Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 46276672 by security tracker role at 2022-12-02T08:10:28+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,105 @@ +CVE-2023-21623 + RESERVED +CVE-2023-21622 + RESERVED +CVE-2023-21621 + RESERVED +CVE-2023-21620 + RESERVED +CVE-2023-21619 + RESERVED +CVE-2023-21618 + RESERVED +CVE-2023-21617 + RESERVED +CVE-2023-21616 + RESERVED +CVE-2023-21615 + RESERVED +CVE-2023-21614 + RESERVED +CVE-2023-21613 + RESERVED +CVE-2023-21612 + RESERVED +CVE-2023-21611 + RESERVED +CVE-2023-21610 + RESERVED +CVE-2023-21609 + RESERVED +CVE-2023-21608 + RESERVED +CVE-2023-21607 + RESERVED +CVE-2023-21606 + RESERVED +CVE-2023-21605 + RESERVED +CVE-2023-21604 + RESERVED +CVE-2023-21603 + RESERVED +CVE-2023-21602 + RESERVED +CVE-2023-21601 + RESERVED +CVE-2023-21600 + RESERVED +CVE-2023-21599 + RESERVED +CVE-2023-21598 + RESERVED +CVE-2023-21597 + RESERVED +CVE-2023-21596 + RESERVED +CVE-2023-21595 + RESERVED +CVE-2023-21594 + RESERVED +CVE-2023-21593 + RESERVED +CVE-2023-21592 + RESERVED +CVE-2023-21591 + RESERVED +CVE-2023-21590 + RESERVED +CVE-2023-21589 + RESERVED +CVE-2023-21588 + RESERVED +CVE-2023-21587 + RESERVED +CVE-2023-21586 + RESERVED +CVE-2023-21585 + RESERVED +CVE-2023-21584 + RESERVED +CVE-2023-21583 + RESERVED +CVE-2023-21582 + RESERVED +CVE-2023-21581 + RESERVED +CVE-2023-21580 + RESERVED +CVE-2023-21579 + RESERVED +CVE-2023-21578 + RESERVED +CVE-2023-21577 + RESERVED +CVE-2023-21576 + RESERVED +CVE-2023-21575 + RESERVED +CVE-2023-21574 + RESERVED +CVE-2022-4262 + RESERVED CVE-2023-21573 RESERVED CVE-2023-21572 @@ -2121,8 +2223,8 @@ CVE-2022-45564 RESERVED CVE-2022-45563 RESERVED -CVE-2022-45562 - RESERVED +CVE-2022-45562 (Insecure permissions in Telos Alliance Omnia MPX Node v1.0.0 to v1.4.9 ...) + TODO: check CVE-2022-45561 RESERVED CVE-2022-45560 @@ -4275,12 +4377,12 @@ CVE-2022-44932 RESERVED CVE-2022-44931 RESERVED -CVE-2022-44930 - RESERVED -CVE-2022-44929 - RESERVED -CVE-2022-44928 - RESERVED +CVE-2022-44930 (D-Link DHP-W310AV 3.10EU was discovered to contain a command injection ...) + TODO: check +CVE-2022-44929 (An access control issue in D-Link DVG-G5402SP GE_1.03 allows unauthent ...) + TODO: check +CVE-2022-44928 (D-Link DVG-G5402SP GE_1.03 was discovered to contain a command injecti ...) + TODO: check CVE-2022-44927 RESERVED CVE-2022-44926 @@ -7141,10 +7243,10 @@ CVE-2022-44214 RESERVED CVE-2022-44213 RESERVED -CVE-2022-44212 - RESERVED -CVE-2022-44211 - RESERVED +CVE-2022-44212 (In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to ac ...) + TODO: check +CVE-2022-44211 (In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote atta ...) + TODO: check CVE-2022-44210 RESERVED CVE-2022-44209 @@ -11195,8 +11297,8 @@ CVE-2022-43335 RESERVED CVE-2022-43334 RESERVED -CVE-2022-43333 - RESERVED +CVE-2022-43333 (Telenia Software s.r.l TVox before v22.0.17 was discovered to contain ...) + TODO: check CVE-2022-43332 (A cross-site scripting (XSS) vulnerability in Wondercms v3.3.4 allows ...) NOT-FOR-US: Wondercms CVE-2022-43331 (Canteen Management System v1.0 was discovered to contain a SQL injecti ...) @@ -11211,8 +11313,8 @@ CVE-2022-43327 RESERVED CVE-2022-43326 (An Insecure Direct Object Reference (IDOR) vulnerability in the passwo ...) NOT-FOR-US: Telos Alliance Omnia MPX Node -CVE-2022-43325 - RESERVED +CVE-2022-43325 (An unauthenticated command injection vulnerability in the product lice ...) + TODO: check CVE-2022-43324 RESERVED CVE-2022-43323 (EyouCMS V1.5.9-UTF8-SP1 was discovered to contain a Cross-Site Request ...) @@ -12968,8 +13070,8 @@ CVE-2022-42719 (A use-after-free in the mac80211 stack when parsing a multi-BSSI NOTE: https://www.openwall.com/lists/oss-security/2022/10/13/2 NOTE: https://lore.kernel.org/netdev/20221013100522.46346-1-johan...