diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2021-02-27 20:10:21 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2021-02-27 20:10:21 +0000 |
| commit | fde930bbd6d3d88e2a7a5a62e34a6f5fd7e97d17 (patch) | |
| tree | cfea196218e4bff5ffe60029a64a6ba34519f8fc | |
| parent | 2813861aa15debdbcd5c87abdaf572bae89702e2 (diff) | |
automatic update
| -rw-r--r-- | data/CVE/2020.list | 2 | ||||
| -rw-r--r-- | data/CVE/2021.list | 3 |
2 files changed, 5 insertions, 0 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list index 3bea81bbf8..ce3ed209b0 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -34257,6 +34257,7 @@ CVE-2020-15259 (ad-ldap-connector's admin panel before version 5.0.13 does not p CVE-2020-15258 (In Wire before 3.20.x, `shell.openExternal` was used without checking ...) NOT-FOR-US: Wire app CVE-2020-15257 (containerd is an industry-standard container runtime and is available ...) + {DSA-4865-1} - containerd 1.4.3~ds1-1 - docker.io 20.10.0~rc1+dfsg2-1 NOTE: https://github.com/containerd/containerd/security/advisories/GHSA-36xw-fx78-c5r4 @@ -34509,6 +34510,7 @@ CVE-2020-15159 (baserCMS 4.3.6 and earlier is affected by Cross Site Scripting ( CVE-2020-15158 (In libIEC61850 before version 1.4.3, when a message with COTP message ...) NOT-FOR-US: libIEC61850 CVE-2020-15157 (In containerd (an industry-standard container runtime) before version ...) + {DSA-4865-1} - containerd 1.3.2~ds1-2 - docker.io 19.03.13+dfsg2-1 NOTE: https://www.openwall.com/lists/oss-security/2020/10/15/1 diff --git a/data/CVE/2021.list b/data/CVE/2021.list index caa7bc5a4d..cc97f644bd 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -14040,6 +14040,7 @@ CVE-2021-21332 CVE-2021-21331 RESERVED CVE-2021-21330 (aiohttp is an asynchronous HTTP client/server framework for asyncio an ...) + {DSA-4864-1} - python-aiohttp 3.7.4-1 NOTE: https://github.com/aio-libs/aiohttp/issues/5497 NOTE: https://github.com/aio-libs/aiohttp/security/advisories/GHSA-v6wp-4m6f-gcjg @@ -14154,10 +14155,12 @@ CVE-2021-21287 (MinIO is a High Performance Object Storage released under Apache CVE-2021-21286 (AVideo Platform is an open-source Audio and Video platform. It is simi ...) NOT-FOR-US: AVideo Platform CVE-2021-21285 (In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in ...) + {DSA-4865-1} - docker.io 20.10.3+dfsg1-1 NOTE: https://github.com/moby/moby/security/advisories/GHSA-6fj5-m822-rqx8 NOTE: https://github.com/moby/moby/commit/420b1d36250f9cfdc561f086f25a213ecb669b6f (v19.03) CVE-2021-21284 (In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in ...) + {DSA-4865-1} - docker.io 20.10.3+dfsg1-1 NOTE: https://github.com/moby/moby/security/advisories/GHSA-7452-xqpj-6rpc NOTE: https://github.com/moby/moby/commit/1342c51d5e809d2994e6f7e490c8d2b3b12c28ae (v19.03) |