[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jun 20 09:10:23 BST 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d40cecfd by security tracker role at 2022-06-20T08:10:15+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,299 @@
+CVE-2022-34146
+	RESERVED
+CVE-2022-34145
+	RESERVED
+CVE-2022-34144
+	RESERVED
+CVE-2022-34143
+	RESERVED
+CVE-2022-34142
+	RESERVED
+CVE-2022-34141
+	RESERVED
+CVE-2022-34140
+	RESERVED
+CVE-2022-34139
+	RESERVED
+CVE-2022-34138
+	RESERVED
+CVE-2022-34137
+	RESERVED
+CVE-2022-34136
+	RESERVED
+CVE-2022-34135
+	RESERVED
+CVE-2022-34134
+	RESERVED
+CVE-2022-34133
+	RESERVED
+CVE-2022-34132
+	RESERVED
+CVE-2022-34131
+	RESERVED
+CVE-2022-34130
+	RESERVED
+CVE-2022-34129
+	RESERVED
+CVE-2022-34128
+	RESERVED
+CVE-2022-34127
+	RESERVED
+CVE-2022-34126
+	RESERVED
+CVE-2022-34125
+	RESERVED
+CVE-2022-34124
+	RESERVED
+CVE-2022-34123
+	RESERVED
+CVE-2022-34122
+	RESERVED
+CVE-2022-34121
+	RESERVED
+CVE-2022-34120
+	RESERVED
+CVE-2022-34119
+	RESERVED
+CVE-2022-34118
+	RESERVED
+CVE-2022-34117
+	RESERVED
+CVE-2022-34116
+	RESERVED
+CVE-2022-34115
+	RESERVED
+CVE-2022-34114
+	RESERVED
+CVE-2022-34113
+	RESERVED
+CVE-2022-34112
+	RESERVED
+CVE-2022-34111
+	RESERVED
+CVE-2022-34110
+	RESERVED
+CVE-2022-34109
+	RESERVED
+CVE-2022-34108
+	RESERVED
+CVE-2022-34107
+	RESERVED
+CVE-2022-34106
+	RESERVED
+CVE-2022-34105
+	RESERVED
+CVE-2022-34104
+	RESERVED
+CVE-2022-34103
+	RESERVED
+CVE-2022-34102
+	RESERVED
+CVE-2022-34101
+	RESERVED
+CVE-2022-34100
+	RESERVED
+CVE-2022-34099
+	RESERVED
+CVE-2022-34098
+	RESERVED
+CVE-2022-34097
+	RESERVED
+CVE-2022-34096
+	RESERVED
+CVE-2022-34095
+	RESERVED
+CVE-2022-34094
+	RESERVED
+CVE-2022-34093
+	RESERVED
+CVE-2022-34092
+	RESERVED
+CVE-2022-34091
+	RESERVED
+CVE-2022-34090
+	RESERVED
+CVE-2022-34089
+	RESERVED
+CVE-2022-34088
+	RESERVED
+CVE-2022-34087
+	RESERVED
+CVE-2022-34086
+	RESERVED
+CVE-2022-34085
+	RESERVED
+CVE-2022-34084
+	RESERVED
+CVE-2022-34083
+	RESERVED
+CVE-2022-34082
+	RESERVED
+CVE-2022-34081
+	RESERVED
+CVE-2022-34080
+	RESERVED
+CVE-2022-34079
+	RESERVED
+CVE-2022-34078
+	RESERVED
+CVE-2022-34077
+	RESERVED
+CVE-2022-34076
+	RESERVED
+CVE-2022-34075
+	RESERVED
+CVE-2022-34074
+	RESERVED
+CVE-2022-34073
+	RESERVED
+CVE-2022-34072
+	RESERVED
+CVE-2022-34071
+	RESERVED
+CVE-2022-34070
+	RESERVED
+CVE-2022-34069
+	RESERVED
+CVE-2022-34068
+	RESERVED
+CVE-2022-34067
+	RESERVED
+CVE-2022-34066
+	RESERVED
+CVE-2022-34065
+	RESERVED
+CVE-2022-34064
+	RESERVED
+CVE-2022-34063
+	RESERVED
+CVE-2022-34062
+	RESERVED
+CVE-2022-34061
+	RESERVED
+CVE-2022-34060
+	RESERVED
+CVE-2022-34059
+	RESERVED
+CVE-2022-34058
+	RESERVED
+CVE-2022-34057
+	RESERVED
+CVE-2022-34056
+	RESERVED
+CVE-2022-34055
+	RESERVED
+CVE-2022-34054
+	RESERVED
+CVE-2022-34053
+	RESERVED
+CVE-2022-34052
+	RESERVED
+CVE-2022-34051
+	RESERVED
+CVE-2022-34050
+	RESERVED
+CVE-2022-34049
+	RESERVED
+CVE-2022-34048
+	RESERVED
+CVE-2022-34047
