Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
85baff29 by security tracker role at 2022-01-14T20:10:16+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,4 +1,48 @@
-CVE-2022-23222
+CVE-2022-23231
+ RESERVED
+CVE-2022-23230
+ RESERVED
+CVE-2022-23229
+ RESERVED
+CVE-2022-23228
+ RESERVED
+CVE-2022-23227 (NUUO NVRmini2 through 3.11 allows an unauthenticated attacker
to uploa ...)
+ TODO: check
+CVE-2022-23226
+ RESERVED
+CVE-2022-23225
+ RESERVED
+CVE-2022-23224
+ RESERVED
+CVE-2022-23223
+ RESERVED
+CVE-2022-23221
+ RESERVED
+CVE-2022-23220
+ RESERVED
+CVE-2022-0237
+ RESERVED
+CVE-2022-0236
+ RESERVED
+CVE-2022-0235
+ RESERVED
+CVE-2022-0234
+ RESERVED
+CVE-2022-0233
+ RESERVED
+CVE-2022-0232
+ RESERVED
+CVE-2022-0231 (livehelperchat is vulnerable to Cross-Site Request Forgery
(CSRF) ...)
+ TODO: check
+CVE-2022-0230
+ RESERVED
+CVE-2022-0229
+ RESERVED
+CVE-2022-0228
+ RESERVED
+CVE-2021-46304
+ RESERVED
+CVE-2022-23222 (kernel/bpf/verifier.c in the Linux kernel through 5.15.14
allows local ...)
- linux <unfixed>
[buster] - linux <not-affected> (Vulnerable code not present)
[stretch] - linux <not-affected> (Vulnerable code not present)
@@ -73,12 +117,12 @@ CVE-2021-46285
RESERVED
CVE-2021-46284
RESERVED
-CVE-2022-0226
- RESERVED
+CVE-2022-0226 (livehelperchat is vulnerable to Cross-Site Request Forgery
(CSRF) ...)
+ TODO: check
CVE-2022-0225
RESERVED
-CVE-2022-0224
- RESERVED
+CVE-2022-0224 (dolibarr is vulnerable to Improper Neutralization of Special
Elements ...)
+ TODO: check
CVE-2022-0223
RESERVED
CVE-2022-0222
@@ -97,8 +141,8 @@ CVE-2022-0215
RESERVED
CVE-2022-0214
RESERVED
-CVE-2022-0213
- RESERVED
+CVE-2022-0213 (vim is vulnerable to Heap-based Buffer Overflow ...)
+ TODO: check
CVE-2022-0212
RESERVED
CVE-2022-0211
@@ -1458,7 +1502,7 @@ CVE-2022-22752
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-01/#CVE-2022-22752
CVE-2022-22751
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -1475,7 +1519,7 @@ CVE-2022-22749
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-01/#CVE-2022-22749
CVE-2022-22748
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -1484,7 +1528,7 @@ CVE-2022-22748
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22748
CVE-2022-22747
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- nss 2:3.73-1
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
@@ -1504,7 +1548,7 @@ CVE-2022-22746
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22746
CVE-2022-22745
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -1521,7 +1565,7 @@ CVE-2022-22744
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22744
CVE-2022-22743
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -1530,7 +1574,7 @@ CVE-2022-22743
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22743
CVE-2022-22742
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -1539,7 +1583,7 @@ CVE-2022-22742
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22742
CVE-2022-22741
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -1548,7 +1592,7 @@ CVE-2022-22741
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22741
CVE-2022-22740
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -1557,7 +1601,7 @@ CVE-2022-22740
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22740
CVE-2022-22739
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -1566,7 +1610,7 @@ CVE-2022-22739
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22739
CVE-2022-22738
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -1575,7 +1619,7 @@ CVE-2022-22738
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-03/#CVE-2022-22738
CVE-2022-22737
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -2148,100 +2192,124 @@ CVE-2022-22527
RESERVED
CVE-2022-0120
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0119
RESERVED
CVE-2022-0118
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0117
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0116
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0115
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0114
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0113
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0112
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0111
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0110
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0109
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0108
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0107
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0106
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0105
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0104
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0103
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0102
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0101
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0100
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0099
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0098
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0097
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0096
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2022-0095
@@ -3979,12 +4047,12 @@ CVE-2021-45765
RESERVED
CVE-2021-45764
RESERVED
-CVE-2021-45763
- RESERVED
-CVE-2021-45762
- RESERVED
-CVE-2021-45761
- RESERVED
+CVE-2021-45763 (GPAC v1.1.0 was discovered to contain an invalid call in the
function ...)
+ TODO: check
+CVE-2021-45762 (GPAC v1.1.0 was discovered to contain an invalid memory
address derefe ...)
+ TODO: check
+CVE-2021-45761 (ROPium v3.1 was discovered to contain an invalid memory
address derefe ...)
+ TODO: check
CVE-2021-45760 (GPAC v1.1.0 was discovered to contain an invalid memory
address derefe ...)
TODO: check
CVE-2021-45759
@@ -4677,8 +4745,8 @@ CVE-2021-4161 (The affected products contain vulnerable
firmware, which could al
CVE-2021-45469 (In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel
through 5.15 ...)
- linux <unfixed>
NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=215235
-CVE-2021-45468
- RESERVED
+CVE-2021-45468 (Imperva Web Application Firewall (WAF) before 2021-12-31
allows remote ...)
+ TODO: check
CVE-2021-45467
RESERVED
CVE-2021-45466
@@ -5729,7 +5797,7 @@ CVE-2021-4141
RESERVED
CVE-2021-4140
RESERVED
- {DSA-5044-1}
+ {DSA-5045-1 DSA-5044-1}
- firefox 96.0-1
- firefox-esr 91.5.0esr-1
- thunderbird 1:91.5.0-1
@@ -6437,24 +6505,24 @@ CVE-2021-45070
RESERVED
CVE-2021-45069
RESERVED
-CVE-2021-45068
- RESERVED
-CVE-2021-45067
- RESERVED
+CVE-2021-45068 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-45067 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
CVE-2021-45066
RESERVED
CVE-2021-45065
RESERVED
-CVE-2021-45064
- RESERVED
-CVE-2021-45063
- RESERVED
-CVE-2021-45062
- RESERVED
-CVE-2021-45061
- RESERVED
-CVE-2021-45060
- RESERVED
+CVE-2021-45064 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-45063 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-45062 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-45061 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-45060 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
CVE-2021-45059 (Adobe InDesign version 16.4 (and earlier) is affected by a
use-after-f ...)
TODO: check
CVE-2021-45058 (Adobe InDesign version 16.4 (and earlier) is affected by an
out-of-bou ...)
@@ -6469,10 +6537,10 @@ CVE-2021-45054 (Adobe InCopy version 16.4 (and earlier)
is affected by a use-aft
TODO: check
CVE-2021-45053 (Adobe InCopy version 16.4 (and earlier) is affected by an
out-of-bound ...)
TODO: check
-CVE-2021-45052
- RESERVED
-CVE-2021-45051
- RESERVED
+CVE-2021-45052 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0
(and earlie ...)
+ TODO: check
+CVE-2021-45051 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0
(and earlie ...)
+ TODO: check
CVE-2021-4120
RESERVED
CVE-2021-45050
@@ -7359,22 +7427,27 @@ CVE-2021-44796
RESERVED
CVE-2021-4102
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4101
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4100
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4099
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4098
RESERVED
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4097 (phpservermon is vulnerable to Improper Neutralization of CRLF
Sequence ...)
@@ -7577,16 +7650,16 @@ CVE-2021-44745
RESERVED
CVE-2021-44744
RESERVED
-CVE-2021-44743
- RESERVED
-CVE-2021-44742
- RESERVED
-CVE-2021-44741
- RESERVED
-CVE-2021-44740
- RESERVED
-CVE-2021-44739
- RESERVED
+CVE-2021-44743 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0
(and earlie ...)
+ TODO: check
+CVE-2021-44742 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44741 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44740 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44739 (Acrobat Reader DC ActiveX Control versions 21.007.20099 (and
earlier), ...)
+ TODO: check
CVE-2021-44545
RESERVED
CVE-2021-44457
@@ -7686,38 +7759,38 @@ CVE-2021-44716 (net/http in Go before 1.16.12 and
1.17.x before 1.17.5 allows un
NOTE:
https://github.com/golang/go/commit/48d948963c5ce7add72af5665a871caff6c1d35a
(go1.17.5)
NOTE:
https://github.com/golang/go/commit/d0aebe3e74fe14799f97ddd3f01129697c6a290a
(go1.16.12)
NOTE:
https://github.com/golang/net/commit/491a49abca63de5e07ef554052d180a1b5fe2d70
-CVE-2021-44715
- RESERVED
-CVE-2021-44714
- RESERVED
-CVE-2021-44713
- RESERVED
-CVE-2021-44712
- RESERVED
-CVE-2021-44711
- RESERVED
-CVE-2021-44710
- RESERVED
-CVE-2021-44709
- RESERVED
-CVE-2021-44708
- RESERVED
-CVE-2021-44707
- RESERVED
-CVE-2021-44706
- RESERVED
-CVE-2021-44705
- RESERVED
-CVE-2021-44704
- RESERVED
-CVE-2021-44703
- RESERVED
-CVE-2021-44702
- RESERVED
-CVE-2021-44701
- RESERVED
-CVE-2021-44700
- RESERVED
+CVE-2021-44715 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44714 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44713 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44712 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44711 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44710 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44709 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44708 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44707 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44706 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44705 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44704 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44703 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44702 (Acrobat Reader DC ActiveX Control versions 21.007.20099 (and
earlier), ...)
