[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso Wed, 03 Mar 2021 00:10:38 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
622045d6 by security tracker role at 2021-03-03T08:10:23+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -374,6 +374,7 @@ CVE-2021-27737
 CVE-2020-35358
        RESERVED
 CVE-2021-27803 (A vulnerability was discovered in how p2p/p2p_pd.c in 
wpa_supplicant b ...)
+       {DLA-2581-1}
        - wpa 2:2.9.0-21
        NOTE: https://www.openwall.com/lists/oss-security/2021/02/25/3
        NOTE: 
https://w1.fi/security/2021-1/wpa_supplicant-p2p-provision-discovery-processing-vulnerability.txt
@@ -1806,8 +1807,8 @@ CVE-2021-27080
        RESERVED
 CVE-2021-27079
        RESERVED
-CVE-2021-27078
-       RESERVED
+CVE-2021-27078 (Microsoft Exchange Server Remote Code Execution Vulnerability 
This CVE ...)
+       TODO: check
 CVE-2021-27077
        RESERVED
 CVE-2021-27076
@@ -1832,8 +1833,8 @@ CVE-2021-27067
        RESERVED
 CVE-2021-27066
        RESERVED
-CVE-2021-27065
-       RESERVED
+CVE-2021-27065 (Microsoft Exchange Server Remote Code Execution Vulnerability 
This CVE ...)
+       TODO: check
 CVE-2021-27064
        RESERVED
 CVE-2021-27063
@@ -2301,16 +2302,16 @@ CVE-2021-26860
        RESERVED
 CVE-2021-26859
        RESERVED
-CVE-2021-26858
-       RESERVED
-CVE-2021-26857
-       RESERVED
+CVE-2021-26858 (Microsoft Exchange Server Remote Code Execution Vulnerability 
This CVE ...)
+       TODO: check
+CVE-2021-26857 (Microsoft Exchange Server Remote Code Execution Vulnerability 
This CVE ...)
+       TODO: check
 CVE-2021-26856
        RESERVED
-CVE-2021-26855
-       RESERVED
-CVE-2021-26854
-       RESERVED
+CVE-2021-26855 (Microsoft Exchange Server Remote Code Execution Vulnerability 
This CVE ...)
+       TODO: check
+CVE-2021-26854 (Microsoft Exchange Server Remote Code Execution Vulnerability 
This CVE ...)
+       TODO: check
 CVE-2021-26853
        RESERVED
 CVE-2021-26910 (Firejail before 0.9.64.4 allows attackers to bypass intended 
access re ...)
@@ -3391,8 +3392,8 @@ CVE-2021-26414
        RESERVED
 CVE-2021-26413
        RESERVED
-CVE-2021-26412
-       RESERVED
+CVE-2021-26412 (Microsoft Exchange Server Remote Code Execution Vulnerability 
This CVE ...)
+       TODO: check
 CVE-2021-26411
        RESERVED
 CVE-2021-26410
@@ -11373,12 +11374,12 @@ CVE-2021-22865
        RESERVED
 CVE-2021-22864
        RESERVED
-CVE-2021-22863
-       RESERVED
-CVE-2021-22862
-       RESERVED
-CVE-2021-22861
-       RESERVED
+CVE-2021-22863 (An improper access control vulnerability was identified in the 
GitHub  ...)
+       TODO: check
+CVE-2021-22862 (An improper access control vulnerability was identified in 
GitHub Ente ...)
+       TODO: check
+CVE-2021-22861 (An improper access control vulnerability was identified in 
GitHub Ente ...)
+       TODO: check
 CVE-2021-22860
        RESERVED
 CVE-2021-22859
@@ -15844,10 +15845,10 @@ CVE-2021-21355
        RESERVED
 CVE-2021-21354
        RESERVED
-CVE-2021-21353
-       RESERVED
-CVE-2021-21352
-       RESERVED
+CVE-2021-21353 (Pug is an npm package which is a high-performance template 
engine. In  ...)
