[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jan 5 08:10:33 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b06244da by security tracker role at 2023-01-05T08:10:21+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,85 @@
+CVE-2023-22632
+	RESERVED
+CVE-2023-22631
+	RESERVED
+CVE-2023-22630
+	RESERVED
+CVE-2023-22629
+	RESERVED
+CVE-2023-22628
+	RESERVED
+CVE-2023-22627
+	RESERVED
+CVE-2023-22626
+	RESERVED
+CVE-2023-22625
+	RESERVED
+CVE-2023-22624
+	RESERVED
+CVE-2023-22623
+	RESERVED
+CVE-2023-22622 (WordPress through 6.1.1 depends on unpredictable client visits to caus ...)
+	TODO: check
+CVE-2023-22621
+	RESERVED
+CVE-2023-22620
+	RESERVED
+CVE-2023-22619
+	RESERVED
+CVE-2023-0076
+	RESERVED
+CVE-2023-0075
+	RESERVED
+CVE-2023-0074
+	RESERVED
+CVE-2023-0073
+	RESERVED
+CVE-2023-0072
+	RESERVED
+CVE-2023-0071
+	RESERVED
+CVE-2023-0070
+	RESERVED
+CVE-2023-0069
+	RESERVED
+CVE-2023-0068
+	RESERVED
+CVE-2023-0067
+	RESERVED
+CVE-2023-0066
+	RESERVED
+CVE-2023-0065
+	RESERVED
+CVE-2023-0064
+	RESERVED
+CVE-2023-0063
+	RESERVED
+CVE-2023-0062
+	RESERVED
+CVE-2023-0061
+	RESERVED
+CVE-2023-0060
+	RESERVED
+CVE-2023-0059
+	RESERVED
+CVE-2023-0058
+	RESERVED
+CVE-2023-0057 (Improper Restriction of Rendered UI Layers or Frames in GitHub reposit ...)
+	TODO: check
+CVE-2023-0056
+	RESERVED
+CVE-2023-0055 (Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub ...)
+	TODO: check
+CVE-2022-4876 (A vulnerability was found in Kaltura mwEmbed up to 2.96.rc1 and classi ...)
+	TODO: check
+CVE-2022-4875 (A vulnerability has been found in fossology and classified as problema ...)
+	TODO: check
+CVE-2021-4302 (A vulnerability was found in slackero phpwcms up to 1.9.26. It has bee ...)
+	TODO: check
+CVE-2021-4301
+	RESERVED
+CVE-2021-4300 (A vulnerability has been found in ghostlander Halcyon and classified a ...)
+	TODO: check
 CVE-2023-22618
 	RESERVED
 CVE-2023-22617
@@ -677,10 +759,10 @@ CVE-2023-22469
 	RESERVED
 CVE-2023-22468
 	RESERVED
-CVE-2023-22467
-	RESERVED
-CVE-2023-22466
-	RESERVED
+CVE-2023-22467 (Luxon is a library for working with dates and times in JavaScript. On  ...)
+	TODO: check
+CVE-2023-22466 (Tokio is a runtime for writing applications with Rust. Starting with v ...)
+	TODO: check
 CVE-2023-22465 (Http4s is a Scala interface for HTTP services. Starting with version 0 ...)
 	TODO: check
 CVE-2023-22463 (KubePi is a k8s panel. The jwt authentication function of KubePi throu ...)
@@ -7874,9 +7956,9 @@ CVE-2022-41985
 CVE-2022-46337
 	RESERVED
 CVE-2022-46336
-	RESERVED
+	REJECTED
 CVE-2022-46335
-	RESERVED
+	REJECTED
 CVE-2022-46334 (Proofpoint Enterprise Protection (PPS/PoD) contains a vulnerability wh ...)
 	NOT-FOR-US: Proofpoint
 CVE-2022-46333 (The admin user interface in Proofpoint Enterprise Protection (PPS/PoD) ...)
@@ -43246,8 +43328,8 @@ CVE-2022-34332
 	RESERVED
 CVE-2022-34331 (After performing a sequence of Power FW950, FW1010 maintenance operati ...)
 	NOT-FOR-US: IBM
-CVE-2022-34330
-	RESERVED
+CVE-2022-34330 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 i ...)
+	TODO: check
 CVE-2022-34329 (IBM CICS TX 11.7 could allow an attacker to obtain sensitive informati ...)
 	NOT-FOR-US: IBM
 CVE-2022-34328 (PMB 7.3.10 allows reflected XSS via the id parameter in an lvl=author_ ...)
@@ -79532,8 +79614,8 @@ CVE-2022-22373 (An improper validation vulnerability in IBM InfoSphere Informati
 	NOT-FOR-US: IBM
 CVE-2022-22372
 	RESERVED
-CVE-2022-22371
-	RESERVED
+CVE-2022-22371 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 d ...)
+	TODO: check
 CVE-2022-22370 (IBM Security Verify Access 10.0.0.0, 10.0.1.0, 10.0.2.0, and 10.0.3.0  ...)
 	NOT-FOR-US: IBM
 CVE-2022-22369 (IBM Workload Scheduler 9.4 and 9.5 could allow a local user to overwri ...)
@@ -139061,11 +139143,11 @@ CVE-2021-25225 (A memory exhaustion vulnerability in Trend Micro ServerProtect f
 CVE-2021-25224 (A memory exhaustion vulnerability in Trend Micro ServerProtect for Lin ...)
 	NOT-FOR-US: Trend Micro
 CVE-2021-25223
-	RESERVED
+	REJECTED
 CVE-2021-25222
-	RESERVED
+	REJECTED
 CVE-2021-25221
-	RESERVED
+	REJECTED
 CVE-2021-25220 (BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIN ...)
 	{DSA-5105-1 DLA-2955-1}
 	- bind9 1:9.18.1-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b06244da4c88afa11375be7317b04af2e1361441

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b06244da4c88afa11375be7317b04af2e1361441
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230105/e7023298/attachment.htm>


More information about the debian-security-tracker-commits mailing list