From 171604e5a8226d84aa051fcd1193917643f89152 Mon Sep 17 00:00:00 2001 From: security tracker role Date: Sun, 2 Jan 2022 08:10:10 +0000 Subject: automatic update --- data/CVE/2021.list | 54 +++++++++++++++++++++++++++++++++++++++++++++++++++--- data/CVE/2022.list | 4 ++++ 2 files changed, 55 insertions(+), 3 deletions(-) diff --git a/data/CVE/2021.list b/data/CVE/2021.list index f9df3303c2..be515b1a27 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -1,3 +1,51 @@ +CVE-2021-45984 + RESERVED +CVE-2021-45983 + RESERVED +CVE-2021-45982 + RESERVED +CVE-2021-45981 + RESERVED +CVE-2021-45980 + RESERVED +CVE-2021-45979 + RESERVED +CVE-2021-45978 + RESERVED +CVE-2021-45977 + RESERVED +CVE-2021-45976 + RESERVED +CVE-2021-45975 + RESERVED +CVE-2021-45974 + RESERVED +CVE-2021-45973 + RESERVED +CVE-2021-45972 (The giftrans function in giftrans 1.12.2 contains a stack-based buffer ...) + TODO: check +CVE-2021-45971 + RESERVED +CVE-2021-45970 + RESERVED +CVE-2021-45969 + RESERVED +CVE-2021-45968 + RESERVED +CVE-2021-45967 + RESERVED +CVE-2021-45966 + RESERVED +CVE-2021-45965 + RESERVED +CVE-2021-45964 + RESERVED +CVE-2021-45963 + RESERVED +CVE-2021-45962 + RESERVED +CVE-2021-45961 + RESERVED CVE-2021-45960 (In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) pla ...) - expat [bullseye] - expat (Minor issue; can be fixed via point release) @@ -2652,8 +2700,8 @@ CVE-2021-44898 RESERVED CVE-2021-44897 RESERVED -CVE-2021-44896 - RESERVED +CVE-2021-44896 (DMP Roadmap before 3.0.4 allows XSS. ...) + TODO: check CVE-2021-44895 RESERVED CVE-2021-44894 @@ -13294,7 +13342,7 @@ CVE-2021-40533 CVE-2021-40532 (Telegram Web K Alpha before 0.7.2 mishandles the characters in a docum ...) NOT-FOR-US: tweb NOTE: https://github.com/morethanwords/tweb -CVE-2021-40531 (An issue discovered in sketch before version 75,that allows for librar ...) +CVE-2021-40531 (Sketch before 75 allows library feeds to be used to bypass file quaran ...) NOT-FOR-US: Sketch collaborative design (Mac or Web app) NOTE: sketch.com, not the sketch package in Debian. CVE-2021-40530 (The ElGamal implementation in Crypto++ through 8.5 allows plaintext re ...) diff --git a/data/CVE/2022.list b/data/CVE/2022.list index 8378344779..a5e292adef 100644 --- a/data/CVE/2022.list +++ b/data/CVE/2022.list @@ -1,3 +1,7 @@ +CVE-2022-22293 (admin/limits.php in Dolibarr 7.0.2 allows HTML injection, as demonstra ...) + TODO: check +CVE-2022-0081 + RESERVED CVE-2022-0080 RESERVED CVE-2022-0079 -- cgit v1.2.3