+ TODO: check
+CVE-2021-44701 (Acrobat Reader DC version 21.007.20099 (and earlier),
20.004.30017 (an ...)
+ TODO: check
+CVE-2021-44700 (Adobe Illustrator versions 25.4.2 (and earlier) and 26.0.1
(and earlie ...)
+ TODO: check
CVE-2021-44699 (Adobe Audition versions 14.4 (and earlier), and 22.0 (and
earlier)are ...)
NOT-FOR-US: Adobe
CVE-2021-44698 (Adobe Audition versions 14.4 (and earlier), and 22.0 (and
earlier)are ...)
@@ -7733,9 +7806,11 @@ CVE-2021-44694
CVE-2021-44693
RESERVED
CVE-2021-4079 (Out of bounds write in WebRTC in Google Chrome prior to
96.0.4664.93 a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4078 (Type confusion in V8 in Google Chrome prior to 96.0.4664.93
allowed a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4077
@@ -8066,53 +8141,69 @@ CVE-2021-4069 (vim is vulnerable to Use After Free ...)
CVE-2021-44548 (An Improper Input Validation vulnerability in
DataImportHandler of Apa ...)
TODO: check
CVE-2021-4068 (Insufficient data validation in new tab page in Google Chrome
prior to ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4067 (Use after free in window manager in Google Chrome on ChromeOS
prior to ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4066 (Integer underflow in ANGLE in Google Chrome prior to
96.0.4664.93 allo ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4065 (Use after free in autofill in Google Chrome prior to
96.0.4664.93 allo ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4064 (Use after free in screen capture in Google Chrome on ChromeOS
prior to ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4063 (Use after free in developer tools in Google Chrome prior to
96.0.4664. ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4062 (Heap buffer overflow in BFCache in Google Chrome prior to
96.0.4664.93 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4061 (Type confusion in V8 in Google Chrome prior to 96.0.4664.93
allowed a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4060
RESERVED
CVE-2021-4059 (Insufficient data validation in loader in Google Chrome prior
to 96.0. ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4058 (Heap buffer overflow in ANGLE in Google Chrome prior to
96.0.4664.93 a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4057 (Use after free in file API in Google Chrome prior to
96.0.4664.93 allo ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4056 (Type confusion in loader in Google Chrome prior to 96.0.4664.93
allowe ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4055 (Heap buffer overflow in extensions in Google Chrome prior to
96.0.4664 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4054 (Incorrect security UI in autofill in Google Chrome prior to
96.0.4664. ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4053 (Use after free in UI in Google Chrome on Linux prior to
96.0.4664.93 a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4052 (Use after free in web apps in Google Chrome prior to
96.0.4664.93 allo ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-4051
@@ -9185,11 +9276,11 @@ CVE-2021-44189
RESERVED
CVE-2021-44188
RESERVED
-CVE-2021-44187 (Adobe Bridge versions 11.1.1 (and earlier) are affected by an
out-of-b ...)
+CVE-2021-44187 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0
(and earlie ...)
NOT-FOR-US: Adobe
-CVE-2021-44186 (Adobe Bridge versions 11.1.1 (and earlier) are affected by an
out-of-b ...)
+CVE-2021-44186 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0
(and earlie ...)
NOT-FOR-US: Adobe
-CVE-2021-44185 (Adobe Bridge versions 11.1.1 (and earlier) are affected by an
out-of-b ...)
+CVE-2021-44185 (Adobe Bridge version 11.1.2 (and earlier) and version 12.0
(and earlie ...)
NOT-FOR-US: Adobe
CVE-2021-44184
RESERVED
@@ -9951,8 +10042,8 @@ CVE-2022-21687
RESERVED
CVE-2022-21686
RESERVED
-CVE-2022-21685
- RESERVED
+CVE-2022-21685 (Frontier is Substrate's Ethereum compatibility layer. Prior to
commit ...)
+ TODO: check
CVE-2022-21684 (Discourse is an open source discussion platform. Versions
prior to 2.7 ...)
TODO: check
CVE-2022-21683
@@ -9962,16 +10053,16 @@ CVE-2022-21682 (Flatpak is a Linux application
sandboxing and distribution frame
NOTE:
https://github.com/flatpak/flatpak/security/advisories/GHSA-8ch7-5j3h-g4fx
NOTE:
https://github.com/flatpak/flatpak/commit/445bddeee657fdc8d2a0a1f0de12975400d4fc1a
NOTE: Documentation:
https://github.com/flatpak/flatpak/commit/4d11f77aa7fd3e64cfa80af89d92567ab9e8e6fa
-CVE-2022-21681
- RESERVED
-CVE-2022-21680
- RESERVED
+CVE-2022-21681 (Marked is a markdown parser and compiler. Prior to version
4.0.10, the ...)