+       TODO: check
+CVE-2021-21352 (Anuko Time Tracker is an open source, web-based time tracking 
applicat ...)
+       TODO: check
 CVE-2021-21351
        RESERVED
 CVE-2021-21350
@@ -16069,14 +16070,14 @@ CVE-2021-21260 (Online Invoicing System (OIS) is open 
source software which is a
        NOT-FOR-US: Online Invoicing System (OIS)
 CVE-2021-21259 (HedgeDoc is open source software which lets you create 
real-time colla ...)
        NOT-FOR-US: HedgeDoc
-CVE-2021-21258
-       RESERVED
+CVE-2021-21258 (GLPI is an open-source asset and IT management software 
package that p ...)
+       TODO: check
 CVE-2021-21257
        RESERVED
 CVE-2021-21256
        RESERVED
-CVE-2021-21255
-       RESERVED
+CVE-2021-21255 (GLPI is an open-source asset and IT management software 
package that p ...)
+       TODO: check
 CVE-2021-21254 (CKEditor 5 is an open source rich text editor framework with a 
modular ...)
        NOT-FOR-US: CKEditor 5 Markdown plugin
 CVE-2021-21253 (OnlineVotingSystem is an open source project hosted on GitHub. 
OnlineV ...)
@@ -20989,8 +20990,8 @@ CVE-2021-2140
        RESERVED
 CVE-2021-2139
        RESERVED
-CVE-2021-2138
-       RESERVED
+CVE-2021-2138 (Vulnerability in the Oracle Cloud Infrastructure Data Science 
Notebook ...)
+       TODO: check
 CVE-2021-2137
        RESERVED
 CVE-2021-2136
@@ -28965,7 +28966,7 @@ CVE-2021-0217 (A vulnerability in processing of certain 
DHCP packets from adjace
        NOT-FOR-US: Juniper
 CVE-2021-0216
        RESERVED
-CVE-2021-0215 (On Juniper Networks Junos EX series, QFX Series and SRX branch 
series  ...)
+CVE-2021-0215 (On Juniper Networks Junos EX series, QFX Series, MX Series and 
SRX bra ...)
        NOT-FOR-US: Juniper
 CVE-2021-0214
        RESERVED
@@ -64450,14 +64451,14 @@ CVE-2020-12532
        RESERVED
 CVE-2020-12531
        RESERVED
-CVE-2020-12530
-       RESERVED
-CVE-2020-12529
-       RESERVED
-CVE-2020-12528
-       RESERVED
-CVE-2020-12527
-       RESERVED
+CVE-2020-12530 (An issue was discovered in MB connect line mymbCONNECT24 and 
mbCONNECT ...)
+       TODO: check
+CVE-2020-12529 (An issue was discovered in MB connect line mymbCONNECT24 and 
mbCONNECT ...)
+       TODO: check
+CVE-2020-12528 (An issue was discovered in MB connect line mymbCONNECT24 and 
mbCONNECT ...)
+       TODO: check
+CVE-2020-12527 (An issue was discovered in MB connect line mymbCONNECT24 and 
mbCONNECT ...)
+       TODO: check
 CVE-2020-12526
        RESERVED
 CVE-2020-12525 (M&amp;M Software fdtCONTAINER Component in versions below 
3.5.20304.x  ...)
@@ -71438,8 +71439,8 @@ CVE-2020-10521
        RESERVED
 CVE-2020-10520
        RESERVED
-CVE-2020-10519
-       RESERVED
+CVE-2020-10519 (A remote code execution vulnerability was identified in GitHub 
Enterpr ...)
+       TODO: check
 CVE-2020-10518 (A remote code execution vulnerability was identified in GitHub 
Enterpr ...)
        NOT-FOR-US: GitHub Enterprise Server
 CVE-2020-10517 (An improper access control vulnerability was identified in 
GitHub Ente ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/622045d660567239700445c01261761331389c6d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/622045d660567239700445c01261761331389c6d
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to