[Git][security-tracker-team/security-tracker][master] Add CVE-2021-3786{2,3,4,5} to mattermost-server <itp>
Neil Williams (@codehelp)
codehelp at debian.org
Thu Jan 27 09:58:04 GMT 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
084bf169 by Neil Williams at 2022-01-27T09:57:30+00:00
Add CVE-2021-3786{2,3,4,5} to mattermost-server <itp>
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -31540,13 +31540,17 @@ CVE-2021-37867 (Mattermost Boards plugin v0.10.0 and earlier fails to protect em
CVE-2021-37866 (Mattermost Boards plugin v0.10.0 and earlier fails to invalidate a ses ...)
NOT-FOR-US: Mattermost Boards plugin
CVE-2021-37865 (Mattermost 6.2 and earlier fails to sufficiently process a specificall ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
+ NOTE: https://cve.report/CVE-2021-37865 (MMSA-2021-0081)
CVE-2021-37864 (Mattermost 6.1 and earlier fails to sufficiently validate permissions ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
+ NOTE: https://cve.report/CVE-2021-37864 (MMSA-2021-0076)
CVE-2021-37863 (Mattermost 6.0 and earlier fails to sufficiently validate parameters d ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
+ NOTE: https://cve.report/CVE-2021-37863 (MMSA-2021-0075)
CVE-2021-37862 (Mattermost 6.0 and earlier fails to sufficiently validate the email ad ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
+ NOTE: https://cve.report/CVE-2021-37862 (MMSA-2021-0074)
CVE-2021-37861 (Mattermost 6.0.2 and earlier fails to sufficiently sanitize user's pas ...)
- mattermost-server <itp> (bug #823556)
CVE-2021-37860 (Mattermost 5.38 and earlier fails to sufficiently sanitize clipboard c ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/084bf1697d8a6a69098bc4e0d743fbf688337f85
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/084bf1697d8a6a69098bc4e0d743fbf688337f85
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220127/a334fce5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list