[Git][security-tracker-team/security-tracker][master] Add new airflow CVEs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Nov 22 08:43:34 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
169b987b by Salvatore Bonaccorso at 2022-11-22T09:43:06+01:00
Add new airflow CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15173,6 +15173,7 @@ CVE-2016-20015 (In the ebuild package through smokeping-2.7.3-r1 for SmokePing o
 	NOT-FOR-US: ebuild package for SmokePing on Gentoo
 CVE-2022-41131
 	RESERVED
+	- airflow <itp> (bug #819700)
 CVE-2022-41130
 	RESERVED
 CVE-2022-41129
@@ -15543,6 +15544,7 @@ CVE-2022-40955 (In versions of Apache InLong prior to 1.3.0, an attacker with su
 	NOT-FOR-US: Apache InLong
 CVE-2022-40954
 	RESERVED
+	- airflow <itp> (bug #819700)
 CVE-2022-40701
 	RESERVED
 CVE-2022-40220
@@ -17322,6 +17324,7 @@ CVE-2022-40191 (Authenticated (subscriber+) Stored Cross-Site Scripting (XSS) vu
 	NOT-FOR-US: WordPress plugin
 CVE-2022-40189
 	RESERVED
+	- airflow <itp> (bug #819700)
 CVE-2022-40132 (Cross-Site Request Forgery (CSRF) vulnerability in Seriously Simple Po ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-38976
@@ -21428,6 +21431,7 @@ CVE-2022-38650 (** UNSUPPORTED WHEN ASSIGNED ** A remote unauthenticated insecur
 	NOT-FOR-US: VMware
 CVE-2022-38649
 	RESERVED
+	- airflow <itp> (bug #819700)
 CVE-2022-38648 (Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XM ...)
 	- batik 1.15+dfsg-1 (bug #1020589)
 	[bullseye] - batik <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/169b987b35fe3923e45fcdedd1a7a7b1c63bb32e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/169b987b35fe3923e45fcdedd1a7a7b1c63bb32e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221122/ce1ccae0/attachment.htm>

More information about the debian-security-tracker-commits mailing list