Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 7082d4aa by security tracker role at 2021-10-02T20:10:42+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,5 @@ +CVE-2021-3852 + RESERVED CVE-2021-41865 RESERVED CVE-2021-41864 (prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kern ...) @@ -3215,6 +3217,7 @@ CVE-2021-3762 CVE-2021-40439 RESERVED CVE-2021-40438 (A crafted request uri-path can cause mod_proxy to forward the request ...) + {DLA-2776-1} - apache2 2.4.49-1 NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2021-40438 NOTE: Minimal fix: https://github.com/apache/httpd/commit/496c863776c68bd08cdbeb7d8fa5935ba63b76c2 (2.4.x) @@ -5894,6 +5897,7 @@ CVE-2021-39277 CVE-2021-39276 RESERVED CVE-2021-39275 (ap_escape_quotes() may write beyond the end of a buffer when given mal ...) + {DLA-2776-1} - apache2 2.4.49-1 NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2021-39275 NOTE: https://github.com/apache/httpd/commit/d8bce6f575abb29997bba358b31842bf757776c6 (trunk) @@ -7227,6 +7231,7 @@ CVE-2021-38716 CVE-2021-38715 RESERVED CVE-2021-38714 (In Plib through 1.85, there is an integer overflow vulnerability that ...) + {DLA-2775-1} - plib 1.8.5-10 (bug #992973) [bullseye] - plib <no-dsa> (Minor issue) [buster] - plib <no-dsa> (Minor issue) @@ -16395,6 +16400,7 @@ CVE-2021-34800 CVE-2021-34799 RESERVED CVE-2021-34798 (Malformed requests may cause the server to dereference a NULL pointer. ...) + {DLA-2776-1} - apache2 2.4.49-1 NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2021-34798 NOTE: https://github.com/apache/httpd/commit/fa7b2a5250e54363b3a6c8ac3aaa7de4e8da9b2e (candidate-2.4.49-rc1) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7082d4aa325983de21e06794c55d8e06976d1008 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7082d4aa325983de21e06794c55d8e06976d1008 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits