[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jul 1 09:12:30 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
01beab62 by security tracker role at 2023-07-01T08:12:15+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,99 @@
+CVE-2023-3493 (Improper Neutralization of Formula Elements in a CSV File in GitHub re ...)
+ TODO: check
+CVE-2023-3491 (Unrestricted Upload of File with Dangerous Type in GitHub repository f ...)
+ TODO: check
+CVE-2023-3490 (SQL Injection in GitHub repository fossbilling/fossbilling prior to 0. ...)
+ TODO: check
+CVE-2023-3117 (A use-after-free flaw was found in the Netfilter subsystem of the Linu ...)
+ TODO: check
+CVE-2023-36812 (OpenTSDB is a open source, distributed, scalable Time Series Database ...)
+ TODO: check
+CVE-2023-36144 (An authentication bypass in Intelbras Switch SG 2404 MR in firmware 1. ...)
+ TODO: check
+CVE-2023-35947 (Gradle is a build tool with a focus on build automation and support fo ...)
+ TODO: check
+CVE-2023-35946 (Gradle is a build tool with a focus on build automation and support fo ...)
+ TODO: check
+CVE-2023-33298 (com.perimeter81.osx.HelperTool in Perimeter81 10.0.0.19 on macOS allow ...)
+ TODO: check
+CVE-2023-31997 (UniFi OS 3.1 introduces a misconfiguration on consoles running UniFi N ...)
+ TODO: check
+CVE-2023-29241 (Improper Information in Cybersecurity Guidebook in Bosch Building Inte ...)
+ TODO: check
+CVE-2021-4405 (The ElasticPress plugin for WordPress is vulnerable to Cross-Site Requ ...)
+ TODO: check
+CVE-2021-4404 (The Event Espresso 4 Decaf plugin for WordPress is vulnerable to Cross ...)
+ TODO: check
+CVE-2021-4403 (The Remove Schema plugin for WordPress is vulnerable to Cross-Site Req ...)
+ TODO: check
+CVE-2021-4402 (The Multiple Roles plugin for WordPress is vulnerable to Cross-Site Re ...)
+ TODO: check
+CVE-2021-4401 (The Style Kits plugin for WordPress is vulnerable to Cross-Site Reques ...)
+ TODO: check
+CVE-2021-4400 (The Better Search plugin for WordPress is vulnerable to Cross-Site Req ...)
+ TODO: check
+CVE-2021-4399 (The Edwiser Bridge plugin for WordPress is vulnerable to Cross-Site Re ...)
+ TODO: check
+CVE-2021-4398 (The Amministrazione Trasparente plugin for WordPress is vulnerable to ...)
+ TODO: check
+CVE-2021-4397 (The Staff Directory Plugin plugin for WordPress is vulnerable to Cross ...)
+ TODO: check
+CVE-2021-4396 (The Rucy plugin for WordPress is vulnerable to Cross-Site Request Forg ...)
+ TODO: check
+CVE-2021-4395 (The Abandoned Cart Recovery for WooCommerce plugin for WordPress is vu ...)
+ TODO: check
+CVE-2021-4394 (The Locations plugin for WordPress is vulnerable to Cross-Site Request ...)
+ TODO: check
+CVE-2021-4393 (The eCommerce Product Catalog Plugin for WordPress plugin for WordPres ...)
+ TODO: check
+CVE-2021-4392 (The eCommerce Product Catalog Plugin for WordPress plugin for WordPres ...)
+ TODO: check
+CVE-2021-4391 (The Ultimate Gift Cards for WooCommerce plugin for WordPress is vulner ...)
+ TODO: check
+CVE-2021-4390 (The Contact Form 7 Style plugin for WordPress is vulnerable to Cross-S ...)
+ TODO: check
+CVE-2021-4389 (The WP Travel plugin for WordPress is vulnerable to Cross-Site Request ...)
+ TODO: check
+CVE-2021-4388 (The Opal Estate plugin for WordPress is vulnerable to featured propert ...)
+ TODO: check
+CVE-2021-4387 (The Opal Estate plugin for WordPress is vulnerable to Cross-Site Reque ...)
+ TODO: check
+CVE-2021-4386 (The WP Security Question plugin for WordPress is vulnerable to Cross-S ...)
+ TODO: check
+CVE-2021-4385 (The WP Private Content Plus plugin for WordPress is vulnerable to Cros ...)
