[Git][security-tracker-team/security-tracker][master] Track fixed version for several odoo issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Jun 18 19:58:05 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f71ad868 by Salvatore Bonaccorso at 2023-06-18T20:57:18+02:00
Track fixed version for several odoo issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -112538,7 +112538,7 @@ CVE-2021-45912 (An unauthenticated Named Pipe channel in Controlup Real-Time Age
NOT-FOR-US: ControlUp Real-Time Agent
CVE-2021-44775 (Cross-site scripting (XSS) issue in Website app of Odoo Community 15.0 ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107691
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/74532a0839b57337cc26ffc66b2884039e68f23b
CVE-2021-44465 (Improper access control in Odoo Community 13.0 and earlier and Odoo En ...)
@@ -113130,12 +113130,12 @@ CVE-2021-45680 (An issue was discovered in the vec-const crate before 2.0.0 for
NOT-FOR-US: Rust crate vec-const
CVE-2021-45111 (Improper access control in Odoo Community 15.0 and earlier and Odoo En ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107683
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/d326153e016f93c22f40ad8fb146bb4108bb94dc
CVE-2021-45071 (Cross-site scripting (XSS) issue Odoo Community 15.0 and earlier and O ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107697
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/609b6503af97af5cf00ff497760f71cd71860c48
CVE-2021-44547 (A sandboxing issue in Odoo Community 15.0 and Odoo Enterprise 15.0 all ...)
@@ -113143,7 +113143,7 @@ CVE-2021-44547 (A sandboxing issue in Odoo Community 15.0 and Odoo Enterprise 15
NOTE: https://github.com/odoo/odoo/issues/107696
CVE-2021-44476 (A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterpr ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107684
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/be2c857a2e19b0a752555ab377ce5e1cb081a186
CVE-2021-44475
@@ -113165,27 +113165,27 @@ CVE-2021-4175 (livehelperchat is vulnerable to Improper Neutralization of Input
NOT-FOR-US: livehelperchat
CVE-2021-26947 (Cross-site scripting (XSS) issue Odoo Community 15.0 and earlier and O ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107694
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/e451c4fbffa9472cd3686492e8ba41430ab3b235
CVE-2021-23186 (A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterpr ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107688
NOTE: https://github.com/odoo/odoo/commit/c1d6d4a1d9148275213c7f3c286658366df03bd7
CVE-2021-23178 (Improper access control in Odoo Community 15.0 and earlier and Odoo En ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107690
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/5ac55247b576312ea4f1f274c94d955dd23335d1
CVE-2021-23176 (Improper access control in reporting engine of l10n_fr_fec module in O ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107682
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/f166400c7ddd1bc571fcad52d18d2371f2c3fd87
CVE-2021-23166 (A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterpr ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107687
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/1f1e03ff29f711dd26cfbcadc60b7d03fdb59ed7
CVE-2020-36514 (An issue was discovered in the acc_reader crate through 2020-12-27 for ...)
@@ -141036,12 +141036,12 @@ CVE-2021-3654 (A vulnerability was found in openstack-nova's console proxy, noVN
NOTE: Errata: https://www.openwall.com/lists/oss-security/2021/09/27/1
CVE-2021-26263 (Cross-site scripting (XSS) issue in Discuss app of Odoo Community 14.0 ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107693
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/ff1db4a6aea522cf3dfc80ca88e64ffecfb5e07c
CVE-2021-23203 (Improper access control in reporting engine of Odoo Community 14.0 thr ...)
{DSA-5399-1}
- - odoo <unfixed> (bug #1035953)
+ - odoo 16.0.0+dfsg.1-1 (bug #1035953)
NOTE: https://github.com/odoo/odoo/issues/107695
NOTE: 14.0 patch at https://github.com/odoo/odoo/commit/f2c1ee5a622db33a4411e7f9285f09387d1d7480
CVE-2021-23184
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f71ad868a5e592f1393989c35d9f4f0fa0015468
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f71ad868a5e592f1393989c35d9f4f0fa0015468
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230618/fa7a778d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list