+	RESERVED
+CVE-2022-34046
+	RESERVED
+CVE-2022-34045
+	RESERVED
+CVE-2022-34044
+	RESERVED
+CVE-2022-34043
+	RESERVED
+CVE-2022-34042
+	RESERVED
+CVE-2022-34041
+	RESERVED
+CVE-2022-34040
+	RESERVED
+CVE-2022-34039
+	RESERVED
+CVE-2022-34038
+	RESERVED
+CVE-2022-34037
+	RESERVED
+CVE-2022-34036
+	RESERVED
+CVE-2022-34035
+	RESERVED
+CVE-2022-34034
+	RESERVED
+CVE-2022-34033
+	RESERVED
+CVE-2022-34032
+	RESERVED
+CVE-2022-34031
+	RESERVED
+CVE-2022-34030
+	RESERVED
+CVE-2022-34029
+	RESERVED
+CVE-2022-34028
+	RESERVED
+CVE-2022-34027
+	RESERVED
+CVE-2022-34026
+	RESERVED
+CVE-2022-34025
+	RESERVED
+CVE-2022-34024
+	RESERVED
+CVE-2022-34023
+	RESERVED
+CVE-2022-34022
+	RESERVED
+CVE-2022-34021
+	RESERVED
+CVE-2022-34020
+	RESERVED
+CVE-2022-34019
+	RESERVED
+CVE-2022-34018
+	RESERVED
+CVE-2022-34017
+	RESERVED
+CVE-2022-34016
+	RESERVED
+CVE-2022-34015
+	RESERVED
+CVE-2022-34014
+	RESERVED
+CVE-2022-34013
+	RESERVED
+CVE-2022-34012
+	RESERVED
+CVE-2022-34011
+	RESERVED
+CVE-2022-34010
+	RESERVED
+CVE-2022-34009
+	RESERVED
+CVE-2022-34008
+	RESERVED
+CVE-2022-34007
+	RESERVED
+CVE-2022-34006 (An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2 ...)
+	TODO: check
+CVE-2022-34005 (An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2 ...)
+	TODO: check
+CVE-2022-34004
+	RESERVED
+CVE-2022-34003
+	RESERVED
+CVE-2022-34002
+	RESERVED
+CVE-2022-34001
+	RESERVED
+CVE-2022-34000 (libjxl 0.6.1 has an assertion failure in LowMemoryRenderPipeline::Init ...)
+	TODO: check
+CVE-2022-33948
+	RESERVED
 CVE-2022-33999
 	RESERVED
 CVE-2022-33998
@@ -141,22 +437,22 @@ CVE-2017-20066
 	RESERVED
 CVE-2017-20065
 	RESERVED
-CVE-2017-20064
-	RESERVED
-CVE-2017-20063
-	RESERVED
-CVE-2017-20062
-	RESERVED
-CVE-2017-20061
-	RESERVED
-CVE-2017-20060
-	RESERVED
-CVE-2017-20059
-	RESERVED
-CVE-2017-20058
-	RESERVED
-CVE-2017-20057
-	RESERVED
+CVE-2017-20064 (A vulnerability was found in Elefant CMS 1.3.12-RC. It has been declar ...)
+	TODO: check
+CVE-2017-20063 (A vulnerability was found in Elefant CMS 1.3.12-RC. It has been classi ...)
+	TODO: check
+CVE-2017-20062 (A vulnerability was found in Elefant CMS 1.3.12-RC and classified as p ...)
+	TODO: check
+CVE-2017-20061 (A vulnerability has been found in Elefant CMS 1.3.12-RC and classified ...)
+	TODO: check
+CVE-2017-20060 (A vulnerability, which was classified as problematic, was found in Ele ...)
+	TODO: check
+CVE-2017-20059 (A vulnerability, which was classified as problematic, has been found i ...)
+	TODO: check
+CVE-2017-20058 (A vulnerability classified as problematic was found in Elefant CMS 1.3 ...)
+	TODO: check
+CVE-2017-20057 (A vulnerability classified as problematic has been found in Elefant CM ...)
+	TODO: check
 CVE-2022-33959
 	RESERVED
 CVE-2022-33958
@@ -3398,8 +3694,8 @@ CVE-2022-32537
 	RESERVED
 CVE-2022-2024
 	RESERVED
-CVE-2022-2023
-	RESERVED
+CVE-2022-2023 (Incorrect Use of Privileged APIs in GitHub repository polonel/trudesk  ...)