+ TODO: check
+CVE-2021-4384 (The WordPress Photo Gallery \u2013 Image Gallery plugin for WordPress ...)
+ TODO: check
+CVE-2020-36749 (The Easy Testimonials plugin for WordPress is vulnerable to Cross-Site ...)
+ TODO: check
+CVE-2020-36748 (The Dokan plugin for WordPress is vulnerable to Cross-Site Request For ...)
+ TODO: check
+CVE-2020-36747 (The Lightweight Sidebar Manager plugin for WordPress is vulnerable to ...)
+ TODO: check
+CVE-2020-36746 (The Menu Swapper plugin for WordPress is vulnerable to Cross-Site Requ ...)
+ TODO: check
+CVE-2020-36745 (The WP Project Manager plugin for WordPress is vulnerable to Cross-Sit ...)
+ TODO: check
+CVE-2020-36744 (The NotificationX plugin for WordPress is vulnerable to Cross-Site Req ...)
+ TODO: check
+CVE-2020-36743 (The Product Catalog Simple plugin for WordPress is vulnerable to Cross ...)
+ TODO: check
+CVE-2020-36742 (The Custom Field Template plugin for WordPress is vulnerable to Cross- ...)
+ TODO: check
+CVE-2020-36741 (The MultiVendorX plugin for WordPress is vulnerable to Cross-Site Requ ...)
+ TODO: check
+CVE-2020-36740 (The Radio Buttons for Taxonomies plugin for WordPress is vulnerable to ...)
+ TODO: check
+CVE-2020-36739 (The Feed Them Social \u2013 Page, Post, Video, and Photo Galleries plu ...)
+ TODO: check
+CVE-2020-36738 (The Cool Timeline (Horizontal & Vertical Timeline) plugin for WordPres ...)
+ TODO: check
+CVE-2020-36737 (The Import / Export Customizer Settings plugin for WordPress is vulner ...)
+ TODO: check
+CVE-2020-36736 (The WooCommerce Checkout & Funnel Builder by CartFlows plugin for Word ...)
+ TODO: check
+CVE-2020-36735 (The WP ERP | Complete HR solution with recruitment & job listings | Wo ...)
+ TODO: check
CVE-2023-3485 (Insecure defaults in open-source Temporal Server before version 1.20 o ...)
TODO: check
CVE-2023-3479 (Cross-site Scripting (XSS) - Reflected in GitHub repository hestiacp/h ...)
@@ -1065,7 +1161,7 @@ CVE-2023-34340 (Improper Authentication vulnerability in Apache Software Foundat
NOT-FOR-US: Apache Accumulo
CVE-2023-3340 (A vulnerability was found in SourceCodester Online School Fees System ...)
NOT-FOR-US: SourceCodester Online School Fees System
-CVE-2023-3338 [NULL Pointer Dereference in DECnet]
+CVE-2023-3338 (A flaw null pointer dereference in the Linux kernel DECnet networking ...)
- linux 6.1.4-1
NOTE: https://www.openwall.com/lists/oss-security/2023/06/24/3
NOTE: https://git.kernel.org/linus/1202cdd665315c525b5237e96e0bedc76d7e754f (6.1-rc1)
@@ -1180,7 +1276,7 @@ CVE-2023-31411 (A remote unprivileged attacker can modify and access configurati
NOT-FOR-US: SICK
CVE-2023-31410 (A remote unprivileged attacker can intercept the communication via e.g ...)
NOT-FOR-US: SICK
-CVE-2023-2908 [null pointer dereference in tif_dir.c]
+CVE-2023-2908 (A null pointer dereference issue was discovered in Libtiff's tif_dir.c ...)
- tiff 4.5.1~rc3-1
NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/479
NOTE: https://gitlab.com/libtiff/libtiff/-/commit/9bd48f0dbd64fb94dc2b5b05238fde0bfdd4ff3f (v4.5.1rc1)
@@ -7872,8 +7968,7 @@ CVE-2023-30590
RESERVED
- nodejs <unfixed> (bug #1039990)
NOTE: https://nodejs.org/en/blog/vulnerability/june-2023-security-releases#diffiehellman-do-not-generate-keys-after-setting-a-private-key-medium-cve-2023-30590
-CVE-2023-30589
- RESERVED
+CVE-2023-30589 (The llhttp parser in the http module in Node v20.2.0 does not strictly ...)