+ TODO: check
+CVE-2022-21680 (Marked is a markdown parser and compiler. Prior to version
4.0.10, the ...)
+ TODO: check
CVE-2022-21679
RESERVED
CVE-2022-21678 (Discourse is an open source discussion platform. Prior to
version 2.8. ...)
TODO: check
-CVE-2022-21677
- RESERVED
+CVE-2022-21677 (Discourse is an open source discussion platform. Discourse
groups can ...)
+ TODO: check
CVE-2022-21676 (Engine.IO is the implementation of transport-based
cross-browser/cross ...)
TODO: check
CVE-2022-21675 (Bytecode Viewer (BCV) is a Java/Android reverse engineering
suite. Ver ...)
@@ -11338,8 +11429,8 @@ CVE-2021-43754
RESERVED
CVE-2021-43753
RESERVED
-CVE-2021-43752
- RESERVED
+CVE-2021-43752 (Adobe Illustrator versions 25.4.2 (and earlier) and 26.0.1
(and earlie ...)
+ TODO: check
CVE-2021-43751
RESERVED
CVE-2021-43750 (Adobe Premiere Rush versions 1.5.16 (and earlier) are affected
by a Nu ...)
@@ -15364,8 +15455,8 @@ CVE-2021-42553
RESERVED
CVE-2021-42552
RESERVED
-CVE-2021-42551
- RESERVED
+CVE-2021-42551 (Cross-site Scripting (XSS) vulnerability in the search
functionality o ...)
+ TODO: check
CVE-2021-42549 (Insufficient Input Validation in the search functionality of
Wordpress ...)
NOT-FOR-US: Wordpress plugin
CVE-2021-42548 (Insufficient Input Validation in the search functionality of
Wordpress ...)
@@ -25219,8 +25310,8 @@ CVE-2021-39034
RESERVED
CVE-2021-39033
RESERVED
-CVE-2021-39032
- RESERVED
+CVE-2021-39032 (IBM Sterling Gentran:Server for Microsoft Windows 5.3 stores
potential ...)
+ TODO: check
CVE-2021-39031
RESERVED
CVE-2021-39030
@@ -27734,203 +27825,269 @@ CVE-2021-38024
CVE-2021-38023
RESERVED
CVE-2021-38022 (Inappropriate implementation in WebAuthentication in Google
Chrome pri ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38021 (Inappropriate implementation in referrer in Google Chrome
prior to 96. ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38020 (Insufficient policy enforcement in contacts picker in Google
Chrome on ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38019 (Insufficient policy enforcement in CORS in Google Chrome prior
to 96.0 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38018 (Inappropriate implementation in navigation in Google Chrome
prior to 9 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38017 (Insufficient policy enforcement in iframe sandbox in Google
Chrome pri ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38016 (Insufficient policy enforcement in background fetch in Google
Chrome p ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38015 (Inappropriate implementation in input in Google Chrome prior
to 96.0.4 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38014 (Out of bounds write in Swiftshader in Google Chrome prior to
96.0.4664 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38013 (Heap buffer overflow in fingerprint recognition in Google
Chrome on Ch ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38012 (Type confusion in V8 in Google Chrome prior to 96.0.4664.45
allowed a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38011 (Use after free in storage foundation in Google Chrome prior to
96.0.46 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38010 (Inappropriate implementation in service workers in Google
Chrome prior ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38009 (Inappropriate implementation in cache in Google Chrome prior
to 96.0.4 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38008 (Use after free in media in Google Chrome prior to 96.0.4664.45
allowed ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38007 (Type confusion in V8 in Google Chrome prior to 96.0.4664.45
allowed a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38006 (Use after free in storage foundation in Google Chrome prior to
96.0.46 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38005 (Use after free in loader in Google Chrome prior to
96.0.4664.45 allowe ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38004 (Insufficient policy enforcement in Autofill in Google Chrome
prior to ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38003 (Inappropriate implementation in V8 in Google Chrome prior to
95.0.4638 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38002 (Use after free in Web Transport in Google Chrome prior to
95.0.4638.69 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38001 (Type confusion in V8 in Google Chrome prior to 95.0.4638.69
allowed a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-38000 (Insufficient validation of untrusted input in Intents in
Google Chrome ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37999 (Insufficient data validation in New Tab Page in Google Chrome
prior to ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37998 (Use after free in Garbage Collection in Google Chrome prior to
95.0.46 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37997 (Use after free in Sign-In in Google Chrome prior to
95.0.4638.69 allow ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37996 (Insufficient validation of untrusted input Downloads in Google
Chrome ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37995 (Inappropriate implementation in WebApp Installer in Google
Chrome prio ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37994 (Inappropriate implementation in iFrame Sandbox in Google
Chrome prior ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37993 (Use after free in PDF Accessibility in Google Chrome prior to
95.0.463 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37992 (Out of bounds read in WebAudio in Google Chrome prior to
