[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jan 28 08:11:00 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b1a85193 by security tracker role at 2022-01-28T08:10:33+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,95 @@
+CVE-2022-24111
+ RESERVED
+CVE-2022-24110
+ RESERVED
+CVE-2022-24109
+ RESERVED
+CVE-2022-24108
+ RESERVED
+CVE-2022-24107
+ RESERVED
+CVE-2022-24106
+ RESERVED
+CVE-2022-24105
+ RESERVED
+CVE-2022-24104
+ RESERVED
+CVE-2022-24103
+ RESERVED
+CVE-2022-24102
+ RESERVED
+CVE-2022-24101
+ RESERVED
+CVE-2022-24100
+ RESERVED
+CVE-2022-24099
+ RESERVED
+CVE-2022-24098
+ RESERVED
+CVE-2022-24097
+ RESERVED
+CVE-2022-24096
+ RESERVED
+CVE-2022-24095
+ RESERVED
+CVE-2022-24094
+ RESERVED
+CVE-2022-24093
+ RESERVED
+CVE-2022-24092
+ RESERVED
+CVE-2022-24091
+ RESERVED
+CVE-2022-24090
+ RESERVED
+CVE-2022-24089
+ RESERVED
+CVE-2022-24088
+ RESERVED
+CVE-2022-24087
+ RESERVED
+CVE-2022-24086
+ RESERVED
+CVE-2022-24085
+ RESERVED
+CVE-2022-24084
+ RESERVED
+CVE-2022-24083
+ RESERVED
+CVE-2022-24082
+ RESERVED
+CVE-2022-24081
+ RESERVED
+CVE-2022-24080
+ RESERVED
+CVE-2022-24079
+ RESERVED
+CVE-2022-24078
+ RESERVED
+CVE-2022-24077
+ RESERVED
+CVE-2022-24076
+ RESERVED
+CVE-2022-24075
+ RESERVED
+CVE-2022-24074
+ RESERVED
+CVE-2022-24073
+ RESERVED
+CVE-2022-24072
+ RESERVED
+CVE-2022-24071
+ RESERVED
+CVE-2022-24070
+ RESERVED
+CVE-2022-0396
+ RESERVED
+CVE-2022-0395
+ RESERVED
+CVE-2022-0394
+ RESERVED
+CVE-2022-0393
+ RESERVED
CVE-2022-24069
RESERVED
CVE-2022-24064
@@ -760,152 +852,152 @@ CVE-2021-46558
RESERVED
CVE-2021-46557
RESERVED
-CVE-2021-46556
- RESERVED
+CVE-2021-46556 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
CVE-2021-46555
RESERVED
-CVE-2021-46554
- RESERVED
-CVE-2021-46553
- RESERVED
+CVE-2021-46554 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46553 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
CVE-2021-46552
RESERVED
CVE-2021-46551
RESERVED
-CVE-2021-46550
- RESERVED
-CVE-2021-46549
- RESERVED
-CVE-2021-46548
- RESERVED
-CVE-2021-46547
- RESERVED
-CVE-2021-46546
- RESERVED
-CVE-2021-46545
- RESERVED
-CVE-2021-46544
- RESERVED
-CVE-2021-46543
- RESERVED
-CVE-2021-46542
- RESERVED
-CVE-2021-46541
- RESERVED
-CVE-2021-46540
- RESERVED
-CVE-2021-46539
- RESERVED
-CVE-2021-46538
- RESERVED
-CVE-2021-46537
- RESERVED
+CVE-2021-46550 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46549 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46548 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46547 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46546 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46545 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46544 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46543 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46542 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46541 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46540 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46539 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46538 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46537 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
CVE-2021-46536
RESERVED
-CVE-2021-46535
- RESERVED
-CVE-2021-46534
- RESERVED
+CVE-2021-46535 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46534 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
CVE-2021-46533
RESERVED
-CVE-2021-46532
- RESERVED
-CVE-2021-46531
- RESERVED
-CVE-2021-46530
- RESERVED
-CVE-2021-46529
- RESERVED
-CVE-2021-46528
- RESERVED
-CVE-2021-46527
- RESERVED
-CVE-2021-46526
- RESERVED
-CVE-2021-46525
- RESERVED
-CVE-2021-46524
- RESERVED
-CVE-2021-46523
- RESERVED
-CVE-2021-46522
- RESERVED
-CVE-2021-46521
