[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat May 7 09:10:34 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
582a53c8 by security tracker role at 2022-05-07T08:10:26+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,33 @@
+CVE-2022-30334 (Brave before 1.34, when a Private Window with Tor Connectivity is used ...)
+ TODO: check
+CVE-2022-30333
+ RESERVED
+CVE-2022-30332
+ RESERVED
+CVE-2022-30331
+ RESERVED
+CVE-2022-30330 (In the KeepKey firmware before 7.3.2, the bootloader can be exploited ...)
+ TODO: check
+CVE-2022-30329
+ RESERVED
+CVE-2022-30328
+ RESERVED
+CVE-2022-30327
+ RESERVED
+CVE-2022-30326
+ RESERVED
+CVE-2022-30325
+ RESERVED
+CVE-2022-30324
+ RESERVED
+CVE-2022-30323
+ RESERVED
+CVE-2022-30322
+ RESERVED
+CVE-2022-30321
+ RESERVED
+CVE-2022-1616
+ RESERVED
CVE-2022-30320
RESERVED
CVE-2022-30319
@@ -3200,8 +3230,8 @@ CVE-2022-29182
RESERVED
CVE-2022-29181
RESERVED
-CVE-2022-29180
- RESERVED
+CVE-2022-29180 (A vulnerability in which attackers could forge HTTP requests to manipu ...)
+ TODO: check
CVE-2022-29179
RESERVED
CVE-2022-29178
@@ -12318,8 +12348,8 @@ CVE-2022-25346
RESERVED
CVE-2022-25345
RESERVED
-CVE-2022-25324
- RESERVED
+CVE-2022-25324 (All versions of package bignum are vulnerable to Denial of Service (Do ...)
+ TODO: check
CVE-2022-25304
RESERVED
CVE-2022-25303
@@ -15212,6 +15242,7 @@ CVE-2022-24886 (Nextcloud Android app is the Android client for Nextcloud, a sel
CVE-2022-24885 (Nextcloud Android app is the Android client for Nextcloud, a self-host ...)
NOT-FOR-US: Nextcloud Android app
CVE-2022-24884 (ecdsautils is a tiny collection of programs used for ECDSA (keygen, si ...)
+ {DLA-2997-1}
- ecdsautils 0.4.1-1
NOTE: https://github.com/freifunk-gluon/ecdsautils/security/advisories/GHSA-qhcg-9ffp-78pw
NOTE: https://github.com/freifunk-gluon/ecdsautils/commit/1d4b091abdf15ad7b2312535b5b95ad70f6dbd08 (v0.4.1)
@@ -86123,8 +86154,8 @@ CVE-2021-23794
RESERVED
CVE-2021-23793
RESERVED
-CVE-2021-23792
- RESERVED
+CVE-2021-23792 (The package com.twelvemonkeys.imageio:imageio-metadata before 3.7.1 ar ...)
+ TODO: check
CVE-2021-23791
RESERVED
CVE-2021-23790
@@ -86531,8 +86562,8 @@ CVE-2021-23594 (All versions of package realms-shim are vulnerable to Sandbox By
NOT-FOR-US: realms-shim
CVE-2021-23593
RESERVED
-CVE-2021-23592
- RESERVED
+CVE-2021-23592 (The package topthink/framework before 6.0.12 are vulnerable to Deseria ...)
+ TODO: check
CVE-2021-23591
RESERVED
CVE-2021-23590
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/582a53c8bf6865e262b3a81d55287b9cff392104
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/582a53c8bf6865e262b3a81d55287b9cff392104
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220507/a61bbe4a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list