Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 29d18160 by security tracker role at 2022-03-23T08:10:15+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,31 @@ +CVE-2022-27666 (In the Linux kernel before 5.16.15, there is a buffer overflow in ESP ...) + TODO: check +CVE-2022-27665 + RESERVED +CVE-2022-27664 + RESERVED +CVE-2022-27663 + RESERVED +CVE-2022-27658 + RESERVED +CVE-2022-27657 + RESERVED +CVE-2022-27656 + RESERVED +CVE-2022-27655 + RESERVED +CVE-2022-27654 + RESERVED +CVE-2022-26518 + RESERVED +CVE-2022-26422 + RESERVED +CVE-2022-26420 + RESERVED +CVE-2022-26075 + RESERVED +CVE-2022-1056 + RESERVED CVE-2022-XXXX [Possible man-in-the-middle attack in TLS connection to servers] - weechat 3.4.1-1 NOTE: https://weechat.org/doc/security/WSA-2022-1/ @@ -56,6 +84,7 @@ CVE-2022-1045 CVE-2022-1044 RESERVED CVE-2022-1043 [Linux Kernel io_uring Use-After-Free Privilege Escalation Vulnerability] + RESERVED - linux 5.14.6-1 [bullseye] - linux 5.10.70-1 [buster] - linux <not-affected> (Vulnerable code not present) @@ -848,8 +877,8 @@ CVE-2022-1033 RESERVED CVE-2022-1032 RESERVED -CVE-2022-1031 - RESERVED +CVE-2022-1031 (Use After Free in op_is_set_bp in GitHub repository radareorg/radare2 ...) + TODO: check CVE-2022-27258 RESERVED CVE-2022-27257 @@ -3720,14 +3749,14 @@ CVE-2022-26191 RESERVED CVE-2022-26190 RESERVED -CVE-2022-26189 - RESERVED -CVE-2022-26188 - RESERVED -CVE-2022-26187 - RESERVED -CVE-2022-26186 - RESERVED +CVE-2022-26189 (TOTOLINK N600R V4.3.0cu.7570_B20200620 was discovered to contain a com ...) + TODO: check +CVE-2022-26188 (TOTOLINK N600R V4.3.0cu.7570_B20200620 was discovered to contain a com ...) + TODO: check +CVE-2022-26187 (TOTOLINK N600R V4.3.0cu.7570_B20200620 was discovered to contain a com ...) + TODO: check +CVE-2022-26186 (TOTOLINK N600R V4.3.0cu.7570_B20200620 was discovered to contain a com ...) + TODO: check CVE-2022-26185 RESERVED CVE-2022-26184 (Poetry v1.1.9 and below was discovered to contain an untrusted search ...) @@ -5503,8 +5532,8 @@ CVE-2022-25520 RESERVED CVE-2022-25519 RESERVED -CVE-2022-25518 - RESERVED +CVE-2022-25518 (In CMDBuild from version 3.0 to 3.3.2 payload requests are saved in a ...) + TODO: check CVE-2022-25517 (MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerab ...) TODO: check CVE-2022-25516 (stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow ...) @@ -51558,8 +51587,8 @@ CVE-2021-33963 (China Mobile An Lianbao WF-1 v1.0.1 router web interface through NOT-FOR-US: China Mobile An Lianbao WF-1 router web interface CVE-2021-33962 (China Mobile An Lianbao WF-1 router v1.0.1 is affected by an OS comman ...) NOT-FOR-US: China Mobile An Lianbao WF-1 router -CVE-2021-33961 - RESERVED +CVE-2021-33961 (A Cross Site Scripting (XSS) vulnerabililty exists in enhanced-github ...) + TODO: check CVE-2021-33960 RESERVED CVE-2021-33959 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/29d18160fa71c28e3a81f3d6031be83a4ecfdcd5 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/29d18160fa71c28e3a81f3d6031be83a4ecfdcd5 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits