounds write in Swiftshader in Google Chrome prior to 96.0.4664 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38013 (Heap buffer overflow in fingerprint recognition in Google Chrome on Ch ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38012 (Type confusion in V8 in Google Chrome prior to 96.0.4664.45 allowed a  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38011 (Use after free in storage foundation in Google Chrome prior to 96.0.46 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38010 (Inappropriate implementation in service workers in Google Chrome prior ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38009 (Inappropriate implementation in cache in Google Chrome prior to 96.0.4 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38008 (Use after free in media in Google Chrome prior to 96.0.4664.45 allowed ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38007 (Type confusion in V8 in Google Chrome prior to 96.0.4664.45 allowed a  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38006 (Use after free in storage foundation in Google Chrome prior to 96.0.46 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38005 (Use after free in loader in Google Chrome prior to 96.0.4664.45 allowe ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38004 (Insufficient policy enforcement in Autofill in Google Chrome prior to  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38003 (Inappropriate implementation in V8 in Google Chrome prior to 95.0.4638 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38002 (Use after free in Web Transport in Google Chrome prior to 95.0.4638.69 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38001 (Type confusion in V8 in Google Chrome prior to 95.0.4638.69 allowed a  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38000 (Insufficient validation of untrusted input in Intents in Google Chrome ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37999 (Insufficient data validation in New Tab Page in Google Chrome prior to ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37998 (Use after free in Garbage Collection in Google Chrome prior to 95.0.46 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37997 (Use after free in Sign-In in Google Chrome prior to 95.0.4638.69 allow ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37996 (Insufficient validation of untrusted input Downloads in Google Chrome  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37995 (Inappropriate implementation in WebApp Installer in Google Chrome prio ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37994 (Inappropriate implementation in iFrame Sandbox in Google Chrome prior  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37993 (Use after free in PDF Accessibility in Google Chrome prior to 95.0.463 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37992 (Out of bounds read in WebAudio in Google Chrome prior to 95.0.4638.54  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37991 (Race in V8 in Google Chrome prior to 95.0.4638.54 allowed a remote att ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37990 (Inappropriate implementation in WebView in Google Chrome on Android pr ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37989 (Inappropriate implementation in Blink in Google Chrome prior to 95.0.4 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37988 (Use after free in Profiles in Google Chrome prior to 95.0.4638.54 allo ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37987 (Use after free in Network APIs in Google Chrome prior to 95.0.4638.54  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37986 (Heap buffer overflow in Settings in Google Chrome prior to 95.0.4638.5 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37985 (Use after free in V8 in Google Chrome prior to 95.0.4638.54 allowed a  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37984 (Heap buffer overflow in PDFium in Google Chrome prior to 95.0.4638.54  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37983 (Use after free in Dev Tools in Google Chrome prior to 95.0.4638.54 all ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37982 (Use after free in Incognito in Google Chrome prior to 95.0.4638.54 all ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37981 (Heap buffer overflow in Skia in Google Chrome prior to 95.0.4638.54 al ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37980 (Inappropriate implementation in Sandbox in Google Chrome prior to 94.0 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37979 (heap buffer overflow in WebRTC in Google Chrome prior to 94.0.4606.81  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37978 (Heap buffer overflow in Blink in Google Chrome prior to 94.0.4606.81 a ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37977 (Use after free in Garbage Collection in Google Chrome prior to 94.0.46 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37976 (Inappropriate implementation in Memory in Google Chrome prior to 94.0. ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37975 (Use after free in V8 in Google Chrome prior to 94.0.4606.71 allowed a  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37974 (Use after free in Safebrowsing in Google Chrome prior to 94.0.4606.71  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37973 (Use after free in Portals in Google Chrome prior to 94.0.4606.61 allow ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37972 (Out of bounds read in libjpeg-turbo in Google Chrome prior to 94.0.460 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37971 (Incorrect security UI in Web Browser UI in Google Chrome prior to 94.0 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37970 (Use after free in File System API in Google Chrome prior to 94.0.4606. ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37969 (Inappropriate implementation in Google Updater in Google Chrome on Win ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37968 (Inappropriate implementation in Background Fetch API in Google Chrome  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37967 (Inappropriate implementation in Background Fetch API in Google Chrome  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37966 (Inappropriate implementation in Compositing in Google Chrome on Androi ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37965 (Inappropriate implementation in Background Fetch API in Google Chrome  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37964 (Inappropriate implementation in ChromeOS Networking in Google Chrome o ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37963 (Side-channel information leakage in DevTools in Google Chrome prior to ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37962 (Use after free in Performance Manager in Google Chrome prior to 94.0.4 ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37961 (Use after free in Tab Strip in Google Chrome prior to 94.0.4606.54 all ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37960
 	REJECTED
 CVE-2021-37959 (Use after free in Task Manager in Google Chrome prior to 94.0.4606.54  ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37958 (Inappropriate implementation in Navigation in Google Chrome on Windows ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37957 (Use after free in WebGPU in Google Chrome prior to 94.0.4606.54 allowe ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37956 (Use after free in Offline use in Google Chrome on Android prior to 94. ...)