- RESERVED
-CVE-2021-46520
- RESERVED
-CVE-2021-46519
- RESERVED
-CVE-2021-46518
- RESERVED
-CVE-2021-46517
- RESERVED
-CVE-2021-46516
- RESERVED
-CVE-2021-46515
- RESERVED
-CVE-2021-46514
- RESERVED
-CVE-2021-46513
- RESERVED
-CVE-2021-46512
- RESERVED
-CVE-2021-46511
- RESERVED
-CVE-2021-46510
- RESERVED
-CVE-2021-46509
- RESERVED
-CVE-2021-46508
- RESERVED
-CVE-2021-46507
- RESERVED
-CVE-2021-46506
- RESERVED
-CVE-2021-46505
- RESERVED
-CVE-2021-46504
- RESERVED
-CVE-2021-46503
- RESERVED
-CVE-2021-46502
- RESERVED
-CVE-2021-46501
- RESERVED
-CVE-2021-46500
- RESERVED
-CVE-2021-46499
- RESERVED
-CVE-2021-46498
- RESERVED
-CVE-2021-46497
- RESERVED
-CVE-2021-46496
- RESERVED
-CVE-2021-46495
- RESERVED
-CVE-2021-46494
- RESERVED
+CVE-2021-46532 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46531 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46530 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46529 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46528 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46527 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow v ...)
+ TODO: check
+CVE-2021-46526 (Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow ...)
+ TODO: check
+CVE-2021-46525 (Cesanta MJS v2.20.0 was discovered to contain a heap-use-after-free vi ...)
+ TODO: check
+CVE-2021-46524 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow v ...)
+ TODO: check
+CVE-2021-46523 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow v ...)
+ TODO: check
+CVE-2021-46522 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow v ...)
+ TODO: check
+CVE-2021-46521 (Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow ...)
+ TODO: check
+CVE-2021-46520 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow v ...)
+ TODO: check
+CVE-2021-46519 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow v ...)
+ TODO: check
+CVE-2021-46518 (Cesanta MJS v2.20.0 was discovered to contain a heap buffer overflow v ...)
+ TODO: check
+CVE-2021-46517 (There is an Assertion `mjs_stack_size(&mjs->scopes) > 0' fai ...)
+ TODO: check
+CVE-2021-46516 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46515 (There is an Assertion `mjs_stack_size(&mjs->scopes) >= scope ...)
+ TODO: check
+CVE-2021-46514 (There is an Assertion 'ppos != NULL && mjs_is_number(*ppos)' f ...)
+ TODO: check
+CVE-2021-46513 (Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow ...)
+ TODO: check
+CVE-2021-46512 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)
+ TODO: check
+CVE-2021-46511 (There is an Assertion `m->len >= sizeof(v)' failed at src/mjs_co ...)
+ TODO: check
+CVE-2021-46510 (There is an Assertion `s < mjs->owned_strings.buf + mjs->owne ...)
+ TODO: check
+CVE-2021-46509 (Cesanta MJS v2.20.0 was discovered to contain a stack overflow via snq ...)
+ TODO: check
+CVE-2021-46508 (There is an Assertion `i < parts_cnt' failed at src/mjs_bcode.c in ...)
+ TODO: check
+CVE-2021-46507 (Jsish v3.5.0 was discovered to contain a stack overflow via Jsi_LogMsg ...)
+ TODO: check
+CVE-2021-46506 (There is an Assertion 'v->d.lval != v' failed at src/jsiValue.c in ...)
+ TODO: check
+CVE-2021-46505 (Jsish v3.5.0 was discovered to contain a stack overflow via /usr/lib/x ...)
+ TODO: check
+CVE-2021-46504 (There is an Assertion 'vp != resPtr' failed at jsiEval.c in Jsish v3.5 ...)
+ TODO: check
+CVE-2021-46503 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/ ...)
+ TODO: check
+CVE-2021-46502 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/ ...)
+ TODO: check
+CVE-2021-46501 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via SortS ...)
+ TODO: check
+CVE-2021-46500 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_A ...)
