[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Mar 9 08:10:23 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cb19efe5 by security tracker role at 2022-03-09T08:10:15+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2022-26778 (Veritas System Recovery (VSR) 18 and 21 stores a network destination p ...)
+	TODO: check
+CVE-2022-26777
+	RESERVED
+CVE-2022-0891
+	RESERVED
+CVE-2022-0890
+	RESERVED
 CVE-2022-26776
 	RESERVED
 CVE-2022-26775
@@ -275,8 +283,8 @@ CVE-2022-26652
 	RESERVED
 CVE-2022-26651
 	RESERVED
-CVE-2022-25943
-	RESERVED
+CVE-2022-25943 (The installer of WPS Office for Windows versions prior to v11.2.0.1025 ...)
+	TODO: check
 CVE-2022-0880
 	RESERVED
 CVE-2022-26650
@@ -1043,8 +1051,8 @@ CVE-2022-26345
 	RESERVED
 CVE-2022-26343
 	RESERVED
-CVE-2022-26337
-	RESERVED
+CVE-2022-26337 (Trend Micro Password Manager (Consumer) installer version 5.0.0.1262 a ...)
+	TODO: check
 CVE-2022-26336 (A shortcoming in the HMEF package of poi-scratchpad (Apache POI) allow ...)
 	NOT-FOR-US: poi-scratchpad
 CVE-2022-26335
@@ -1141,8 +1149,8 @@ CVE-2022-26321
 	RESERVED
 CVE-2022-26320
 	RESERVED
-CVE-2022-26319
-	RESERVED
+CVE-2022-26319 (An installer search patch element vulnerability in Trend Micro Portabl ...)
+	TODO: check
 CVE-2022-26318 (On WatchGuard Firebox and XTM appliances, an unauthenticated user can  ...)
 	NOT-FOR-US: WatchGuard
 CVE-2022-26317 (A vulnerability has been identified in Mendix Applications using Mendi ...)
@@ -4796,8 +4804,8 @@ CVE-2020-22592
 	RESERVED
 CVE-2022-24961 (In Portainer Agent before 2.11.1, an API server can continue running e ...)
 	NOT-FOR-US: Portainer
-CVE-2022-24960
-	RESERVED
+CVE-2022-24960 (A use after free vulnerability was discovered in PDFTron SDK version 9 ...)
+	TODO: check
 CVE-2022-24959 (An issue was discovered in the Linux kernel before 5.16.5. There is a  ...)
 	{DSA-5092-1}
 	- linux 5.16.7-1
@@ -5245,8 +5253,8 @@ CVE-2022-24741
 	RESERVED
 CVE-2022-24740
 	RESERVED
-CVE-2022-24739
-	RESERVED
+CVE-2022-24739 (alltube is an html front end for youtube-dl. On releases prior to 3.0. ...)
+	TODO: check
 CVE-2022-24738 (Evmos is the Ethereum Virtual Machine (EVM) Hub on the Cosmos Network. ...)
 	TODO: check
 CVE-2022-24737 (HTTPie is a command-line HTTP client. HTTPie has the practical concept ...)
@@ -5302,12 +5310,12 @@ CVE-2022-24718 (ssr-pages is an HTML page builder for the purpose of server-side
 	NOT-FOR-US: ssr-pages
 CVE-2022-24717 (ssr-pages is an HTML page builder for the purpose of server-side rende ...)
 	NOT-FOR-US: ssr-pages
-CVE-2022-24716
-	RESERVED
-CVE-2022-24715
-	RESERVED
-CVE-2022-24714
-	RESERVED
+CVE-2022-24716 (Icinga Web 2 is an open source monitoring web interface, framework and ...)
+	TODO: check
+CVE-2022-24715 (Icinga Web 2 is an open source monitoring web interface, framework and ...)
+	TODO: check
+CVE-2022-24714 (Icinga Web 2 is an open source monitoring web interface, framework and ...)
+	TODO: check
 CVE-2022-24713 (regex is an implementation of regular expressions for the Rust languag ...)
 	TODO: check
 CVE-2022-24712 (CodeIgniter4 is the 4.x branch of CodeIgniter, a PHP full-stack web fr ...)
@@ -6683,10 +6691,10 @@ CVE-2022-0438
 	RESERVED
 CVE-2021-46670
 	RESERVED
-CVE-2022-24286
-	RESERVED
-CVE-2022-24285
-	RESERVED
+CVE-2022-24286 (Acer QuickAccess 2.01.300x before 2.01.3030 and 3.00.30xx before 3.00. ...)
+	TODO: check
+CVE-2022-24285 (Acer Care Center 4.00.30xx before 4.00.3042 contains a local privilege ...)
+	TODO: check
 CVE-2022-24284
 	RESERVED
 CVE-2022-24283
@@ -63368,8 +63376,8 @@ CVE-2021-28490 (In OWASP CSRFGuard through 3.1.0, CSRF can occur because the CSR
 	NOT-FOR-US: OWASP CSRFGuard
 CVE-2021-28489
 	RESERVED
-CVE-2021-28488
-	RESERVED
+CVE-2021-28488 (Ericsson Network Manager 20.2 has Insecure Permissions. ...)
+	TODO: check
 CVE-2021-28487
 	RESERVED
 CVE-2021-28486



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb19efe5a9d14561ae07bca85fd51a2da473ec37

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb19efe5a9d14561ae07bca85fd51a2da473ec37
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220309/6a9c21d2/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list