[Git][security-tracker-team/security-tracker][master] buster/bullseye triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Jun 8 11:56:08 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2a083cab by Moritz Muehlenhoff at 2022-06-08T12:54:37+02:00
buster/bullseye triage
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -44562,28 +44562,34 @@ CVE-2021-42533 (Adobe Bridge version 11.1.1 (and earlier) is affected by a doubl
NOT-FOR-US: Adobe
CVE-2021-42532 (XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-b ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-42531 (XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-b ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
- TODO: check for fixing commit
CVE-2021-42530 (XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-b ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
- TODO: check for fixing commit
CVE-2021-42529 (XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-b ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://github.com/adobe/XMP-Toolkit-SDK/compare/v2021.07...v2021.08
- TODO: check for fixing commit
CVE-2021-42528 (XMP Toolkit 2021.07 (and earlier) is affected by a Null pointer derefe ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE: https://github.com/adobe/XMP-Toolkit-SDK/commit/16e53564ae6c2689387479c04770f492075d5b7b (v2021.08)
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=adobe-sdk&id=16e53564ae6c2689387479c04770f492075d5b7b (2.6.0)
@@ -50377,10 +50383,11 @@ CVE-2021-40733 (Adobe Animate version 21.0.9 (and earlier) is affected by a memo
NOT-FOR-US: Adobe
CVE-2021-40732 (XMP Toolkit version 2020.1 (and earlier) is affected by a null pointer ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-85.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-40731 (Adobe Acrobat Reader DC version 21.007.20095 (and earlier), 21.007.200 ...)
NOT-FOR-US: Adobe
CVE-2021-40730 (Adobe Acrobat Reader DC version 21.007.20095 (and earlier), 21.007.200 ...)
@@ -50413,10 +50420,11 @@ CVE-2021-40717
RESERVED
CVE-2021-40716 (XMP Toolkit SDK versions 2021.07 (and earlier) are affected by an out- ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-85.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-40715 (Adobe Premiere Pro version 15.4 (and earlier) is affected by a memory ...)
NOT-FOR-US: Adobe
CVE-2021-40714 (Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by ...)
@@ -52603,10 +52611,11 @@ CVE-2021-39848
RESERVED
CVE-2021-39847 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a stack-ba ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-39846 (Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.3000 ...)
NOT-FOR-US: Adobe
CVE-2021-39845 (Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.3000 ...)
@@ -62177,10 +62186,11 @@ CVE-2021-36065 (Adobe Photoshop versions 21.2.10 (and earlier) and 22.4.3 (and e
NOT-FOR-US: Adobe
CVE-2021-36064 (XMP Toolkit version 2020.1 (and earlier) is affected by a Buffer Under ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36063 (Adobe Connect version 11.2.2 (and earlier) is affected by a Reflected ...)
NOT-FOR-US: Adobe
CVE-2021-36062 (Adobe Connect version 11.2.2 (and earlier) is affected by a Reflected ...)
@@ -62193,84 +62203,97 @@ CVE-2021-36059 (Adobe Bridge version 11.1 (and earlier) is affected by a memory
NOT-FOR-US: Adobe
CVE-2021-36058 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Integer ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36057 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a write-wh ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36056 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer o ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36055 (XMP Toolkit SDK versions 2020.1 (and earlier) are affected by a use-af ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36054 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer o ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36053 (XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-o ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36052 (XMP Toolkit version 2020.1 (and earlier) is affected by a memory corru ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36051 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer o ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36050 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer o ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36049 (Adobe Bridge version 11.1 (and earlier) is affected by a memory corrup ...)
NOT-FOR-US: Adobe
CVE-2021-36048 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Imprope ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36047 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by an Imprope ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36046 (XMP Toolkit version 2020.1 (and earlier) is affected by a memory corru ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36045 (XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-o ...)
- exempi 2.6.0-1
+ [bullseye] - exempi <no-dsa> (Minor issue)
+ [buster] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE: https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
- TODO: check for fixing commit
CVE-2021-36044 (Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) ...)
NOT-FOR-US: Magento
CVE-2021-36043 (Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) ...)
=====================================
data/dsa-needed.txt
=====================================
@@ -24,6 +24,8 @@ epiphany-browser
--
freecad (aron)
--
+grub2
+--
kicad
--
librecad
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2a083cab8c8e8168f7f9b002ac38a3bf1ca6ab49
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2a083cab8c8e8168f7f9b002ac38a3bf1ca6ab49
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220608/53107ae1/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list