[Git][security-tracker-team/security-tracker][master] automatic update

Sat Jul 9 09:10:21 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5ef8a33a by security tracker role at 2022-07-09T08:10:12+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,21 @@
+CVE-2022-35413
+	RESERVED
+CVE-2022-35412 (Digital Guardian Agent 7.7.4.0042 allows an administrator (who ordinar ...)
+	TODO: check
+CVE-2022-2360
+	RESERVED
+CVE-2022-2359
+	RESERVED
+CVE-2022-2358
+	RESERVED
+CVE-2022-2357
+	RESERVED
+CVE-2022-2356
+	RESERVED
+CVE-2022-2355
+	RESERVED
+CVE-2022-2354
+	RESERVED
 CVE-2022-35411 (rpc.py through 0.6.0 allows Remote Code Execution because an unpickle  ...)
 	TODO: check
 CVE-2022-35410 (mat2 (aka metadata anonymisation toolkit) before 0.13.0 allows ../ dir ...)
@@ -241,10 +259,10 @@ CVE-2022-33939
 	RESERVED
 CVE-2022-2346
 	RESERVED
-CVE-2022-2345
-	RESERVED
-CVE-2022-2344
-	RESERVED
+CVE-2022-2345 (Use After Free in GitHub repository vim/vim prior to 9.0.0046. ...)
+	TODO: check
+CVE-2022-2344 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...)
+	TODO: check
 CVE-2020-36556
 	RESERVED
 CVE-2020-36555
@@ -1137,8 +1155,8 @@ CVE-2022-2291
 	RESERVED
 CVE-2022-34915
 	RESERVED
-CVE-2022-34914
-	RESERVED
+CVE-2022-34914 (Webswing before 22.1.3 allows X-Forwarded-For header injection. The cl ...)
+	TODO: check
 CVE-2022-34913 (** DISPUTED ** md2roff 1.7 has a stack-based buffer overflow via a Mar ...)
 	TODO: check
 CVE-2022-34912 (An issue was discovered in MediaWiki before 1.37.3 and 1.38.x before 1 ...)
@@ -11102,8 +11120,8 @@ CVE-2022-31139
 	RESERVED
 CVE-2022-31138
 	RESERVED
-CVE-2022-31137
-	RESERVED
+CVE-2022-31137 (Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Kee ...)
+	TODO: check
 CVE-2022-31136 (Bookwyrm is an open source social reading and reviewing program. Versi ...)
 	TODO: check
 CVE-2022-31135 (Akashi is an open source server implementation of the Attorney Online  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ef8a33a8e41dd6d72a954b44579b8d1ab394056

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ef8a33a8e41dd6d72a954b44579b8d1ab394056
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220709/8595881c/attachment.htm>