+	{DSA-5046-1}
 	- chromium 97.0.4692.71-0.1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37955
@@ -30657,8 +30814,8 @@ CVE-2021-36783
 	RESERVED
 CVE-2021-36782
 	RESERVED
-CVE-2021-36781
-	RESERVED
+CVE-2021-36781 (A Incorrect Default Permissions vulnerability in the parsec package of ...)
+	TODO: check
 CVE-2021-36780 (A Improper Access Control vulnerability in longhorn of SUSE Longhorn a ...)
 	TODO: check
 CVE-2021-36779 (A Improper Access Control vulnerability inf SUSE Longhorn allows any w ...)
@@ -30844,11 +31001,11 @@ CVE-2021-36738 (The input fields in the JSP version of the Apache Pluto Applican
 CVE-2021-36737 (The input fields of the Apache Pluto UrlTestPortlet are vulnerable to  ...)
 	NOT-FOR-US: Apache Pluto UrlTestPortlet
 CVE-2021-36736
-	RESERVED
+	REJECTED
 CVE-2021-36735
-	RESERVED
+	REJECTED
 CVE-2021-36734
-	RESERVED
+	REJECTED
 CVE-2021-36733
 	RESERVED
 CVE-2021-36732
@@ -37236,8 +37393,8 @@ CVE-2021-33964
 	RESERVED
 CVE-2021-33963
 	RESERVED
-CVE-2021-33962
-	RESERVED
+CVE-2021-33962 (China Mobile An Lianbao WF-1 router v1.0.1 is affected by an OS comman ...)
+	TODO: check
 CVE-2021-33961
 	RESERVED
 CVE-2021-33960
@@ -40589,10 +40746,10 @@ CVE-2021-32652 (Nextcloud Mail is a mail app for the Nextcloud platform. A missi
 	- nextcloud-server <itp> (bug #941708)
 CVE-2021-32651 (OneDev is a development operations platform. If the LDAP external auth ...)
 	NOT-FOR-US: OneDev
-CVE-2021-32650
-	RESERVED
-CVE-2021-32649
-	RESERVED
+CVE-2021-32650 (October CMS is a self-hosted content management system (CMS) platform  ...)
+	TODO: check
+CVE-2021-32649 (October CMS is a self-hosted content management system (CMS) platform  ...)
+	TODO: check
 CVE-2021-32648 (octobercms in a CMS platform based on the Laravel PHP Framework. In af ...)
 	NOT-FOR-US: October CMS
 CVE-2021-32647 (Emissary is a P2P based data-driven workflow engine. Affected versions ...)
@@ -43078,7 +43235,7 @@ CVE-2021-31773
 	RESERVED
 CVE-2021-31772
 	RESERVED
-CVE-2021-31771 (Splinterware System Scheduler Professional version 5.30 is subject to  ...)
+CVE-2021-31771 (** DISPUTED ** Splinterware System Scheduler Professional version 5.30 ...)
 	NOT-FOR-US: Splinterware
 CVE-2021-31770
 	RESERVED
@@ -51467,10 +51624,10 @@ CVE-2021-28509
 	RESERVED
 CVE-2021-28508
 	RESERVED
-CVE-2021-28507
-	RESERVED
-CVE-2021-28506
-	RESERVED
+CVE-2021-28507 (An issue has recently been discovered in Arista EOS where, under certa ...)
+	TODO: check
+CVE-2021-28506 (An issue has recently been discovered in Arista EOS where certain gNOI ...)
+	TODO: check
 CVE-2021-28505
 	RESERVED
 CVE-2021-28504
@@ -51479,8 +51636,8 @@ CVE-2021-28503
 	RESERVED
 CVE-2021-28502
 	RESERVED
-CVE-2021-28501
-	RESERVED
+CVE-2021-28501 (An issue has recently been discovered in Arista EOS where the incorrec ...)
+	TODO: check
 CVE-2021-28500
 	RESERVED
 CVE-2021-28499 (In Arista's MOS (Metamako Operating System) software which is supporte ...)
@@ -62228,8 +62385,8 @@ CVE-2021-24048
 	RESERVED
 CVE-2021-24047
 	RESERVED
-CVE-2021-24046
-	RESERVED
+CVE-2021-24046 (A logic flaw in Ray-Ban® Stories device software allowed some par ...)
+	TODO: check
 CVE-2021-24045 (A type confusion vulnerability could be triggered when resolving the " ...)
 	TODO: check
 CVE-2021-24044
@@ -72037,10 +72194,10 @@ CVE-2021-20615
 	RESERVED
 CVE-2021-20614
 	RESERVED
-CVE-2021-20613
-	RESERVED
-CVE-2021-20612
-	RESERVED
+CVE-2021-20613 (Improper initialization vulnerability in MELSEC-F series FX3U-ENET Fir ...)
+	TODO: check
+CVE-2021-20612 (Lack of administrator control over security vulnerability in MELSEC-F  ...)
+	TODO: check
 CVE-2021-20611 (Improper Input Validation vulnerability in MELSEC iQ-R Series R00/01/0 ...)
 	NOT-FOR-US: Mitsubishi
 CVE-2021-20610 (Improper Handling of Length Parameter Inconsistency vulnerability in M ...)
@@ -117441,85 +117598,85 @@ CVE-2020-13753 (The bubblewrap sandbox of WebKitGTK and WPE WebKit, prior to 2.2
 	- wpewebkit 2.28.3-1
 	NOTE: https://webkitgtk.org/security/WSA-2020-0006.html
 CVE-2020-13752
-	RESERVED
+	REJECTED
 CVE-2020-13751
-	RESERVED
+	REJECTED
 CVE-2020-13750
-	RESERVED
+	REJECTED
 CVE-2020-13749
-	RESERVED
+	REJECTED
 CVE-2020-13748
-	RESERVED
+	REJECTED
 CVE-2020-13747
-	RESERVED
+	REJECTED
 CVE-2020-13746
-	RESERVED
+	REJECTED
 CVE-2020-13745
-	RESERVED
+	REJECTED
 CVE-2020-13744
-	RESERVED
+	REJECTED
 CVE-2020-13743
-	RESERVED
+	REJECTED
 CVE-2020-13742
-	RESERVED
+	REJECTED
 CVE-2020-13741
-	RESERVED
+	REJECTED
 CVE-2020-13740
-	RESERVED
+	REJECTED
 CVE-2020-13739
-	RESERVED
+	REJECTED
 CVE-2020-13738
-	RESERVED
+	REJECTED
 CVE-2020-13737
-	RESERVED
+	REJECTED
 CVE-2020-13736
-	RESERVED
+	REJECTED
 CVE-2020-13735
-	RESERVED
+	REJECTED
 CVE-2020-13734
-	RESERVED
+	REJECTED
 CVE-2020-13733
-	RESERVED
+	REJECTED
 CVE-2020-13732
-	RESERVED
+	REJECTED
 CVE-2020-13731
-	RESERVED
+	REJECTED
 CVE-2020-13730
-	RESERVED
+	REJECTED
 CVE-2020-13729
-	RESERVED
+	REJECTED
 CVE-2020-13728
-	RESERVED
+	REJECTED
 CVE-2020-13727
-	RESERVED
+	REJECTED
 CVE-2020-13726
-	RESERVED
+	REJECTED
 CVE-2020-13725
-	RESERVED
+	REJECTED
 CVE-2020-13724
-	RESERVED
+	REJECTED
 CVE-2020-13723
-	RESERVED
+	REJECTED
 CVE-2020-13722
-	RESERVED
+	REJECTED
 CVE-2020-13721
-	RESERVED
+	REJECTED
 CVE-2020-13720
-	RESERVED
+	REJECTED
 CVE-2020-13719
-	RESERVED
+	REJECTED
 CVE-2020-13718
-	RESERVED
+	REJECTED
 CVE-2020-13717
-	RESERVED
+	REJECTED
 CVE-2020-13716
-	RESERVED
+	REJECTED
 CVE-2020-13715
-	RESERVED
+	REJECTED
 CVE-2020-13714
-	RESERVED
+	REJECTED
 CVE-2020-13713
-	RESERVED
+	REJECTED
 CVE-2020-13712
