automatic update

author: security tracker role <sectracker@soriano.debian.org> 2022-02-10 20:10:17 +0000
committer: security tracker role <sectracker@soriano.debian.org> 2022-02-10 20:10:17 +0000
commit: 1a965c89012c336d175648dbd00dc3761e7e9111 (patch)
tree: 4e783e6e49ac6eedbe2e42d5c7a0547ca1a7eebc /data
parent: 697b97d90b73618a954c29fc69e632ad497b8846 (diff)
2 files changed, 520 insertions, 88 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index 99bdb966be..522b83eafb 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -2015,8 +2015,8 @@ CVE-2021-45903 (A persistent cross-site scripting (XSS) issue in the web interfa
 	NOT-FOR-US: SuiteCRM
 CVE-2021-45902
 	RESERVED
-CVE-2021-45901
-	RESERVED
+CVE-2021-45901 (The password-reset form in ServiceNow Orlando provides different respo ...)
+	TODO: check
 CVE-2021-45900
 	RESERVED
 CVE-2021-45899 (SuiteCRM before 7.12.3 and 8.x before 8.0.2 allows PHAR deserializatio ...)
@@ -3362,8 +3362,8 @@ CVE-2021-45366
 	RESERVED
 CVE-2021-45365
 	RESERVED
-CVE-2021-45364
-	RESERVED
+CVE-2021-45364 (A Code Execution vulnerability exists in Statamic Version through 3.2. ...)
+	TODO: check
 CVE-2021-45363
 	RESERVED
 CVE-2021-45362
@@ -3376,8 +3376,8 @@ CVE-2021-45359
 	RESERVED
 CVE-2021-45358
 	RESERVED
-CVE-2021-45357
-	RESERVED
+CVE-2021-45357 (Cross Site Scripting (XSS) vulnerability exists in Piwigo 12.x via the ...)
+	TODO: check
 CVE-2021-45356
 	RESERVED
 CVE-2021-45355
@@ -4133,6 +4133,7 @@ CVE-2021-4123 (livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
 	NOT-FOR-US: livehelperchat
 CVE-2021-4122 [decryption through LUKS2 reencryption  crash recovery]
 	RESERVED
+	{DSA-5070-1}
 	- cryptsetup 2:2.4.3-1 (bug #1003686)
 	[buster] - cryptsetup <not-affected> (Vulnerable code not present; does not support online LUKS2 reencryption)
 	[stretch] - cryptsetup <not-affected> (Vulnerable code not present; does not support LUKS2)
@@ -4606,8 +4607,8 @@ CVE-2021-44894
 	RESERVED
 CVE-2021-44893
 	RESERVED
-CVE-2021-44892
-	RESERVED
+CVE-2021-44892 (A Remote Code Execution (RCE) vulnerability exists in ThinkPHP 3.x.x v ...)
+	TODO: check
 CVE-2021-44891
 	RESERVED
 CVE-2021-44890
@@ -4717,8 +4718,8 @@ CVE-2021-44852 (An issue was discovered in BS_RCIO64.sys in Biostar RACING GT Ev
 	NOT-FOR-US: Biostar RACING GT Evo
 CVE-2021-44851
 	RESERVED
-CVE-2021-44850
-	RESERVED
+CVE-2021-44850 (On Xilinx Zynq-7000 SoC devices, physical modification of an SD boot i ...)
+	TODO: check
 CVE-2021-44849
 	RESERVED
 CVE-2021-44848 (In Cibele Thinfinity VirtualUI before 3.0, /changePassword returns dif ...)
@@ -13358,8 +13359,8 @@ CVE-2021-41447
 	RESERVED
 CVE-2021-41446
 	RESERVED
-CVE-2021-41445
-	RESERVED
+CVE-2021-41445 (A reflected cross-site-scripting attack in web application of D-Link D ...)
+	TODO: check
 CVE-2021-41444
 	RESERVED
 CVE-2021-41443
@@ -22922,8 +22923,8 @@ CVE-2021-37615 (Exiv2 is a command-line utility and C++ library for reading, wri
 	NOTE: https://github.com/Exiv2/exiv2/pull/1758
 CVE-2021-37614 (In certain Progress MOVEit Transfer versions before 2021.0.3 (aka 13.0 ...)
 	NOT-FOR-US: MOVEit Transfer
-CVE-2021-37613
-	RESERVED
+CVE-2021-37613 (Stormshield Network Security (SNS) 1.0.0 through 4.2.3 allows a Denial ...)
+	TODO: check
 CVE-2021-37612
 	RESERVED
 CVE-2021-37611
@@ -36683,8 +36684,8 @@ CVE-2021-3513
 	NOT-FOR-US: Keycloak
 CVE-2021-31815 (GAEN (aka Google/Apple Exposure Notifications) through 2021-04-27 on A ...)
 	NOT-FOR-US: GAEN (aka Google/Apple Exposure Notifications)
-CVE-2021-31814
-	RESERVED
+CVE-2021-31814 (In Stormshield 1.1.0, and 2.1.0 through 2.9.0, an attacker can block a ...)
+	TODO: check
 CVE-2021-31813 (Zoho ManageEngine Applications Manager before 15130 is vulnerable to S ...)
 	NOT-FOR-US: Zoho
 CVE-2021-31812 (In Apache PDFBox, a carefully crafted PDF file can trigger an infinite ...)
@@ -49431,8 +49432,8 @@ CVE-2021-26677 (A local authenticated escalation of privilege vulnerability was
 	NOT-FOR-US: Aruba
 CVE-2021-3399
 	RESERVED
-CVE-2021-3398
-	RESERVED
+CVE-2021-3398 (Stormshield Network Security (SNS) 3.x has an Integer Overflow in the  ...)
+	TODO: check
 CVE-2021-3397
 	RESERVED
 CVE-2021-3396 (OpenNMS Meridian 2016, 2017, 2018 before 2018.1.25, 2019 before 2019.1 ...)
@@ -51174,8 +51175,8 @@ CVE-2021-25994 (In Userfrosting, versions v0.3.1 to v4.6.2 are vulnerable to Hos
 	NOT-FOR-US: Userfrosting
 CVE-2021-25993 (In Requarks wiki.js, versions 2.0.0-beta.147 to 2.5.255 are affected b ...)
 	NOT-FOR-US: Requarks wiki.js
-CVE-2021-25992
-	RESERVED
+CVE-2021-25992 (In Ifme, versions 1.0.0 to v.7.33.2 don&#8217;t properly invalidate a  ...)
+	TODO: check
 CVE-2021-25991 (In Ifme, versions v5.0.0 to v7.32 are vulnerable against an improper a ...)
 	NOT-FOR-US: Ifme
 CVE-2021-25990 (In &#8220;ifme&#8221;, versions v7.22.0 to v7.31.4 are vulnerable agai ...)
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index c568b5da44..06f63a4860 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -1,3 +1,433 @@
+CVE-2022-24916 (Optimism before @eth-optimism/l2geth@0.5.11 allows economic griefing b ...)
+	TODO: check
+CVE-2022-24908
+	RESERVED
+CVE-2022-24907
+	RESERVED
+CVE-2022-24906
+	RESERVED
+CVE-2022-24905
+	RESERVED
+CVE-2022-24904
+	RESERVED
+CVE-2022-24903
+	RESERVED
+CVE-2022-24902
+	RESERVED
+CVE-2022-24901
+	RESERVED
+CVE-2022-24900
+	RESERVED
+CVE-2022-24899
+	RESERVED
+CVE-2022-24898
+	RESERVED
+CVE-2022-24897
+	RESERVED
+CVE-2022-24896
+	RESERVED
+CVE-2022-24895
+	RESERVED
+CVE-2022-24894
+	RESERVED
+CVE-2022-24893
+	RESERVED
+CVE-2022-24892
+	RESERVED
+CVE-2022-24891
+	RESERVED
+CVE-2022-24890
+	RESERVED
+CVE-2022-24889
+	RESERVED
+CVE-2022-24888
+	RESERVED
+CVE-2022-24887
+	RESERVED
+CVE-2022-24886
+	RESERVED
+CVE-2022-24885
+	RESERVED
+CVE-2022-24884
+	RESERVED
+CVE-2022-24883
+	RESERVED
+CVE-2022-24882
+	RESERVED
+CVE-2022-24881
+	RESERVED
+CVE-2022-24880
+	RESERVED