- nodejs <unfixed> (bug #1039990)
- llhttp <itp> (bug #977716)
NOTE: https://nodejs.org/en/blog/vulnerability/june-2023-security-releases#http-request-smuggling-via-empty-headers-separated-by-cr-medium-cve-2023-30589
@@ -7885,8 +7980,7 @@ CVE-2023-30587
RESERVED
- nodejs <not-affected> (Vulnerable code introduced in 20.x)
NOTE: https://nodejs.org/en/blog/vulnerability/june-2023-security-releases#inspector-protocol-bypass-the-experimental-permission-model-high-cve-2023-30587
-CVE-2023-30586
- RESERVED
+CVE-2023-30586 (A privilege escalation vulnerability exists in Node.js 20 that allowed ...)
- nodejs <not-affected> (Vulnerable code introduced in 20.x)
NOTE: https://nodejs.org/en/blog/vulnerability/june-2023-security-releases#openssl-engines-can-be-used-to-bypass-the-permission-model-medium-cve-2023-30586
CVE-2023-30585
@@ -11970,8 +12064,8 @@ CVE-2023-29149
RESERVED
CVE-2023-29148
RESERVED
-CVE-2023-29147
- RESERVED
+CVE-2023-29147 (In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the det ...)
+ TODO: check
CVE-2023-29146
RESERVED
CVE-2023-29145 (The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure w ...)
@@ -14795,10 +14889,10 @@ CVE-2023-28368 (TP-Link L2 switch T2600G-28SQ firmware versions prior to 'T2600G
NOT-FOR-US: TP-Link
CVE-2023-28366
RESERVED
-CVE-2023-28365
- RESERVED
-CVE-2023-28364
- RESERVED
+CVE-2023-28365 (A backup file vulnerability found in UniFi applications (Version 7.3.8 ...)
+ TODO: check
+CVE-2023-28364 (An Open Redirect vulnerability exists prior to version 1.52.117, where ...)
+ TODO: check
CVE-2023-28363
RESERVED
CVE-2023-28362
@@ -15030,10 +15124,10 @@ CVE-2022-48403
RESERVED
CVE-2023-28325 (An improper authorization vulnerability exists in Rocket.Chat <6.0 tha ...)
NOT-FOR-US: Rocket.Chat
-CVE-2023-28324
- RESERVED
-CVE-2023-28323
- RESERVED
+CVE-2023-28324 (A improper input validation vulnerability exists in Ivanti Endpoint Ma ...)
+ TODO: check
+CVE-2023-28323 (A deserialization of untrusted data exists in EPM 2022 Su3 and all pri ...)
+ TODO: check
CVE-2023-28322 (An information disclosure vulnerability exists in curl <v8.1.0 when do ...)
- curl 7.88.1-10 (bug #1036239)
[bullseye] - curl <no-dsa> (Minor issue)
@@ -16677,8 +16771,7 @@ CVE-2023-1208
RESERVED
CVE-2023-1207 (This HTTP Headers WordPress plugin before 1.18.8 has an import functio ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-1206
- RESERVED
+CVE-2023-1206 (A hash collision flaw was found in the IPv6 connection lookup table in ...)
- linux <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2175903
CVE-2023-27853 (NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a format s ...)
@@ -21237,8 +21330,8 @@ CVE-2023-26138
RESERVED
CVE-2023-26137
RESERVED
-CVE-2023-26136
- RESERVED
+CVE-2023-26136 (Versions of the package tough-cookie before 4.1.3 are vulnerable to Pr ...)
+ TODO: check
CVE-2023-26135 (All versions of the package flatnest are vulnerable to Prototype Pollu ...)
TODO: check
CVE-2023-26134 (Versions of the package git-commit-info before 2.0.2 are vulnerable to ...)
@@ -31711,12 +31804,12 @@ CVE-2023-22818
RESERVED
CVE-2023-22817
RESERVED
-CVE-2023-22816
- RESERVED
-CVE-2023-22815
- RESERVED
-CVE-2023-22814
- RESERVED
+CVE-2023-22816 (A post-authentication remote command injection vulnerability in a CGI ...)
+ TODO: check
+CVE-2023-22815 (Post-authentication remote command injection vulnerabilities in Wester ...)
+ TODO: check
+CVE-2023-22814 (An authentication bypass issue via spoofing was discovered in the toke ...)