@sipsolutions.net/T/#u NOTE: https://github.com/PurpleVsGreen/beacown -CVE-2022-42718 - RESERVED +CVE-2022-42718 (Incorrect default permissions in the installation folder for NI LabVIE ...) + TODO: check CVE-2022-42717 (An issue was discovered in Hashicorp Packer before 2.3.1. The recommen ...) NOT-FOR-US: Hashicorp Packer CVE-2022-42716 @@ -14037,8 +14139,8 @@ CVE-2022-42264 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42263 RESERVED @@ -14052,8 +14154,8 @@ CVE-2022-42263 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42262 RESERVED @@ -14067,8 +14169,8 @@ CVE-2022-42262 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42261 RESERVED @@ -14082,8 +14184,8 @@ CVE-2022-42261 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42260 RESERVED @@ -14097,8 +14199,8 @@ CVE-2022-42260 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42259 RESERVED @@ -14115,8 +14217,8 @@ CVE-2022-42259 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42258 RESERVED @@ -14133,8 +14235,8 @@ CVE-2022-42258 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42257 RESERVED @@ -14151,8 +14253,8 @@ CVE-2022-42257 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42256 RESERVED @@ -14166,8 +14268,8 @@ CVE-2022-42256 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42255 RESERVED @@ -14179,8 +14281,8 @@ CVE-2022-42255 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42254 RESERVED @@ -14194,8 +14296,8 @@ CVE-2022-42254 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-42253 RESERVED @@ -14824,14 +14926,14 @@ CVE-2022-41973 (multipath-tools 0.7.7 through 0.9.x before 0.9.2 allows local us NOTE: incompatible change (which can be overriden but leaving CVE open). CVE-2022-41972 RESERVED -CVE-2022-41971 - RESERVED -CVE-2022-41970 - RESERVED -CVE-2022-41969 - RESERVED -CVE-2022-41968 - RESERVED +CVE-2022-41971 (Nextcould Talk android is a video and audio conferencing app for Nextc ...) + TODO: check +CVE-2022-41970 (Nextcloud Server is an open source personal cloud server. Prior to ver ...) + TODO: check +CVE-2022-41969 (Nextcloud Server is an open source personal cloud server. Prior to ver ...) + TODO: check +CVE-2022-41968 (Nextcloud Server is an open source personal cloud server. Prior to ver ...) + TODO: check CVE-2022-41967 RESERVED CVE-2022-41966 @@ -32825,8 +32927,8 @@ CVE-2022-35122 (An access control issue in Ecowitt GW1100 Series Weather Station NOT-FOR-US: Ecowitt GW1100 Series Weather Stations CVE-2022-35121 (Novel-Plus v3.6.1 was discovered to contain a SQL injection vulnerabil ...) NOT-FOR-US: Novel-Plus -CVE-2022-35120 - RESERVED +CVE-2022-35120 (IXPdata EasyInstall 6.6.14725 contains an access control issue. ...) + TODO: check CVE-2022-35119 RESERVED CVE-2022-35118 (PyroCMS v3.9 was discovered to contain multiple cross-site scripting ( ...) @@ -34213,8 +34315,8 @@ CVE-2022-34684 - nvidia-graphics-drivers <unfixed> (bug #1025279) [bullseye] - nvidia-graphics-drivers <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla <unfixed> (bug #1025287) - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-34683 RESERVED @@ -34230,8 +34332,8 @@ CVE-2022-34682 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-34681 RESERVED @@ -34250,8 +34352,8 @@ CVE-2022-34680 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-34679 RESERVED @@ -34265,8 +34367,8 @@ CVE-2022-34679 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-34678 RESERVED @@ -34285,8 +34387,8 @@ CVE-2022-34677 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-34676 RESERVED @@ -34305,8 +34407,8 @@ CVE-2022-34675 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-34674 RESERVED @@ -34321,8 +34423,8 @@ CVE-2022-34674 - nvidia-graphics-drivers-tesla-460 460.106.00-3 (bug #1025284) [bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported) NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470 - - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) - [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) + - nvidia-graphics-drivers-tesla-470 <unfixed> (bug #1025285) + [bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported) - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1025286) CVE-2022-34673 RESERVED @@ -66826,8 +66928,8 @@ CVE-2022-23739 RESERVED CVE-2022-23738 (An improper cache key vulnerability was identified in GitHub Enterpris ...) NOT-FOR-US: GitHub Enterprise Server -CVE-2022-23737 - RESERVED +CVE-2022-23737 (An improper privilege management vulnerability was identified in GitHu ...) + TODO: check CVE-2022-23736 RESERVED CVE-2022-23735 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/46276672680ce1cb1f40304e01f4ba7b57cc5f12 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/46276672680ce1cb1f40304e01f4ba7b57cc5f12 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits