[Git][security-tracker-team/security-tracker][master] automatic update

Sat Jul 16 21:10:25 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
764f0d2d by security tracker role at 2022-07-16T20:10:12+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2017-20143
+	RESERVED
+CVE-2017-20142
+	RESERVED
+CVE-2017-20141
+	RESERVED
+CVE-2017-20140
+	RESERVED
+CVE-2017-20139
+	RESERVED
+CVE-2016-15003
+	RESERVED
+CVE-2015-10003
+	RESERVED
 CVE-2022-36125
 	RESERVED
 CVE-2022-36124
@@ -3346,24 +3360,24 @@ CVE-2022-2236
 	RESERVED
 CVE-2022-2235 (Insufficient sanitization in GitLab EE's external issue tracker affect ...)
 	- gitlab <not-affected> (Specific to EE)
-CVE-2017-20138
-	RESERVED
-CVE-2017-20137
-	RESERVED
-CVE-2017-20136
-	RESERVED
-CVE-2017-20135
-	RESERVED
-CVE-2017-20134
-	RESERVED
-CVE-2017-20133
-	RESERVED
-CVE-2017-20132
-	RESERVED
-CVE-2017-20131
-	RESERVED
-CVE-2017-20130
-	RESERVED
+CVE-2017-20138 (A vulnerability was found in Itech Auction Script 6.49. It has been cl ...)
+	TODO: check
+CVE-2017-20137 (A vulnerability was found in Itech B2B Script 4.28. It has been rated  ...)
+	TODO: check
+CVE-2017-20136 (A vulnerability classified as critical has been found in Itech Classif ...)
+	TODO: check
+CVE-2017-20135 (A vulnerability classified as critical was found in Itech Dating Scrip ...)
+	TODO: check
+CVE-2017-20134 (A vulnerability, which was classified as critical, has been found in I ...)
+	TODO: check
+CVE-2017-20133 (A vulnerability, which was classified as critical, was found in Itech  ...)
+	TODO: check
+CVE-2017-20132 (A vulnerability was found in Itech Multi Vendor Script 6.49 and classi ...)
+	TODO: check
+CVE-2017-20131 (A vulnerability was found in Itech News Portal 6.28. It has been class ...)
+	TODO: check
+CVE-2017-20130 (A vulnerability was found in Itech Real Estate Script 3.12. It has bee ...)
+	TODO: check
 CVE-2017-20129 (A vulnerability was found in LogoStore. It has been classified as crit ...)
 	NOT-FOR-US: LogoStore
 CVE-2017-20128 (A vulnerability has been found in KB Messages PHP Script 1.0 and class ...)
@@ -70128,8 +70142,8 @@ CVE-2021-36713
 	RESERVED
 CVE-2021-36712
 	RESERVED
-CVE-2021-36711
-	RESERVED
+CVE-2021-36711 (WebInterface in OctoBot before 0.4.4 allows remote code execution beca ...)
+	TODO: check
 CVE-2021-36710 (ToaruOS 1.99.2 is affected by incorrect access control via the kernel. ...)
 	NOT-FOR-US: ToaruOS
 CVE-2021-36709
@@ -75333,8 +75347,8 @@ CVE-2021-34540 (Advantech WebAccess 8.4.2 and 8.4.4 allows XSS via the username
 	NOT-FOR-US: Advantech WebAccess
 CVE-2021-34539 (An issue was discovered in CubeCoders AMP before 2.1.1.8. A lack of va ...)
 	NOT-FOR-US: CubeCoders AMP
-CVE-2021-34538
-	RESERVED
+CVE-2021-34538 (Apache Hive before 3.1.3 "CREATE" and "DROP" function operations does  ...)
+	TODO: check
 CVE-2019-25046 (The Web Client in Cerberus FTP Server Enterprise before 10.0.19 and 11 ...)
 	NOT-FOR-US: Cerberus FTP Server Enterprise
 CVE-2021-34537 (Windows Bluetooth Driver Elevation of Privilege Vulnerability ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/764f0d2d4138ef7cbf91e4b95733183b57e70d1e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/764f0d2d4138ef7cbf91e4b95733183b57e70d1e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220716/60aa10af/attachment.htm>
