[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Jan 16 08:10:18 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
eec41f50 by security tracker role at 2022-01-16T08:10:10+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8421,8 +8421,8 @@ CVE-2021-44538 (The olm_session_describe function in Matrix libolm before 3.2.7
NOTE: https://matrix.org/blog/2021/12/13/disclosure-buffer-overflow-in-libolm-and-matrix-js-sdk/
NOTE: Introduced by: https://gitlab.matrix.org/matrix-org/olm/-/commit/39a1ee0b18f0fced6d7bc293cc9a46ea70ec9e96 (3.1.4)
NOTE: Fixed by: https://gitlab.matrix.org/matrix-org/olm/-/commit/c23ce70fc66c26db5839ddb5a3b46d4c3d3abed6 (3.2.8)
-CVE-2021-44537
- RESERVED
+CVE-2021-44537 (ownCloud owncloud/client before 2.9.2 allows Resource Injection by a s ...)
+ TODO: check
CVE-2021-44536
RESERVED
CVE-2021-44535
@@ -37900,10 +37900,10 @@ CVE-2021-33829 (A cross-site scripting (XSS) vulnerability in the HTML Data Proc
[buster] - ckeditor <no-dsa> (Minor issue)
NOTE: https://ckeditor.com/blog/ckeditor-4.16.1-with-accessibility-enhancements/#improvements-for-comments-in-html-parser
NOTE: https://github.com/ckeditor/ckeditor4/commit/3e426ce34f7fc7bf784624358831ef9e189bb6ed
-CVE-2021-33828
- RESERVED
-CVE-2021-33827
- RESERVED
+CVE-2021-33828 (The files_antivirus component before 1.0.0 for ownCloud mishandles the ...)
+ TODO: check
+CVE-2021-33827 (The files_antivirus component before 1.0.0 for ownCloud allows OS Comm ...)
+ TODO: check
CVE-2021-33826
RESERVED
CVE-2021-33825
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eec41f505f6c9cd86048f531278d95aebe02ac21
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eec41f505f6c9cd86048f531278d95aebe02ac21
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220116/11137db9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list