+CVE-2022-24879
+	RESERVED
+CVE-2022-24878
+	RESERVED
+CVE-2022-24877
+	RESERVED
+CVE-2022-24876
+	RESERVED
+CVE-2022-24875
+	RESERVED
+CVE-2022-24874
+	RESERVED
+CVE-2022-24873
+	RESERVED
+CVE-2022-24872
+	RESERVED
+CVE-2022-24871
+	RESERVED
+CVE-2022-24870
+	RESERVED
+CVE-2022-24869
+	RESERVED
+CVE-2022-24868
+	RESERVED
+CVE-2022-24867
+	RESERVED
+CVE-2022-24866
+	RESERVED
+CVE-2022-24865
+	RESERVED
+CVE-2022-24864
+	RESERVED
+CVE-2022-24863
+	RESERVED
+CVE-2022-24862
+	RESERVED
+CVE-2022-24861
+	RESERVED
+CVE-2022-24860
+	RESERVED
+CVE-2022-24859
+	RESERVED
+CVE-2022-24858
+	RESERVED
+CVE-2022-24857
+	RESERVED
+CVE-2022-24856
+	RESERVED
+CVE-2022-24855
+	RESERVED
+CVE-2022-24854
+	RESERVED
+CVE-2022-24853
+	RESERVED
+CVE-2022-24852
+	RESERVED
+CVE-2022-24851
+	RESERVED
+CVE-2022-24850
+	RESERVED
+CVE-2022-24849
+	RESERVED
+CVE-2022-24848
+	RESERVED
+CVE-2022-24847
+	RESERVED
+CVE-2022-24846
+	RESERVED
+CVE-2022-24845
+	RESERVED
+CVE-2022-24844
+	RESERVED
+CVE-2022-24843
+	RESERVED
+CVE-2022-24842
+	RESERVED
+CVE-2022-24841
+	RESERVED
+CVE-2022-24840
+	RESERVED
+CVE-2022-24839
+	RESERVED
+CVE-2022-24838
+	RESERVED
+CVE-2022-24837
+	RESERVED
+CVE-2022-24836
+	RESERVED
+CVE-2022-24835
+	RESERVED
+CVE-2022-24834
+	RESERVED
+CVE-2022-24833
+	RESERVED
+CVE-2022-24832
+	RESERVED
+CVE-2022-24831
+	RESERVED
+CVE-2022-24830
+	RESERVED
+CVE-2022-24829
+	RESERVED
+CVE-2022-24828
+	RESERVED
+CVE-2022-24827
+	RESERVED
+CVE-2022-24826
+	RESERVED
+CVE-2022-24825
+	RESERVED
+CVE-2022-24824
+	RESERVED
+CVE-2022-24823
+	RESERVED
+CVE-2022-24822
+	RESERVED
+CVE-2022-24821
+	RESERVED
+CVE-2022-24820
+	RESERVED
+CVE-2022-24819
+	RESERVED
+CVE-2022-24818
+	RESERVED
+CVE-2022-24817
+	RESERVED
+CVE-2022-24816
+	RESERVED
+CVE-2022-24815
+	RESERVED
+CVE-2022-24814
+	RESERVED
+CVE-2022-24813
+	RESERVED
+CVE-2022-24812
+	RESERVED
+CVE-2022-24811
+	RESERVED
+CVE-2022-24810
+	RESERVED
+CVE-2022-24809
+	RESERVED
+CVE-2022-24808
+	RESERVED
+CVE-2022-24807
+	RESERVED
+CVE-2022-24806
+	RESERVED
+CVE-2022-24805
+	RESERVED
+CVE-2022-24804
+	RESERVED
+CVE-2022-24803
+	RESERVED
+CVE-2022-24802
+	RESERVED
+CVE-2022-24801
+	RESERVED
+CVE-2022-24800
+	RESERVED
+CVE-2022-24799
+	RESERVED
+CVE-2022-24798
+	RESERVED
+CVE-2022-24797
+	RESERVED
+CVE-2022-24796
+	RESERVED
+CVE-2022-24795
+	RESERVED
+CVE-2022-24794
+	RESERVED
+CVE-2022-24793
+	RESERVED
+CVE-2022-24792
+	RESERVED
+CVE-2022-24791
+	RESERVED
+CVE-2022-24790
+	RESERVED
+CVE-2022-24789
+	RESERVED
+CVE-2022-24788
+	RESERVED
+CVE-2022-24787
+	RESERVED
+CVE-2022-24786
+	RESERVED
+CVE-2022-24785
+	RESERVED
+CVE-2022-24784
+	RESERVED
+CVE-2022-24783
+	RESERVED
+CVE-2022-24782
+	RESERVED
