Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 7010ccca by security tracker role at 2021-02-24T08:10:23+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,123 @@ +CVE-2021-27643 + RESERVED +CVE-2021-27642 + RESERVED +CVE-2021-27641 + RESERVED +CVE-2021-27640 + RESERVED +CVE-2021-27639 + RESERVED +CVE-2021-27638 + RESERVED +CVE-2021-27637 + RESERVED +CVE-2021-27636 + RESERVED +CVE-2021-27635 + RESERVED +CVE-2021-27634 + RESERVED +CVE-2021-27633 + RESERVED +CVE-2021-27632 + RESERVED +CVE-2021-27631 + RESERVED +CVE-2021-27630 + RESERVED +CVE-2021-27629 + RESERVED +CVE-2021-27628 + RESERVED +CVE-2021-27627 + RESERVED +CVE-2021-27626 + RESERVED +CVE-2021-27625 + RESERVED +CVE-2021-27624 + RESERVED +CVE-2021-27623 + RESERVED +CVE-2021-27622 + RESERVED +CVE-2021-27621 + RESERVED +CVE-2021-27620 + RESERVED +CVE-2021-27619 + RESERVED +CVE-2021-27618 + RESERVED +CVE-2021-27617 + RESERVED +CVE-2021-27616 + RESERVED +CVE-2021-27615 + RESERVED +CVE-2021-27614 + RESERVED +CVE-2021-27613 + RESERVED +CVE-2021-27612 + RESERVED +CVE-2021-27611 + RESERVED +CVE-2021-27610 + RESERVED +CVE-2021-27609 + RESERVED +CVE-2021-27608 + RESERVED +CVE-2021-27607 + RESERVED +CVE-2021-27606 + RESERVED +CVE-2021-27605 + RESERVED +CVE-2021-27604 + RESERVED +CVE-2021-27603 + RESERVED +CVE-2021-27602 + RESERVED +CVE-2021-27601 + RESERVED +CVE-2021-27600 + RESERVED +CVE-2021-27599 + RESERVED +CVE-2021-27598 + RESERVED +CVE-2021-27597 + RESERVED +CVE-2021-27596 + RESERVED +CVE-2021-27595 + RESERVED +CVE-2021-27594 + RESERVED +CVE-2021-27593 + RESERVED +CVE-2021-27592 + RESERVED +CVE-2021-27591 + RESERVED +CVE-2021-27590 + RESERVED +CVE-2021-27589 + RESERVED +CVE-2021-27588 + RESERVED +CVE-2021-27587 + RESERVED +CVE-2021-27586 + RESERVED +CVE-2021-27585 + RESERVED +CVE-2021-27584 + RESERVED CVE-2021-27583 (** UNSUPPORTED WHEN ASSIGNED ** In Directus 8.x through 8.8.1, an atta ...) NOT-FOR-US: Directus CVE-2021-27582 (org/mitre/oauth2/web/OAuthConfirmationController.java in the OpenID Co ...) @@ -816,8 +936,7 @@ CVE-2021-3411 - linux 5.9.15-1 [buster] - linux <not-affected> (Vulnerable code introduced later) [stretch] - linux <not-affected> (Vulnerable code introduced later) -CVE-2021-3410 - RESERVED +CVE-2021-3410 (A flaw was found in libcaca v0.99.beta19. A buffer overflow issue in c ...) - libcaca <unfixed> NOTE: https://github.com/cacalabs/libcaca/issues/52 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1928437 @@ -1031,8 +1150,7 @@ CVE-2021-27106 RESERVED CVE-2021-27105 RESERVED -CVE-2021-3407 [Double free of object during linearization] - RESERVED +CVE-2021-3407 (A flaw was found in mupdf 1.18.0. Double free of object during lineari ...) - mupdf <unfixed> NOTE: http://git.ghostscript.com/?p=mupdf.git;h=cee7cefc610d42fd383b3c80c12cbc675443176a NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=703366 (not public yet) @@ -15190,8 +15308,8 @@ CVE-2021-21325 RESERVED CVE-2021-21324 RESERVED -CVE-2021-21323 - RESERVED +CVE-2021-21323 (Brave is an open source web browser with a focus on privacy and securi ...) + TODO: check CVE-2021-21322 RESERVED CVE-2021-21321 @@ -16834,20 +16952,20 @@ CVE-2021-20664 RESERVED CVE-2021-20663 RESERVED -CVE-2021-20662 - RESERVED -CVE-2021-20661 - RESERVED -CVE-2021-20660 - RESERVED -CVE-2021-20659 - RESERVED -CVE-2021-20658 - RESERVED -CVE-2021-20657 - RESERVED -CVE-2021-20656 - RESERVED +CVE-2021-20662 (Missing authentication for critical function in SolarView Compact SV-C ...) + TODO: check +CVE-2021-20661 (Directory traversal vulnerability in SolarView Compact SV-CPT-MC310 pr ...) + TODO: check +CVE-2021-20660 (Cross-site scripting vulnerability in SolarView Compact SV-CPT-MC310 p ...) + TODO: check +CVE-2021-20659 (SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticate ...) + TODO: check +CVE-2021-20658 (SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to ...) + TODO: check +CVE-2021-20657 (Improper access control vulnerability in SolarView Compact SV-CPT-MC31 ...) + TODO: check +CVE-2021-20656 (Exposure of information through directory listing in SolarView Compact ...) + TODO: check CVE-2021-20655 (FileZen (V3.0.0 to V4.2.7 and V5.0.0 to V5.0.2) allows a remote attack ...) NOT-FOR-US: FileZen CVE-2021-20654 (Wekan, open source kanban board system, between version 3.12 and 4.11, ...) @@ -17648,8 +17766,7 @@ CVE-2021-20257 [net: e1000: infinite loop while processing transmit descriptors] RESERVED - qemu <unfixed> NOTE: https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg03595.html -CVE-2021-20256 - RESERVED +CVE-2021-20256 (A flaw was found in Red Hat Satellite. The BMC interface exposes the p ...) NOT-FOR-US: Red Hat Satellite CVE-2021-20255 [net: eepro100: stack overflow via infinite recursion] RESERVED @@ -17660,8 +17777,7 @@ CVE-2021-20254 RESERVED CVE-2021-20253 RESERVED -CVE-2021-20252 - RESERVED +CVE-2021-20252 (A flaw was found in Red Hat 3scale API Management Platform 2. The 3sca ...) NOT-FOR-US: Red Hat 3scale API Management CVE-2021-20251 RESERVED @@ -17948,8 +18064,7 @@ CVE-2021-20196 [block: fdc: null pointer dereference may lead to guest crash] CVE-2021-20195 RESERVED NOT-FOR-US: Keycloak -CVE-2021-20194 [heap overflow in __cgroup_bpf_run_filter_getsockopt()] - RESERVED +CVE-2021-20194 (There is a vulnerability in the linux kernel versions higher than 5.2 ...) - linux <unfixed> [buster] - linux <not-affected> (Vulnerable code not present) [stretch] - linux <not-affected> (Vulnerable code not present) @@ -17995,8 +18110,7 @@ CVE-2021-20184 (It was found in Moodle before version 3.10.1, 3.9.4 and 3.8.7 th - moodle <removed> CVE-2021-20183 (It was found in Moodle before version 3.10.1 that some search inputs w ...) - moodle <removed> -CVE-2021-20182 - RESERVED +CVE-2021-20182 (A privilege escalation flaw was found in openshift4/ose-docker-builder ...) NOT-FOR-US: OpenShift CVE-2021-20181 [9pfs: Fully restart unreclaim loop] RESERVED @@ -18024,7 +18138,7 @@ CVE-2021-20177 [stretch] - linux <not-affected> (Vulnerable code not present) NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=209823 NOTE: https://www.openwall.com/lists/oss-security/2021/01/12/1 -CVE-2021-20176 (A flaw was found in ImageMagick in MagickCore/gem.c. An attacker who s ...) +CVE-2021-20176 (A divide-by-zero flaw was found in ImageMagick 6.9.11-57 and 7.0.10-57 ...) - imagemagick 8:6.9.11.57+dfsg-1 NOTE: https://github.com/ImageMagick/ImageMagick/issues/3077 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/fbd9a963db1ae5551c45dc8af57db0abd7695774 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7010ccca4db8a33516cd71d32e739a020149741f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7010ccca4db8a33516cd71d32e739a020149741f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits