[Git][security-tracker-team/security-tracker][master] bugnums

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4eb6a9b4 by Moritz Muehlenhoff at 2022-07-13T13:10:35+02:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -80729,7 +80729,7 @@ CVE-2018-25014 (A flaw was found in libwebp in versions before 1.0.1. An unitial
 CVE-2021-3534
 	REJECTED
 CVE-2021-3533 (A flaw was found in Ansible if an ansible user sets ANSIBLE_ASYNC_DIR  ...)
-	- ansible <unfixed>
+	- ansible <unfixed> (bug #1014857)
 	[bullseye] - ansible <postponed> (Minor issue, revisit when/if fixed upstream)
 	[buster] - ansible <postponed> (Minor issue, revisit when/if fixed upstream)
 	[stretch] - ansible <end-of-life> (EOL'd for stretch)
@@ -143589,7 +143589,7 @@ CVE-2020-18972 (Exposure of Sensitive Information to an Unauthorized Actor in Po
 	NOTE: https://sourceforge.net/p/podofo/tickets/49/
 	NOTE: Negligible security impact
 CVE-2020-18971 (Stack-based Buffer Overflow in PoDoFo v0.9.6 allows attackers to cause ...)
-	- libpodofo <unfixed>
+	- libpodofo <unfixed> (bug #1014858)
 	[bullseye] - libpodofo <no-dsa> (Minor issue)
 	[buster] - libpodofo <no-dsa> (Minor issue)
 	[stretch] - libpodofo <postponed> (Minor issue; can be fixed in next update)
@@ -190323,7 +190323,7 @@ CVE-2020-1698 (A flaw was found in keycloak in versions before 9.0.0. A logged e
 CVE-2020-1697 (It was found in all keycloak versions before 9.0.0 that links to exter ...)
 	NOT-FOR-US: Keycloak
 CVE-2020-1696 (A flaw was found in the all pki-core 10.x.x versions, where Token Proc ...)
-	- dogtag-pki <unfixed>
+	- dogtag-pki <unfixed> (bug #1014854)
 	[bullseye] - dogtag-pki <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1780707
 CVE-2020-1695 (A flaw was found in all resteasy 3.x.x versions prior to 3.12.0.Final  ...)
@@ -221462,7 +221462,7 @@ CVE-2019-10181 (It was found that in icedtea-web up to and including 1.7.2 and 1
 	NOTE: https://github.com/AdoptOpenJDK/IcedTea-Web/commit/32d174def953d801eb1cfc9d989bff5e80aac3cd (1.7)
 	NOTE: https://github.com/AdoptOpenJDK/IcedTea-Web/commit/528cb8163b7053576a658b9602b5694b21957b0e (1.8)
 CVE-2019-10180 (A vulnerability was found in all pki-core 10.x.x version, where the To ...)
-	- dogtag-pki <unfixed>
+	- dogtag-pki <unfixed> (bug #1014855)
 	[bullseye] - dogtag-pki <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1721137
 CVE-2019-10179 (A vulnerability was found in all pki-core 10.x.x versions, where the K ...)
@@ -221471,7 +221471,7 @@ CVE-2019-10179 (A vulnerability was found in all pki-core 10.x.x versions, where
 	NOTE: https://github.com/dogtagpki/pki/commit/8884b4344225bd6656876d9e2a58b3268e9a899b (v10.9.0-b3)
 	NOTE: https://github.com/dogtagpki/pki/commit/a93a65be0b1bcf94e004ba59c6a0c8a2c086936f (v10.9.0)
 CVE-2019-10178 (It was found that the Token Processing Service (TPS) did not properly  ...)
-	- dogtag-pki <unfixed>
+	- dogtag-pki <unfixed> (bug #1014856)
 	[bullseye] - dogtag-pki <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1719042
 CVE-2019-10177 (A stored cross-site scripting (XSS) vulnerability was found in the PDF ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4eb6a9b4d61c37ff091d55fe0b752e3706a266e5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4eb6a9b4d61c37ff091d55fe0b752e3706a266e5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220713/74737df2/attachment.htm>