+CVE-2022-24781
+	RESERVED
+CVE-2022-24780
+	RESERVED
+CVE-2022-24779
+	RESERVED
+CVE-2022-24778
+	RESERVED
+CVE-2022-24777
+	RESERVED
+CVE-2022-24776
+	RESERVED
+CVE-2022-24775
+	RESERVED
+CVE-2022-24774
+	RESERVED
+CVE-2022-24773
+	RESERVED
+CVE-2022-24772
+	RESERVED
+CVE-2022-24771
+	RESERVED
+CVE-2022-24770
+	RESERVED
+CVE-2022-24769
+	RESERVED
+CVE-2022-24768
+	RESERVED
+CVE-2022-24767
+	RESERVED
+CVE-2022-24766
+	RESERVED
+CVE-2022-24765
+	RESERVED
+CVE-2022-24764
+	RESERVED
+CVE-2022-24763
+	RESERVED
+CVE-2022-24762
+	RESERVED
+CVE-2022-24761
+	RESERVED
+CVE-2022-24760
+	RESERVED
+CVE-2022-24759
+	RESERVED
+CVE-2022-24758
+	RESERVED
+CVE-2022-24757
+	RESERVED
+CVE-2022-24756
+	RESERVED
+CVE-2022-24755
+	RESERVED
+CVE-2022-24754
+	RESERVED
+CVE-2022-24753
+	RESERVED
+CVE-2022-24752
+	RESERVED
+CVE-2022-24751
+	RESERVED
+CVE-2022-24750
+	RESERVED
+CVE-2022-24749
+	RESERVED
+CVE-2022-24748
+	RESERVED
+CVE-2022-24747
+	RESERVED
+CVE-2022-24746
+	RESERVED
+CVE-2022-24745
+	RESERVED
+CVE-2022-24744
+	RESERVED
+CVE-2022-24743
+	RESERVED
+CVE-2022-24742
+	RESERVED
+CVE-2022-24741
+	RESERVED
+CVE-2022-24740
+	RESERVED
+CVE-2022-24739
+	RESERVED
+CVE-2022-24738
+	RESERVED
+CVE-2022-24737
+	RESERVED
+CVE-2022-24736
+	RESERVED
+CVE-2022-24735
+	RESERVED
+CVE-2022-24734
+	RESERVED
+CVE-2022-24733
+	RESERVED
+CVE-2022-24732
+	RESERVED
+CVE-2022-24731
+	RESERVED
+CVE-2022-24730
+	RESERVED
+CVE-2022-24729
+	RESERVED
+CVE-2022-24728
+	RESERVED
+CVE-2022-24727
+	RESERVED
+CVE-2022-24726
+	RESERVED
+CVE-2022-24725
+	RESERVED
+CVE-2022-24724
+	RESERVED
+CVE-2022-24723
+	RESERVED
+CVE-2022-24722
+	RESERVED
+CVE-2022-24721
+	RESERVED
+CVE-2022-24720
+	RESERVED
+CVE-2022-24719
+	RESERVED
+CVE-2022-24718
+	RESERVED
+CVE-2022-24717
+	RESERVED
+CVE-2022-24716
+	RESERVED
+CVE-2022-24715
+	RESERVED
+CVE-2022-24714
+	RESERVED
+CVE-2022-24713
+	RESERVED
+CVE-2022-24712
+	RESERVED
+CVE-2022-24711
+	RESERVED
+CVE-2022-24710
+	RESERVED
+CVE-2022-24709
+	RESERVED
+CVE-2022-24708
+	RESERVED
+CVE-2022-24707
+	RESERVED
+CVE-2022-24706
+	RESERVED
+CVE-2022-24705
+	RESERVED
+CVE-2022-24704
+	RESERVED
+CVE-2022-23922
+	RESERVED
+CVE-2022-23104
+	RESERVED
+CVE-2022-0563
+	RESERVED
+CVE-2022-0562
+	RESERVED
+CVE-2022-0561
+	RESERVED
+CVE-2022-0560
+	RESERVED
+CVE-2022-0559
+	RESERVED
+CVE-2022-0558 (Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber ...)
+	TODO: check
+CVE-2022-0557
+	RESERVED
 CVE-2022-24703
 	RESERVED
 CVE-2022-24702
@@ -374,8 +804,8 @@ CVE-2022-24570
 	RESERVED
 CVE-2022-24569
 	RESERVED
-CVE-2022-24568
-	RESERVED
+CVE-2022-24568 (Novel-plus v3.6.0 was discovered to be vulnerable to Server-Side Reque ...)