95.0.4638.54 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37991 (Race in V8 in Google Chrome prior to 95.0.4638.54 allowed a
remote att ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37990 (Inappropriate implementation in WebView in Google Chrome on
Android pr ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37989 (Inappropriate implementation in Blink in Google Chrome prior
to 95.0.4 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37988 (Use after free in Profiles in Google Chrome prior to
95.0.4638.54 allo ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37987 (Use after free in Network APIs in Google Chrome prior to
95.0.4638.54 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37986 (Heap buffer overflow in Settings in Google Chrome prior to
95.0.4638.5 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37985 (Use after free in V8 in Google Chrome prior to 95.0.4638.54
allowed a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37984 (Heap buffer overflow in PDFium in Google Chrome prior to
95.0.4638.54 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37983 (Use after free in Dev Tools in Google Chrome prior to
95.0.4638.54 all ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37982 (Use after free in Incognito in Google Chrome prior to
95.0.4638.54 all ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37981 (Heap buffer overflow in Skia in Google Chrome prior to
95.0.4638.54 al ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37980 (Inappropriate implementation in Sandbox in Google Chrome prior
to 94.0 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37979 (heap buffer overflow in WebRTC in Google Chrome prior to
94.0.4606.81 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37978 (Heap buffer overflow in Blink in Google Chrome prior to
94.0.4606.81 a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37977 (Use after free in Garbage Collection in Google Chrome prior to
94.0.46 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37976 (Inappropriate implementation in Memory in Google Chrome prior
to 94.0. ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37975 (Use after free in V8 in Google Chrome prior to 94.0.4606.71
allowed a ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37974 (Use after free in Safebrowsing in Google Chrome prior to
94.0.4606.71 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37973 (Use after free in Portals in Google Chrome prior to
94.0.4606.61 allow ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37972 (Out of bounds read in libjpeg-turbo in Google Chrome prior to
94.0.460 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37971 (Incorrect security UI in Web Browser UI in Google Chrome prior
to 94.0 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37970 (Use after free in File System API in Google Chrome prior to
94.0.4606. ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37969 (Inappropriate implementation in Google Updater in Google
Chrome on Win ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37968 (Inappropriate implementation in Background Fetch API in Google
Chrome ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37967 (Inappropriate implementation in Background Fetch API in Google
Chrome ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37966 (Inappropriate implementation in Compositing in Google Chrome
on Androi ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37965 (Inappropriate implementation in Background Fetch API in Google
Chrome ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37964 (Inappropriate implementation in ChromeOS Networking in Google
Chrome o ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37963 (Side-channel information leakage in DevTools in Google Chrome
prior to ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37962 (Use after free in Performance Manager in Google Chrome prior
to 94.0.4 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37961 (Use after free in Tab Strip in Google Chrome prior to
94.0.4606.54 all ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37960
REJECTED
CVE-2021-37959 (Use after free in Task Manager in Google Chrome prior to
94.0.4606.54 ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37958 (Inappropriate implementation in Navigation in Google Chrome on
Windows ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37957 (Use after free in WebGPU in Google Chrome prior to
94.0.4606.54 allowe ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37956 (Use after free in Offline use in Google Chrome on Android
prior to 94. ...)
+ {DSA-5046-1}
- chromium 97.0.4692.71-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2021-37955
@@ -30657,8 +30814,8 @@ CVE-2021-36783
RESERVED
CVE-2021-36782
RESERVED
-CVE-2021-36781
- RESERVED
+CVE-2021-36781 (A Incorrect Default Permissions vulnerability in the parsec
package of ...)
+ TODO: check
CVE-2021-36780 (A Improper Access Control vulnerability in longhorn of SUSE
Longhorn a ...)
TODO: check
CVE-2021-36779 (A Improper Access Control vulnerability inf SUSE Longhorn
allows any w ...)
@@ -30844,11 +31001,11 @@ CVE-2021-36738 (The input fields in the JSP version
of the Apache Pluto Applican
CVE-2021-36737 (The input fields of the Apache Pluto UrlTestPortlet are
vulnerable to ...)
NOT-FOR-US: Apache Pluto UrlTestPortlet
CVE-2021-36736
- RESERVED
+ REJECTED
CVE-2021-36735
- RESERVED
+ REJECTED
CVE-2021-36734
- RESERVED
+ REJECTED
CVE-2021-36733
RESERVED
CVE-2021-36732
@@ -37236,8 +37393,8 @@ CVE-2021-33964
RESERVED
CVE-2021-33963
RESERVED
-CVE-2021-33962
- RESERVED
+CVE-2021-33962 (China Mobile An Lianbao WF-1 router v1.0.1 is affected by an
OS comman ...)
+ TODO: check
CVE-2021-33961
RESERVED
CVE-2021-33960
@@ -40589,10 +40746,10 @@ CVE-2021-32652 (Nextcloud Mail is a mail app for the
Nextcloud platform. A missi
- nextcloud-server <itp> (bug #941708)
CVE-2021-32651 (OneDev is a development operations platform. If the LDAP
external auth ...)
NOT-FOR-US: OneDev
-CVE-2021-32650
- RESERVED
-CVE-2021-32649
- RESERVED
+CVE-2021-32650 (October CMS is a self-hosted content management system (CMS)
platform ...)
+ TODO: check
+CVE-2021-32649 (October CMS is a self-hosted content management system (CMS)
platform ...)
+ TODO: check
CVE-2021-32648 (octobercms in a CMS platform based on the Laravel PHP
Framework. In af ...)
NOT-FOR-US: October CMS
CVE-2021-32647 (Emissary is a P2P based data-driven workflow engine. Affected
versions ...)
@@ -43078,7 +43235,7 @@ CVE-2021-31773
RESERVED
CVE-2021-31772
RESERVED
-CVE-2021-31771 (Splinterware System Scheduler Professional version 5.30 is
subject to ...)
+CVE-2021-31771 (** DISPUTED ** Splinterware System Scheduler Professional
version 5.30 ...)
NOT-FOR-US: Splinterware
CVE-2021-31770
RESERVED
@@ -51467,10 +51624,10 @@ CVE-2021-28509
RESERVED
CVE-2021-28508
RESERVED
-CVE-2021-28507
- RESERVED
-CVE-2021-28506
- RESERVED
+CVE-2021-28507 (An issue has recently been discovered in Arista EOS where,
under certa ...)
+ TODO: check
+CVE-2021-28506 (An issue has recently been discovered in Arista EOS where
certain gNOI ...)
+ TODO: check
CVE-2021-28505
RESERVED
CVE-2021-28504
@@ -51479,8 +51636,8 @@ CVE-2021-28503
RESERVED
CVE-2021-28502
RESERVED
-CVE-2021-28501
- RESERVED
+CVE-2021-28501 (An issue has recently been discovered in Arista EOS where the
incorrec ...)
+ TODO: check
CVE-2021-28500
RESERVED
CVE-2021-28499 (In Arista's MOS (Metamako Operating System) software which is
supporte ...)
@@ -62228,8 +62385,8 @@ CVE-2021-24048
RESERVED
CVE-2021-24047
RESERVED
-CVE-2021-24046
- RESERVED
+CVE-2021-24046 (A logic flaw in Ray-Ban® Stories device software allowed
some par ...)
+ TODO: check
CVE-2021-24045 (A type confusion vulnerability could be triggered when
resolving the " ...)
TODO: check
CVE-2021-24044
@@ -72037,10 +72194,10 @@ CVE-2021-20615
RESERVED
CVE-2021-20614
RESERVED
-CVE-2021-20613
- RESERVED
-CVE-2021-20612
- RESERVED
+CVE-2021-20613 (Improper initialization vulnerability in MELSEC-F series
FX3U-ENET Fir ...)
+ TODO: check
+CVE-2021-20612 (Lack of administrator control over security vulnerability in
MELSEC-F ...)
+ TODO: check
CVE-2021-20611 (Improper Input Validation vulnerability in MELSEC iQ-R Series
R00/01/0 ...)
NOT-FOR-US: Mitsubishi
CVE-2021-20610 (Improper Handling of Length Parameter Inconsistency
vulnerability in M ...)
@@ -117441,85 +117598,85 @@ CVE-2020-13753 (The bubblewrap sandbox of WebKitGTK
and WPE WebKit, prior to 2.2
- wpewebkit 2.28.3-1
NOTE: https://webkitgtk.org/security/WSA-2020-0006.html
CVE-2020-13752
- RESERVED
+ REJECTED
CVE-2020-13751
- RESERVED
+ REJECTED
CVE-2020-13750
- RESERVED
+ REJECTED
CVE-2020-13749
- RESERVED
+ REJECTED
CVE-2020-13748
- RESERVED
+ REJECTED
CVE-2020-13747
- RESERVED
+ REJECTED
CVE-2020-13746
- RESERVED
+ REJECTED
CVE-2020-13745
- RESERVED
+ REJECTED
CVE-2020-13744
- RESERVED
+ REJECTED
CVE-2020-13743
- RESERVED
+ REJECTED
CVE-2020-13742
- RESERVED
+ REJECTED
CVE-2020-13741
- RESERVED
+ REJECTED
CVE-2020-13740
- RESERVED
+ REJECTED
CVE-2020-13739
- RESERVED
+ REJECTED
CVE-2020-13738
- RESERVED
+ REJECTED
CVE-2020-13737
- RESERVED
+ REJECTED
CVE-2020-13736
- RESERVED
+ REJECTED
CVE-2020-13735
- RESERVED
+ REJECTED
CVE-2020-13734
- RESERVED
+ REJECTED
CVE-2020-13733
- RESERVED
+ REJECTED
CVE-2020-13732
- RESERVED
+ REJECTED
CVE-2020-13731
- RESERVED
+ REJECTED
CVE-2020-13730
- RESERVED
+ REJECTED
CVE-2020-13729
- RESERVED
+ REJECTED
CVE-2020-13728
- RESERVED
+ REJECTED
CVE-2020-13727
- RESERVED
+ REJECTED
CVE-2020-13726
- RESERVED
+ REJECTED
CVE-2020-13725
- RESERVED
+ REJECTED
CVE-2020-13724
- RESERVED
+ REJECTED
CVE-2020-13723
- RESERVED
+ REJECTED
CVE-2020-13722
- RESERVED
+ REJECTED
CVE-2020-13721
- RESERVED
+ REJECTED
CVE-2020-13720
- RESERVED
+ REJECTED
CVE-2020-13719
- RESERVED
+ REJECTED
CVE-2020-13718
- RESERVED
+ REJECTED
CVE-2020-13717
- RESERVED
+ REJECTED
CVE-2020-13716
- RESERVED
+ REJECTED
CVE-2020-13715
- RESERVED
+ REJECTED
CVE-2020-13714
- RESERVED
+ REJECTED
CVE-2020-13713
- RESERVED
+ REJECTED
CVE-2020-13712
RESERVED
CVE-2020-13711
@@ -119102,165 +119259,165 @@ CVE-2020-13091 (** DISPUTED ** pandas through
1.0.3 can unserialize and execute
CVE-2020-13090
RESERVED
CVE-2020-13089
- RESERVED
+ REJECTED
CVE-2020-13088
- RESERVED
+ REJECTED
CVE-2020-13087
- RESERVED
+ REJECTED
CVE-2020-13086
- RESERVED
+ REJECTED
CVE-2020-13085
- RESERVED
+ REJECTED
CVE-2020-13084
- RESERVED
+ REJECTED
CVE-2020-13083
- RESERVED
+ REJECTED
CVE-2020-13082
- RESERVED
+ REJECTED
CVE-2020-13081
- RESERVED
+ REJECTED
CVE-2020-13080
- RESERVED
+ REJECTED
CVE-2020-13079
- RESERVED
+ REJECTED
CVE-2020-13078
- RESERVED
+ REJECTED
CVE-2020-13077
- RESERVED
+ REJECTED
CVE-2020-13076
- RESERVED
+ REJECTED
CVE-2020-13075
- RESERVED
+ REJECTED
CVE-2020-13074
- RESERVED
+ REJECTED
CVE-2020-13073
- RESERVED
+ REJECTED
CVE-2020-13072
- RESERVED
+ REJECTED
CVE-2020-13071
- RESERVED
+ REJECTED
CVE-2020-13070
- RESERVED
+ REJECTED
CVE-2020-13069
- RESERVED
+ REJECTED
CVE-2020-13068
- RESERVED
+ REJECTED
CVE-2020-13067
- RESERVED
+ REJECTED
CVE-2020-13066
- RESERVED
+ REJECTED
CVE-2020-13065
- RESERVED
+ REJECTED
CVE-2020-13064
- RESERVED
+ REJECTED
CVE-2020-13063
- RESERVED
+ REJECTED
CVE-2020-13062
- RESERVED
+ REJECTED
CVE-2020-13061
- RESERVED
+ REJECTED
CVE-2020-13060
- RESERVED
+ REJECTED
CVE-2020-13059
- RESERVED
+ REJECTED
CVE-2020-13058
- RESERVED
+ REJECTED
CVE-2020-13057
- RESERVED
+ REJECTED
CVE-2020-13056
- RESERVED
+ REJECTED
CVE-2020-13055
- RESERVED
+ REJECTED
CVE-2020-13054
- RESERVED
+ REJECTED
CVE-2020-13053
- RESERVED
+ REJECTED
CVE-2020-13052
- RESERVED
+ REJECTED
CVE-2020-13051
- RESERVED
+ REJECTED
CVE-2020-13050
- RESERVED
+ REJECTED
CVE-2020-13049
- RESERVED
+ REJECTED
CVE-2020-13048
- RESERVED
+ REJECTED
CVE-2020-13047
- RESERVED
+ REJECTED
CVE-2020-13046
- RESERVED
+ REJECTED
CVE-2020-13045