+ TODO: check
CVE-2023-22813 (A device API endpoint was missing access controls on Western Digital M ...)
NOT-FOR-US: Western Digital
CVE-2023-22812 (SanDisk PrivateAccess versions prior to 6.4.9 support insecure TLS 1.0 ...)
@@ -44396,7 +44489,7 @@ CVE-2022-45062 (In Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, t
NOTE: https://gitlab.xfce.org/xfce/xfce4-settings/-/issues/403
NOTE: https://gitlab.xfce.org/xfce/xfce4-settings/-/merge_requests/85
CVE-2022-45061 (An issue was discovered in Python before 3.11.1. An unnecessary quadra ...)
- {DLA-3432-1}
+ {DLA-3477-1 DLA-3432-1}
- python3.11 3.11.1-1
- python3.10 3.10.9-1
- python3.9 <removed>
@@ -91364,7 +91457,7 @@ CVE-2022-1334 (The WP YouTube Live WordPress plugin before 1.8.3 does not valida
CVE-2022-1333 (Mattermost Playbooks plugin v1.24.0 and earlier fails to properly chec ...)
NOT-FOR-US: Mattermost Playbooks plugin
CVE-2015-20107 (In Python (aka CPython) up to 3.10.8, the mailcap module does not add ...)
- {DLA-3432-1}
+ {DLA-3477-1 DLA-3432-1}
- python3.10 3.10.6-1
- python3.9 <removed>
[bullseye] - python3.9 <no-dsa> (Minor issue)
@@ -114008,7 +114101,7 @@ CVE-2021-4190 (Large loop in the Kafka dissector in Wireshark 3.6.0 allows denia
NOTE: https://www.wireshark.org/security/wnpa-sec-2021-22.html
NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17811
CVE-2021-4189 (A flaw was found in Python, specifically in the FTP (File Transfer Pro ...)
- {DLA-3432-1 DLA-2919-1}
+ {DLA-3477-1 DLA-3432-1 DLA-2919-1}
- python3.10 <not-affected> (Fixed before initial upload to Debian unstable)
- python3.9 3.9.7-1
[bullseye] - python3.9 <no-dsa> (Minor issue)
@@ -129035,8 +129128,8 @@ CVE-2021-42309 (Microsoft SharePoint Server Remote Code Execution Vulnerability
NOT-FOR-US: Microsoft
CVE-2021-42308 (Microsoft Edge (Chromium-based) Spoofing Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2021-42307
- RESERVED
+CVE-2021-42307 (Microsoft Edge (Chromium-based) Information Disclosure Vulnerability)
+ TODO: check
CVE-2021-42306 (Azure Active Directory Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
CVE-2021-42305 (Microsoft Exchange Server Spoofing Vulnerability This CVE ID is unique ...)
@@ -134672,7 +134765,7 @@ CVE-2021-3738 (In DCE/RPC it is possible to share the handles (cookies for resou
NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14468
NOTE: https://www.samba.org/samba/security/CVE-2021-3738.html
CVE-2021-3737 (A flaw was found in python. An improperly handled HTTP response in the ...)
- {DLA-3432-1 DLA-2808-1}
+ {DLA-3477-1 DLA-3432-1 DLA-2808-1}
[experimental] - python3.9 3.9.6-1
- python3.9 3.9.7-1
[bullseye] - python3.9 <no-dsa> (Minor issue)
@@ -135882,7 +135975,7 @@ CVE-2021-39617
CVE-2021-39616 (Summary:Product: AndroidVersions: Android SoCAndroid ID: A-204686438)
NOT-FOR-US: Android
CVE-2021-3733 (There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker ...)
- {DLA-3432-1 DLA-2808-1}
+ {DLA-3477-1 DLA-3432-1 DLA-2808-1}
- python3.9 3.9.7-1
[bullseye] - python3.9 <no-dsa> (Minor issue)
- python3.7 <removed>
@@ -148682,8 +148775,8 @@ CVE-2021-34508 (Windows Kernel Remote Code Execution Vulnerability This CVE ID i
NOT-FOR-US: Microsoft
CVE-2021-34507 (Windows Remote Assistance Information Disclosure Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2021-34506
- RESERVED
+CVE-2021-34506 (Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability)
+ TODO: check
CVE-2021-34505
RESERVED
CVE-2021-34504 (Windows Address Book Remote Code Execution Vulnerability)
@@ -148744,8 +148837,8 @@ CVE-2021-34477 (Visual Studio Code .NET Runtime Elevation of Privilege Vulnerabi
NOT-FOR-US: Microsoft
CVE-2021-34476 (Bowser.sys Denial of Service Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2021-34475
- RESERVED
+CVE-2021-34475 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability)
+ TODO: check
CVE-2021-34474 (Dynamics Business Central Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2021-34473 (Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ...)