+	TODO: check
 CVE-2017-20050 (A vulnerability has been found in AXIS P1204, P3225, P3367, M3045, M30 ...)
 	NOT-FOR-US: AXIS
 CVE-2017-20049 (A vulnerability, which was classified as critical, was found in AXIS P ...)
@@ -6895,7 +7191,7 @@ CVE-2022-28690 (The affected product is vulnerable to an out-of-bounds write via
 CVE-2022-27184 (The affected product is vulnerable to an out-of-bounds write, which ma ...)
 	NOT-FOR-US: Horner Automation
 CVE-2022-1836
-	RESERVED
+	REJECTED
 CVE-2022-1835
 	RESERVED
 CVE-2022-1834
@@ -20312,10 +20608,10 @@ CVE-2022-26671 (Taiwan Secom Dr.ID Access Control system’s login page has
 	NOT-FOR-US: Taiwan Secom Dr.ID Access Control system
 CVE-2022-26670 (D-Link DIR-878 has inadequate filtering for special characters in the  ...)
 	NOT-FOR-US: D-Link
-CVE-2022-26669
-	RESERVED
-CVE-2022-26668
-	RESERVED
+CVE-2022-26669 (ASUS Control Center is vulnerable to SQL injection. An authenticated r ...)
+	TODO: check
+CVE-2022-26668 (ASUS Control Center API has a broken access control vulnerability. An  ...)
+	TODO: check
 CVE-2022-26665 (An Insecure Direct Object Reference issue exists in the Tyler Odyssey  ...)
 	NOT-FOR-US: Tyler Odyssey platform
 CVE-2022-26664
@@ -35403,8 +35699,8 @@ CVE-2022-0012 (An improper link resolution before file access vulnerability exis
 	NOT-FOR-US: Palo Alto Networks
 CVE-2022-0011 (PAN-OS software provides options to exclude specific websites from URL ...)
 	NOT-FOR-US: Palo Alto Networks
-CVE-2021-45918
-	RESERVED
+CVE-2021-45918 (NHI’s health insurance web service component has insufficient va ...)
+	TODO: check
 CVE-2021-45917 (The server-request receiver function of Shockwall system has an improp ...)
 	NOT-FOR-US: Shockwall system
 CVE-2021-45916 (The programming function of Shockwall system has an improper input val ...)
@@ -41865,8 +42161,8 @@ CVE-2021-3984 (vim is vulnerable to Heap-based Buffer Overflow ...)
 	NOTE: https://github.com/vim/vim/commit/2de9b7c7c8791da8853a9a7ca9c467867465b655 (v8.2.3625)
 CVE-2021-3983 (kimai2 is vulnerable to Improper Neutralization of Input During Web Pa ...)
 	NOT-FOR-US: kimai2
-CVE-2022-21742
-	RESERVED
+CVE-2022-21742 (Realtek USB driver has a buffer overflow vulnerability due to insuffic ...)
+	TODO: check
 CVE-2021-44040 (Improper Input Validation vulnerability in request line parsing of Apa ...)
 	{DSA-5153-1}
 	- trafficserver 9.1.2+ds-1
@@ -71559,6 +71855,7 @@ CVE-2021-33584
 CVE-2021-33583 (REINER timeCard 6.05.07 installs a Microsoft SQL Server with an sa pas ...)
 	NOT-FOR-US: REINER
 CVE-2021-33582 (Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of s ...)
+	{DLA-3052-1}
 	- cyrus-imapd 3.4.2-1 (bug #993433)
 	[bullseye] - cyrus-imapd 3.2.6-2+deb11u1
 	[buster] - cyrus-imapd 3.0.8-6+deb10u6
@@ -186578,6 +186875,7 @@ CVE-2019-18930 (Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web
 CVE-2019-18929 (Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users  ...)
 	NOT-FOR-US: Western Digital My Cloud EX2 Ultra firmware
 CVE-2019-18928 (Cyrus IMAP 2.5.x before 2.5.14 and 3.x before 3.0.12 allows privilege  ...)
+	{DLA-3052-1}
 	- cyrus-imapd 3.0.12-1
 	[buster] - cyrus-imapd 3.0.8-6+deb10u3
 	NOTE: https://github.com/cyrusimap/cyrus-imapd/commit/e675bf7b0e9c6e160516d274bffaec6f9dccaef7 (cyrus-imapd-3.0.12)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d40cecfdd9b0d0edea91c1a32e5d6b9fbd036c4c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d40cecfdd9b0d0edea91c1a32e5d6b9fbd036c4c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220620/06d49066/attachment.htm>


More information about the debian-security-tracker-commits mailing list