 	RESERVED
 CVE-2020-13711
@@ -119102,165 +119259,165 @@ CVE-2020-13091 (** DISPUTED ** pandas through 1.0.3 can unserialize and execute
 CVE-2020-13090
 	RESERVED
 CVE-2020-13089
-	RESERVED
+	REJECTED
 CVE-2020-13088
-	RESERVED
+	REJECTED
 CVE-2020-13087
-	RESERVED
+	REJECTED
 CVE-2020-13086
-	RESERVED
+	REJECTED
 CVE-2020-13085
-	RESERVED
+	REJECTED
 CVE-2020-13084
-	RESERVED
+	REJECTED
 CVE-2020-13083
-	RESERVED
+	REJECTED
 CVE-2020-13082
-	RESERVED
+	REJECTED
 CVE-2020-13081
-	RESERVED
+	REJECTED
 CVE-2020-13080
-	RESERVED
+	REJECTED
 CVE-2020-13079
-	RESERVED
+	REJECTED
 CVE-2020-13078
-	RESERVED
+	REJECTED
 CVE-2020-13077
-	RESERVED
+	REJECTED
 CVE-2020-13076
-	RESERVED
+	REJECTED
 CVE-2020-13075
-	RESERVED
+	REJECTED
 CVE-2020-13074
-	RESERVED
+	REJECTED
 CVE-2020-13073
-	RESERVED
+	REJECTED
 CVE-2020-13072
-	RESERVED
+	REJECTED
 CVE-2020-13071
-	RESERVED
+	REJECTED
 CVE-2020-13070
-	RESERVED
+	REJECTED
 CVE-2020-13069
-	RESERVED
+	REJECTED
 CVE-2020-13068
-	RESERVED
+	REJECTED
 CVE-2020-13067
-	RESERVED
+	REJECTED
 CVE-2020-13066
-	RESERVED
+	REJECTED
 CVE-2020-13065
-	RESERVED
+	REJECTED
 CVE-2020-13064
-	RESERVED
+	REJECTED
 CVE-2020-13063
-	RESERVED
+	REJECTED
 CVE-2020-13062
-	RESERVED
+	REJECTED
 CVE-2020-13061
-	RESERVED
+	REJECTED
 CVE-2020-13060
-	RESERVED
+	REJECTED
 CVE-2020-13059
-	RESERVED
+	REJECTED
 CVE-2020-13058
-	RESERVED
+	REJECTED
 CVE-2020-13057
-	RESERVED
+	REJECTED
 CVE-2020-13056
-	RESERVED
+	REJECTED
 CVE-2020-13055
-	RESERVED
+	REJECTED
 CVE-2020-13054
-	RESERVED
+	REJECTED
 CVE-2020-13053
-	RESERVED
+	REJECTED
 CVE-2020-13052
-	RESERVED
+	REJECTED
 CVE-2020-13051
-	RESERVED
+	REJECTED
 CVE-2020-13050
-	RESERVED
+	REJECTED
 CVE-2020-13049
-	RESERVED
+	REJECTED
 CVE-2020-13048
-	RESERVED
+	REJECTED
 CVE-2020-13047
-	RESERVED
+	REJECTED
 CVE-2020-13046
-	RESERVED
+	REJECTED
 CVE-2020-13045
-	RESERVED
+	REJECTED
 CVE-2020-13044
-	RESERVED
+	REJECTED
 CVE-2020-13043
-	RESERVED
+	REJECTED
 CVE-2020-13042
-	RESERVED
+	REJECTED
 CVE-2020-13041
-	RESERVED
+	REJECTED
 CVE-2020-13040
-	RESERVED
+	REJECTED
 CVE-2020-13039
-	RESERVED
+	REJECTED
 CVE-2020-13038
-	RESERVED
+	REJECTED
 CVE-2020-13037
-	RESERVED
+	REJECTED
 CVE-2020-13036
-	RESERVED
+	REJECTED
 CVE-2020-13035
-	RESERVED
+	REJECTED
 CVE-2020-13034
-	RESERVED
+	REJECTED
 CVE-2020-13033
-	RESERVED
+	REJECTED
 CVE-2020-13032
-	RESERVED
+	REJECTED
 CVE-2020-13031
-	RESERVED
+	REJECTED
 CVE-2020-13030
-	RESERVED
+	REJECTED
 CVE-2020-13029
-	RESERVED
+	REJECTED
 CVE-2020-13028
-	RESERVED
+	REJECTED
 CVE-2020-13027
-	RESERVED
+	REJECTED
 CVE-2020-13026
-	RESERVED
+	REJECTED
 CVE-2020-13025
-	RESERVED
+	REJECTED
 CVE-2020-13024
-	RESERVED
+	REJECTED
 CVE-2020-13023
-	RESERVED
+	REJECTED
 CVE-2020-13022
-	RESERVED
+	REJECTED