@@ -155247,8 +155340,8 @@ CVE-2021-31984 (Power BI Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2021-31983 (Paint 3D Remote Code Execution Vulnerability This CVE ID is unique fro ...)
NOT-FOR-US: Microsoft
-CVE-2021-31982
- RESERVED
+CVE-2021-31982 (Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability)
+ TODO: check
CVE-2021-31981
RESERVED
CVE-2021-31980 (Microsoft Intune Management Extension Remote Code Execution Vulnerabil ...)
@@ -165534,7 +165627,7 @@ CVE-2021-28374 (The Debian courier-authlib package before 0.71.1-2 for Courier A
NOTE: Re-introduction of #378571 while migrating from debian/permissions to
NOTE: debian/courier-authdaemon.tmpfiles in 0.66.4-2.
CVE-2021-3426 (There's a flaw in Python 3's pydoc. A local or adjacent attacker who d ...)
- {DLA-2619-1}
+ {DLA-3477-1 DLA-2619-1}
[experimental] - python3.9 3.9.3-1
- python3.9 3.9.7-1
[bullseye] - python3.9 <no-dsa> (Minor issue)
@@ -194764,7 +194857,7 @@ CVE-2021-0947 (The method PVRSRVBridgeTLDiscoverStreams allocates puiStreamsInt
NOT-FOR-US: Android
CVE-2021-0946 (The method PVRSRVBridgePMRPDumpSymbolicAddr allocates puiMemspaceNameI ...)
NOT-FOR-US: Android
-CVE-2021-0945 (Product: AndroidVersions: Android SoCAndroid ID: A-278156680)
+CVE-2021-0945 (In _PMRCreate of the PowerVR kernel driver, a missing bounds check mea ...)
TODO: check
CVE-2021-0944
RESERVED
@@ -195284,7 +195377,7 @@ CVE-2021-0703 (In SecondStageMain of init.cpp, there is a possible use after fre
NOT-FOR-US: Android
CVE-2021-0702 (In RevertActiveSessions of apexd.cpp, there is a possible way to share ...)
NOT-FOR-US: Android
-CVE-2021-0701 (Product: AndroidVersions: Android SoCAndroid ID: A-277775870)
+CVE-2021-0701 (In PVRSRVBridgeSyncPrimOpCreate of the PowerVR kernel driver, a missin ...)
TODO: check
CVE-2021-0700
RESERVED
@@ -240477,6 +240570,7 @@ CVE-2020-10736 (An authorization bypass vulnerability was found in Ceph versions
NOTE: https://github.com/ceph/ceph/commit/c7e7009a690621aacd4ac2c70c6469f25d692868 (master)
NOTE: https://github.com/ceph/ceph/commit/f2cf2ce1bd9a86462510a7a12afa4e528b615df2 (v15.2.2)
CVE-2020-10735 (A flaw was found in python. In algorithms with quadratic time complexi ...)
+ {DLA-3477-1}
- python3.11 3.11.0~rc2-1
- python3.10 3.10.7-1
- python3.9 <removed>
@@ -464881,7 +464975,7 @@ CVE-2015-7560 (The SMB1 implementation in smbd in Samba 3.x and 4.x before 4.1.2
{DSA-3514-1}
- samba 2:4.3.6+dfsg-1
NOTE: https://www.samba.org/samba/security/CVE-2015-7560.html
-CVE-2015-7559 (It was found that the Apache ActiveMQ client before 5.15.5 exposed a r ...)
+CVE-2015-7559 (It was found that the Apache ActiveMQ client before 5.14.5 exposed a r ...)
{DLA-913-1}
- activemq 5.14.3-3 (bug #860866)
[jessie] - activemq 5.6.0+dfsg1-4+deb8u3
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01beab62bfe87f673b17c35bfa266f3d752d970a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01beab62bfe87f673b17c35bfa266f3d752d970a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230701/01b45d50/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list