- RESERVED
+ REJECTED
CVE-2020-13044
- RESERVED
+ REJECTED
CVE-2020-13043
- RESERVED
+ REJECTED
CVE-2020-13042
- RESERVED
+ REJECTED
CVE-2020-13041
- RESERVED
+ REJECTED
CVE-2020-13040
- RESERVED
+ REJECTED
CVE-2020-13039
- RESERVED
+ REJECTED
CVE-2020-13038
- RESERVED
+ REJECTED
CVE-2020-13037
- RESERVED
+ REJECTED
CVE-2020-13036
- RESERVED
+ REJECTED
CVE-2020-13035
- RESERVED
+ REJECTED
CVE-2020-13034
- RESERVED
+ REJECTED
CVE-2020-13033
- RESERVED
+ REJECTED
CVE-2020-13032
- RESERVED
+ REJECTED
CVE-2020-13031
- RESERVED
+ REJECTED
CVE-2020-13030
- RESERVED
+ REJECTED
CVE-2020-13029
- RESERVED
+ REJECTED
CVE-2020-13028
- RESERVED
+ REJECTED
CVE-2020-13027
- RESERVED
+ REJECTED
CVE-2020-13026
- RESERVED
+ REJECTED
CVE-2020-13025
- RESERVED
+ REJECTED
CVE-2020-13024
- RESERVED
+ REJECTED
CVE-2020-13023
- RESERVED
+ REJECTED
CVE-2020-13022
- RESERVED
+ REJECTED
CVE-2020-13021
- RESERVED
+ REJECTED
CVE-2020-13020
- RESERVED
+ REJECTED
CVE-2020-13019
- RESERVED
+ REJECTED
CVE-2020-13018
- RESERVED
+ REJECTED
CVE-2020-13017
- RESERVED
+ REJECTED
CVE-2020-13016
- RESERVED
+ REJECTED
CVE-2020-13015
- RESERVED
+ REJECTED
CVE-2020-13014
- RESERVED
+ REJECTED
CVE-2020-13013
- RESERVED
+ REJECTED
CVE-2020-13012
- RESERVED
+ REJECTED
CVE-2020-13011
- RESERVED
+ REJECTED
CVE-2020-13010
- RESERVED
+ REJECTED
CVE-2020-13009
REJECTED
CVE-2020-13008
@@ -119364,55 +119521,55 @@ CVE-2020-12960 (AMD Graphics Driver for Windows 10,
amdfender.sys may improperly
CVE-2020-12959
REJECTED
CVE-2020-12958
- RESERVED
+ REJECTED
CVE-2020-12957
REJECTED
CVE-2020-12956
- RESERVED
+ REJECTED
CVE-2020-12955
- RESERVED
+ REJECTED
CVE-2020-12954 (A side effect of an integrated chipset option may be able to
be used b ...)
NOT-FOR-US: AMD
CVE-2020-12953
- RESERVED
+ REJECTED
CVE-2020-12952
- RESERVED
+ REJECTED
CVE-2020-12951 (Race condition in PSP FW could allow less privileged x86 code
to perfo ...)
NOT-FOR-US: AMD
CVE-2020-12950
- RESERVED
+ REJECTED
CVE-2020-12949
- RESERVED
+ REJECTED
CVE-2020-12948
- RESERVED
+ REJECTED
CVE-2020-12947
- RESERVED
+ REJECTED
CVE-2020-12946 (Insufficient input validation in PSP firmware for discrete TPM
command ...)
NOT-FOR-US: AMD
CVE-2020-12945
- RESERVED
+ REJECTED
CVE-2020-12944 (Insufficient validation of BIOS image length by PSP Firmware
could lea ...)
NOT-FOR-US: AMD
CVE-2020-12943
- RESERVED
+ REJECTED
CVE-2020-12942
- RESERVED
+ REJECTED
CVE-2020-12941
REJECTED
CVE-2020-12940
RESERVED
CVE-2020-12939
- RESERVED
+ REJECTED
CVE-2020-12938
- RESERVED
+ REJECTED
CVE-2020-12937
- RESERVED
+ REJECTED
CVE-2020-12936
REJECTED
CVE-2020-12935
REJECTED
CVE-2020-12934
- RESERVED
+ REJECTED
CVE-2020-12933 (A denial of service vulnerability exists in the D3DKMTEscape
handler f ...)
NOT-FOR-US: AMD ATIKMDAG.SYS
CVE-2020-12932
@@ -119444,7 +119601,7 @@ CVE-2020-12920 (A potential denial of service issue
exists in the AMD Display dr
CVE-2020-12919
REJECTED
CVE-2020-12918
- RESERVED
+ REJECTED
CVE-2020-12917
REJECTED
CVE-2020-12916
@@ -119470,9 +119627,9 @@ CVE-2020-12910
CVE-2020-12909
REJECTED
CVE-2020-12908
- RESERVED
+ REJECTED
CVE-2020-12907
- RESERVED
+ REJECTED
CVE-2020-12906
REJECTED
CVE-2020-12905 (Out of Bounds Read in AMD Graphics Driver for Windows 10 in
Escape 0x3 ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85baff29d071fa8137957d594932bed7b2317624
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85baff29d071fa8137957d594932bed7b2317624
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
