[Git][security-tracker-team/security-tracker][master] automatic update

Wed Jun 8 09:10:30 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
40709698 by security tracker role at 2022-06-08T08:10:22+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,39 @@
+CVE-2022-32548
+	RESERVED
+CVE-2022-32547
+	RESERVED
+CVE-2022-32546
+	RESERVED
+CVE-2022-32545
+	RESERVED
+CVE-2022-32543
+	RESERVED
+CVE-2022-32542
+	RESERVED
+CVE-2022-32541
+	RESERVED
+CVE-2022-32540
+	RESERVED
+CVE-2022-32539
+	RESERVED
+CVE-2022-32538
+	RESERVED
+CVE-2022-32537
+	RESERVED
+CVE-2022-2024
+	RESERVED
+CVE-2022-2023
+	RESERVED
+CVE-2017-20050
+	RESERVED
+CVE-2017-20049
+	RESERVED
+CVE-2017-20048
+	RESERVED
+CVE-2017-20047
+	RESERVED
+CVE-2017-20046
+	RESERVED
 CVE-2022-32536
 	RESERVED
 CVE-2022-32535
@@ -3009,8 +3045,8 @@ CVE-2022-1838 (A vulnerability classified as critical has been found in Home Cle
 	NOT-FOR-US: Home Clean Services Management System
 CVE-2022-1837 (A vulnerability was found in Home Clean Services Management System 1.0 ...)
 	NOT-FOR-US: Home Clean Services Management System
-CVE-2022-31470
-	RESERVED
+CVE-2022-31470 (An XSS vulnerability in the index_mobile_changepass.hsp reset-password ...)
+	TODO: check
 CVE-2022-31469
 	RESERVED
 CVE-2022-31468
@@ -5760,8 +5796,8 @@ CVE-2022-30468
 	RESERVED
 CVE-2022-30467
 	RESERVED
-CVE-2022-30466
-	RESERVED
+CVE-2022-30466 (joyebike Joy ebike Wolf Manufacturing year 2022 is vulnerable to Authe ...)
+	TODO: check
 CVE-2022-30465
 	RESERVED
 CVE-2022-30464 (ChatBot App with Suggestion in PHP/OOP v1.0 is vulnerable to Cross Sit ...)
@@ -8195,8 +8231,8 @@ CVE-2022-29622 (An arbitrary file upload vulnerability in formidable v3.1.4 allo
 	NOTE: unclear if reported upstream
 CVE-2022-29621
 	RESERVED
-CVE-2022-29620
-	RESERVED
+CVE-2022-29620 (** DISPUTED ** FileZilla v3.59.0 allows attackers to obtain cleartext  ...)
+	TODO: check
 CVE-2022-29619
 	RESERVED
 CVE-2022-29618
@@ -52679,7 +52715,8 @@ CVE-2021-39796 (In HarmfulAppWarningActivity of HarmfulAppWarningActivity.java,
 	NOTE: https://android.googlesource.com/platform/frameworks/base/+/e74a2a320bf896bc30618ce486203bafe453c469
 	NOTE: https://source.android.com/security/bulletin/2022-04-01
 	NOTE: No security impact for Android as provided in Debian, Not accessible in Debian builds
-CVE-2021-39795 (In multiple locations of MediaProvider.java , there is a possible way  ...)
+CVE-2021-39795
+	REJECTED
 	NOT-FOR-US: Android
 CVE-2021-39794 (In broadcastPortInfo of AdbService.java, there is a possible way for a ...)
 	NOT-FOR-US: Android
@@ -63339,12 +63376,12 @@ CVE-2021-35534 (Insufficient security control vulnerability in internal database
 	NOT-FOR-US: Hitachi
 CVE-2021-35533 (Improper Input Validation vulnerability in the APDU parser in the Bidi ...)
 	NOT-FOR-US: Hitachi
-CVE-2021-35532
-	RESERVED
-CVE-2021-35531
-	RESERVED
-CVE-2021-35530
-	RESERVED
+CVE-2021-35532 (A vulnerability exists in the file upload validation part of Hitachi E ...)
+	TODO: check
+CVE-2021-35531 (Improper Input Validation vulnerability in a particular configuration  ...)
+	TODO: check
+CVE-2021-35530 (A vulnerability in the application authentication and authorization me ...)
+	TODO: check
 CVE-2021-35529 (Insufficiently Protected Credentials vulnerability in client environme ...)
 	NOT-FOR-US: Hitachi
 CVE-2021-35528 (Improper Access Control vulnerability in the application authenticatio ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40709698e0d2ec6adb53fb5fe5c236f870168226

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40709698e0d2ec6adb53fb5fe5c236f870168226
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220608/4bc62ba0/attachment-0001.htm>