 CVE-2020-13021
-	RESERVED
+	REJECTED
 CVE-2020-13020
-	RESERVED
+	REJECTED
 CVE-2020-13019
-	RESERVED
+	REJECTED
 CVE-2020-13018
-	RESERVED
+	REJECTED
 CVE-2020-13017
-	RESERVED
+	REJECTED
 CVE-2020-13016
-	RESERVED
+	REJECTED
 CVE-2020-13015
-	RESERVED
+	REJECTED
 CVE-2020-13014
-	RESERVED
+	REJECTED
 CVE-2020-13013
-	RESERVED
+	REJECTED
 CVE-2020-13012
-	RESERVED
+	REJECTED
 CVE-2020-13011
-	RESERVED
+	REJECTED
 CVE-2020-13010
-	RESERVED
+	REJECTED
 CVE-2020-13009
 	REJECTED
 CVE-2020-13008
@@ -119364,55 +119521,55 @@ CVE-2020-12960 (AMD Graphics Driver for Windows 10, amdfender.sys may improperly
 CVE-2020-12959
 	REJECTED
 CVE-2020-12958
-	RESERVED
+	REJECTED
 CVE-2020-12957
 	REJECTED
 CVE-2020-12956
-	RESERVED
+	REJECTED
 CVE-2020-12955
-	RESERVED
+	REJECTED
 CVE-2020-12954 (A side effect of an integrated chipset option may be able to be used b ...)
 	NOT-FOR-US: AMD
 CVE-2020-12953
-	RESERVED
+	REJECTED
 CVE-2020-12952
-	RESERVED
+	REJECTED
 CVE-2020-12951 (Race condition in PSP FW could allow less privileged x86 code to perfo ...)
 	NOT-FOR-US: AMD
 CVE-2020-12950
-	RESERVED
+	REJECTED
 CVE-2020-12949
-	RESERVED
+	REJECTED
 CVE-2020-12948
-	RESERVED
+	REJECTED
 CVE-2020-12947
-	RESERVED
+	REJECTED
 CVE-2020-12946 (Insufficient input validation in PSP firmware for discrete TPM command ...)
 	NOT-FOR-US: AMD
 CVE-2020-12945
-	RESERVED
+	REJECTED
 CVE-2020-12944 (Insufficient validation of BIOS image length by PSP Firmware could lea ...)
 	NOT-FOR-US: AMD
 CVE-2020-12943
-	RESERVED
+	REJECTED
 CVE-2020-12942
-	RESERVED
+	REJECTED
 CVE-2020-12941
 	REJECTED
 CVE-2020-12940
 	RESERVED
 CVE-2020-12939
-	RESERVED
+	REJECTED
 CVE-2020-12938
-	RESERVED
+	REJECTED
 CVE-2020-12937
-	RESERVED
+	REJECTED
 CVE-2020-12936
 	REJECTED
 CVE-2020-12935
 	REJECTED
 CVE-2020-12934
-	RESERVED
+	REJECTED
 CVE-2020-12933 (A denial of service vulnerability exists in the D3DKMTEscape handler f ...)
 	NOT-FOR-US: AMD ATIKMDAG.SYS
 CVE-2020-12932
@@ -119444,7 +119601,7 @@ CVE-2020-12920 (A potential denial of service issue exists in the AMD Display dr
 CVE-2020-12919
 	REJECTED
 CVE-2020-12918
-	RESERVED
+	REJECTED
 CVE-2020-12917
 	REJECTED
 CVE-2020-12916
@@ -119470,9 +119627,9 @@ CVE-2020-12910
 CVE-2020-12909
 	REJECTED
 CVE-2020-12908
-	RESERVED
+	REJECTED
 CVE-2020-12907
-	RESERVED
+	REJECTED
 CVE-2020-12906
 	REJECTED
 CVE-2020-12905 (Out of Bounds Read in AMD Graphics Driver for Windows 10 in Escape 0x3 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85baff29d071fa8137957d594932bed7b2317624

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85baff29d071fa8137957d594932bed7b2317624
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220114/f9aa897a/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list