+	TODO: check
 CVE-2022-24567
 	RESERVED
 CVE-2022-24566
@@ -1668,8 +2098,8 @@ CVE-2022-0398
 	RESERVED
 CVE-2022-0397
 	RESERVED
-CVE-2022-24111
-	RESERVED
+CVE-2022-24111 (In Mahara 21.04 before 21.04.3 and 21.10 before 21.10.1, portfolios cr ...)
+	TODO: check
 CVE-2022-24110
 	RESERVED
 CVE-2022-24109
@@ -3757,8 +4187,8 @@ CVE-2022-23323
 	RESERVED
 CVE-2022-23322
 	RESERVED
-CVE-2022-23321
-	RESERVED
+CVE-2022-23321 (A persistent cross-site scripting (XSS) vulnerability exists on two in ...)
+	TODO: check
 CVE-2022-23320 (XMPie uStore 12.3.7244.0 allows for administrators to generate reports ...)
 	NOT-FOR-US: XMPie uStore
 CVE-2022-23319
@@ -6914,18 +7344,18 @@ CVE-2022-0023
 	RESERVED
 CVE-2022-0022
 	RESERVED
-CVE-2022-0021
-	RESERVED
-CVE-2022-0020
-	RESERVED
-CVE-2022-0019
-	RESERVED
-CVE-2022-0018
-	RESERVED
-CVE-2022-0017
-	RESERVED
-CVE-2022-0016
-	RESERVED
+CVE-2022-0021 (An information exposure through log file vulnerability exists in the P ...)
+	TODO: check
+CVE-2022-0020 (A stored cross-site scripting (XSS) vulnerability in Palo Alto Network ...)
+	TODO: check
+CVE-2022-0019 (An insufficiently protected credentials vulnerability exists in the Pa ...)
+	TODO: check
+CVE-2022-0018 (An information exposure vulnerability exists in the Palo Alto Networks ...)
+	TODO: check
+CVE-2022-0017 (An improper link resolution before file access ('link following') vuln ...)
+	TODO: check
+CVE-2022-0016 (An improper handling of exceptional conditions vulnerability exists wi ...)
+	TODO: check
 CVE-2022-0015 (A local privilege escalation (PE) vulnerability exists in the Palo Alt ...)
 	NOT-FOR-US: Palo Alto Networks
 CVE-2022-0014 (An untrusted search path vulnerability exists in the Palo Alto Network ...)
@@ -6934,8 +7364,8 @@ CVE-2022-0013 (A file information exposure vulnerability exists in the Palo Alto
 	NOT-FOR-US: Palo Alto Networks
 CVE-2022-0012 (An improper link resolution before file access vulnerability exists in ...)
 	NOT-FOR-US: Palo Alto Networks
-CVE-2022-0011
-	RESERVED
+CVE-2022-0011 (PAN-OS software provides options to exclude specific websites from URL ...)
+	TODO: check
 CVE-2022-22261
 	RESERVED
 CVE-2022-22260
@@ -8868,7 +9298,7 @@ CVE-2022-21366 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise E
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
 CVE-2022-21365 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
@@ -8881,7 +9311,7 @@ CVE-2022-21362 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
 CVE-2022-21361 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
 	NOT-FOR-US: Oracle
 CVE-2022-21360 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
@@ -8906,6 +9336,7 @@ CVE-2022-21351 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
 CVE-2022-21350 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
 	NOT-FOR-US: Oracle
 CVE-2022-21349 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
+	{DLA-2917-1}
 	- openjdk-8 <unfixed>
 CVE-2022-21348 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	- mysql-8.0 <unfixed>
@@ -8923,12 +9354,12 @@ CVE-2022-21343
 CVE-2022-21342 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	- mysql-8.0 <unfixed>
 CVE-2022-21341 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
 CVE-2022-21340 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
@@ -9001,7 +9432,7 @@ CVE-2022-21307 (Vulnerability in the MySQL Cluster product of Oracle MySQL (comp
 CVE-2022-21306 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
 	NOT-FOR-US: Oracle
 CVE-2022-21305 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
@@ -9018,7 +9449,7 @@ CVE-2022-21301 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
 CVE-2022-21300 (Vulnerability in the PeopleSoft Enterprise CS SA Integration Pack prod ...)
