[Git][security-tracker-team/security-tracker][master] automatic update

Sun Mar 13 08:10:19 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
02d4ca6b by security tracker role at 2022-03-13T08:10:10+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,55 @@
+CVE-2022-26979
+	RESERVED
+CVE-2022-26978
+	RESERVED
+CVE-2022-26977
+	RESERVED
+CVE-2022-26976
+	RESERVED
+CVE-2022-26975
+	RESERVED
+CVE-2022-26974
+	RESERVED
+CVE-2022-26973
+	RESERVED
+CVE-2022-26972
+	RESERVED
+CVE-2022-26971
+	RESERVED
+CVE-2022-26970
+	RESERVED
+CVE-2022-26969
+	RESERVED
+CVE-2022-26968
+	RESERVED
+CVE-2022-26967 (GPAC 2.0 allows a heap-based buffer overflow in gf_base64_encode. It c ...)
+	TODO: check
+CVE-2022-26966 (An issue was discovered in the Linux kernel before 5.16.12. drivers/ne ...)
+	TODO: check
+CVE-2022-26965
+	RESERVED
+CVE-2022-26964
+	RESERVED
+CVE-2022-26963
+	RESERVED
+CVE-2022-26962
+	RESERVED
+CVE-2022-26961
+	RESERVED
+CVE-2022-26960
+	RESERVED
+CVE-2022-26959
+	RESERVED
+CVE-2022-26958
+	RESERVED
+CVE-2022-26957
+	RESERVED
+CVE-2022-26956
+	RESERVED
+CVE-2022-26955
+	RESERVED
+CVE-2022-0937
+	RESERVED
 CVE-2022-26954
 	RESERVED
 CVE-2022-26953
@@ -8421,8 +8473,7 @@ CVE-2022-23962
 	RESERVED
 CVE-2022-23961
 	RESERVED
-CVE-2022-23960
-	RESERVED
+CVE-2022-23960 (Certain Arm Cortex and Neoverse processors through 2022-03-08 do not p ...)
 	- linux <unfixed>
 	NOTE: https://www.vusec.net/projects/bhi-spectre-bhb/
 	NOTE: https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/spectre-bhb
@@ -15172,14 +15223,14 @@ CVE-2021-45891
 	RESERVED
 CVE-2021-45890 (basic/BasicAuthProvider.java in AuthGuard before 0.9.0 allows authenti ...)
 	NOT-FOR-US: AuthGuard
-CVE-2021-45889
-	RESERVED
-CVE-2021-45888
-	RESERVED
-CVE-2021-45887
-	RESERVED
-CVE-2021-45886
-	RESERVED
+CVE-2021-45889 (An issue was discovered in PONTON X/P Messenger before 3.11.2. Several ...)
+	TODO: check
+CVE-2021-45888 (An issue was discovered in PONTON X/P Messenger before 3.11.2. The nav ...)
+	TODO: check
+CVE-2021-45887 (An issue was discovered in PONTON X/P Messenger before 3.11.2. Due to  ...)
+	TODO: check
+CVE-2021-45886 (An issue was discovered in PONTON X/P Messenger before 3.11.2. Anti-CS ...)
+	TODO: check
 CVE-2021-45885 (An issue was discovered in Stormshield Network Security (SNS) 4.2.2 th ...)
 	NOT-FOR-US: Stormshield Network Security (SNS)
 CVE-2021-4186 (Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows den ...)
@@ -43903,8 +43954,8 @@ CVE-2021-36370 (An issue was discovered in Midnight Commander through 4.8.26. Wh
 	NOTE: https://github.com/MidnightCommander/mc/commit/9235d3c232d13ad7f973346077c9cf2eaa77dc5f
 CVE-2021-36369
 	RESERVED
-CVE-2021-36368
-	RESERVED
+CVE-2021-36368 (** DISPUTED ** An issue was discovered in OpenSSH before 8.9. If a cli ...)
+	TODO: check
 CVE-2021-36367 (PuTTY through 0.75 proceeds with establishing an SSH session even if i ...)
 	- putty 0.75-3 (bug #990901)
 	[bullseye] - putty <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02d4ca6bde1a6d31cb70e966a8a4c367d89ddd09

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02d4ca6bde1a6d31cb70e966a8a4c367d89ddd09
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220313/d7e21dad/attachment.htm>