+ TODO: check
+CVE-2021-46499 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_V ...)
+ TODO: check
+CVE-2021-46498 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_w ...)
+ TODO: check
+CVE-2021-46497 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_U ...)
+ TODO: check
+CVE-2021-46496 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_O ...)
+ TODO: check
+CVE-2021-46495 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via Delet ...)
+ TODO: check
+CVE-2021-46494 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_V ...)
+ TODO: check
CVE-2021-46493
RESERVED
-CVE-2021-46492
- RESERVED
-CVE-2021-46491
- RESERVED
-CVE-2021-46490
- RESERVED
-CVE-2021-46489
- RESERVED
-CVE-2021-46488
- RESERVED
-CVE-2021-46487
- RESERVED
-CVE-2021-46486
- RESERVED
-CVE-2021-46485
- RESERVED
-CVE-2021-46484
- RESERVED
+CVE-2021-46492 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_Fu ...)
+ TODO: check
+CVE-2021-46491 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_Co ...)
+ TODO: check
+CVE-2021-46490 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Number ...)
+ TODO: check
+CVE-2021-46489 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_D ...)
+ TODO: check
+CVE-2021-46488 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability via jsi_Ar ...)
+ TODO: check
+CVE-2021-46487 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability via /lib/x ...)
+ TODO: check
+CVE-2021-46486 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability via jsi_Ar ...)
+ TODO: check
+CVE-2021-46485 (Jsish v3.5.0 was discovered to contain a SEGV vulnerability via Jsi_Va ...)
+ TODO: check
+CVE-2021-46484 (Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_I ...)
+ TODO: check
CVE-2021-46483 (Jsish v3.5.0 was discovered to contain a heap buffer overflow via Bool ...)
NOT-FOR-US: Jsish
CVE-2021-46482 (Jsish v3.5.0 was discovered to contain a heap buffer overflow via Numb ...)
@@ -12617,12 +12709,14 @@ CVE-2021-44123 (SPIP 4.0.0 is affected by a remote command execution vulnerabili
NOTE: https://git.spip.net/spip/spip/commit/1cf91def15966406ddd0488cf9d1ecd1ae82d47a (master)
NOTE: https://git.spip.net/spip/spip/commit/97e2888e9c92ad4bd68e8f80079583249714fbfa (v4.0.1)
CVE-2021-44122 (SPIP 4.0.0 is affected by a Cross Site Request Forgery (CSRF) vulnerab ...)
+ {DSA-5028-1 DLA-2867-1}
- spip 3.2.12-1
NOTE: https://git.spip.net/spip/spip/commit/1b8e4f404c2441c15ca6540b9a6d8e50cff219db
NOTE: https://git.spip.net/spip/spip/commit/fea5b5b4507cc9c0b9e91bbfbf34fe40b0bea805 (v3.2.12)
CVE-2021-44121
REJECTED
CVE-2021-44120 (SPIP 4.0.0 is affected by a Cross Site Scripting (XSS) vulnerability i ...)
+ {DSA-5028-1 DLA-2867-1}
- spip 3.2.12-1
NOTE: https://git.spip.net/spip/spip/commit/d548391d799387d1e93cf1a369d385c72f7d5c81
NOTE: https://git.spip.net/spip/spip/commit/361cc26080d1377bc55d2cb80736e5cfaf5fd242 (v3.2.12)
@@ -123927,7 +124021,7 @@ CVE-2020-12689 (An issue was discovered in OpenStack Keystone before 15.0.1, and
NOTE: https://bugs.launchpad.net/keystone/+bug/1872735
NOTE: https://www.openwall.com/lists/oss-security/2020/05/06/5
CVE-2020-12672 (GraphicsMagick through 1.3.35 has a heap-based buffer overflow in Read ...)
- {DLA-2236-1}
+ {DLA-2902-1 DLA-2236-1}
- graphicsmagick 1.4+really1.3.35-2 (bug #960000)
[buster] - graphicsmagick <postponed> (Minor issue; can be fixed along in future DSA)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19025
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1a851931c9ef856da3f126ad404271f81591432
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1a851931c9ef856da3f126ad404271f81591432
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220128/60ae05bf/attachment.htm>
More information about the debian-security-tracker-commits
mailing list