 	NOT-FOR-US: Oracle
 CVE-2022-21299 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
@@ -9027,19 +9458,19 @@ CVE-2022-21298 (Vulnerability in the Oracle Solaris product of Oracle Systems (c
 CVE-2022-21297 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	- mysql-8.0 <unfixed>
 CVE-2022-21296 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
 CVE-2022-21295 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
 	- virtualbox <not-affected> (Windows-specific)
 CVE-2022-21294 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
 CVE-2022-21293 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
@@ -9065,11 +9496,11 @@ CVE-2022-21285 (Vulnerability in the MySQL Cluster product of Oracle MySQL (comp
 CVE-2022-21284 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)
 	NOT-FOR-US: MySQL Cluster
 CVE-2022-21283 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
 CVE-2022-21282 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
@@ -9144,7 +9575,7 @@ CVE-2022-21250 (Vulnerability in the Oracle Trade Management product of Oracle E
 CVE-2022-21249 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	- mysql-8.0 <unfixed>
 CVE-2022-21248 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	{DSA-5058-1 DSA-5057-1}
+	{DSA-5058-1 DSA-5057-1 DLA-2917-1}
 	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
@@ -9945,8 +10376,8 @@ CVE-2022-20751
 	RESERVED
 CVE-2022-20750
 	RESERVED
-CVE-2022-20749
-	RESERVED
+CVE-2022-20749 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
 CVE-2022-20748
 	RESERVED
 CVE-2022-20747
@@ -9967,8 +10398,8 @@ CVE-2022-20740
 	RESERVED
 CVE-2022-20739
 	RESERVED
-CVE-2022-20738
-	RESERVED
+CVE-2022-20738 (A vulnerability in the Cisco Umbrella Secure Web Gateway service could ...)
+	TODO: check
 CVE-2022-20737
 	RESERVED
 CVE-2022-20736
@@ -10019,34 +10450,34 @@ CVE-2022-20714
 	RESERVED
 CVE-2022-20713
 	RESERVED
-CVE-2022-20712
-	RESERVED
-CVE-2022-20711
-	RESERVED
-CVE-2022-20710
-	RESERVED
-CVE-2022-20709
-	RESERVED
-CVE-2022-20708
-	RESERVED
-CVE-2022-20707
-	RESERVED
-CVE-2022-20706
-	RESERVED
-CVE-2022-20705
-	RESERVED
-CVE-2022-20704
-	RESERVED
-CVE-2022-20703
-	RESERVED
-CVE-2022-20702
-	RESERVED
-CVE-2022-20701
-	RESERVED
-CVE-2022-20700
-	RESERVED
-CVE-2022-20699
-	RESERVED
+CVE-2022-20712 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20711 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20710 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20709 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20708 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20707 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20706 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20705 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20704 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20703 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20702 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20701 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20700 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
+CVE-2022-20699 (Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340,  ...)
+	TODO: check
 CVE-2022-20698 (A vulnerability in the OOXML parsing module in Clam AntiVirus (ClamAV) ...)
 	- clamav 0.103.5+dfsg-1
 	[bullseye] - clamav <no-dsa> (clamav is updated via -updates)
@@ -10088,8 +10519,8 @@ CVE-2022-20682
 	RESERVED
 CVE-2022-20681
 	RESERVED
-CVE-2022-20680
-	RESERVED
+CVE-2022-20680 (A vulnerability in the web-based management interface of Cisco Prime S ...)
+	TODO: check
 CVE-2022-20679
 	RESERVED
 CVE-2022-20678
@@ -10188,8 +10619,8 @@ CVE-2022-20632
 	RESERVED
 CVE-2022-20631
 	RESERVED
-CVE-2022-20630
-	RESERVED
+CVE-2022-20630 (A vulnerability in the audit log of Cisco DNA Center could allow an au ...)
+	TODO: check
 CVE-2022-20629
 	RESERVED
 CVE-2022-20628
author	security tracker role <sectracker@soriano.debian.org>	2022-02-10 20:10:17 +0000
committer	security tracker role <sectracker@soriano.debian.org>	2022-02-10 20:10:17 +0000
commit	1a965c89012c336d175648dbd00dc3761e7e9111 (patch)
tree	4e783e6e49ac6eedbe2e42d5c7a0547ca1a7eebc /data
parent	697b97d90b73618a954c29fc69e632ad497b8846 (diff)