Todo Lists - Arch Linux
Scheduled advisories
| Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|
| ASA-202102-4 | AVG-1510 | wireshark-cli | Low | denial of service |
| ASA-202102-3 | AVG-1496 | thunderbird | High | multiple issues |
| ASA-202102-2 | AVG-1477 | chromium | Critical | multiple issues |
| ASA-202102-1 | AVG-1492 | firefox | High | multiple issues |
Pending advisories
| Group | Package | Severity | Affected | Fixed | Ticket |
|---|---|---|---|---|---|
| AVG-1478 | vivaldi | Critical | 3.5.2115.87-2 | 3.6.2165.34-1 | |
| AVG-1479 | opera | Critical | 73.0.3856.344-2 | 74.0.3911.75-1 | |
| AVG-1487 | python-pysaml2 | Critical | 6.4.1-1 | 6.5.1-1 | |
| AVG-1525 | chromium | Critical | 88.0.4324.96-2 | 88.0.4324.146-1 | |
| AVG-1247 | linux-lts | High | 5.4.93-1 | 5.4.93-2 | FS#68257 |
| AVG-1504 | opendoas | High | 6.6.1-2 | 6.8.1-2 | |
| AVG-1331 | jasper | Medium | 2.0.19-1 | 2.0.24-1 | FS#68889 |
| AVG-1437 | ansible | Medium | 2.10.5-1 | 2.10.6-1 | |
| AVG-1464 | nextcloud | Medium | 20.0.5-2 | 20.0.6-1 | |
| AVG-1482 | 389-ds-base | Medium | 1.4.4.4-5 | 2.0.2-1 | |
| AVG-1489 | openldap | Medium | 2.4.56-1 | 2.4.57-1 | |
| AVG-1491 | jenkins | Medium | 2.275-1 | 2.276-1 | |
| AVG-1506 | linux | Medium | 5.10.11.arch1-1 | 5.10.12.arch1-1 | |
| AVG-1507 | linux-hardened | Medium | 5.10.11.hardened1-1 | 5.10.12.hardened1-1 | |
| AVG-1508 | linux-zen | Medium | 5.10.11.zen2-1 | 5.10.12.zen1-1 | |
| AVG-1509 | linux-lts | Medium | 5.4.93-2 | 5.4.94-1 | |
| AVG-1520 | minio | Medium | 2020.12.26-1 | 2021.01.30-1 | |
| AVG-1521 | gitlab | Medium | 13.8.1-1 | 13.8.2-1 | |
| AVG-1528 | docker | Medium | 1:20.10.2-4 | 1:20.10.3-1 | |
| AVG-1529 | cups | Medium | 1:2.3.3op1-1 | 1:2.3.3op2-1 | |
| AVG-1466 | linux | Low | 5.10.9.arch1-1 | 5.10.10.arch1-1 | |
| AVG-1467 | linux-hardened | Low | 5.10.9.a-1 | 5.10.10.hardened1-1 | |
| AVG-1468 | linux-zen | Low | 5.10.9.zen1-1 | 5.10.10.zen1-1 | |
| AVG-1469 | linux-lts | Low | 5.4.91-1 | 5.4.92-1 | |
| AVG-1518 | python-django | Low | 3.1.5-1 | 3.1.6-1 | |
| AVG-1523 | python-jinja, python2-jinja | Low | 2.11.2-4 | 2.11.3-1 | |
| AVG-1524 | privoxy | Low | 3.0.30-1 | 3.0.31-1 |
Bumped packages
| Group | Package | Severity | Affected | Current | Ticket |
|---|---|---|---|---|---|
| AVG-1515 | linux-lts | Medium | 5.4.94-1 |
5.4.95-1 [testing] 5.4.94-1 [core] |
Orphan issues
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2016-1000000 | High | Yes | Sql injection | Ipswitch WhatsUp Gold 16.4.1 WrFreeFormText.asp sUniqueID Parameter Blind SQL Injection |
| CVE-2016-10739 | Medium | No | Open redirect | In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would... |
| CVE-2017-1000410 | High | Yes | Information disclosure | The Linux kernel version 3.3-rc1 and later is affected by a vulnerability in the processing... |
| CVE-2019-5481 | Low | Yes | Denial of service | libcurl can be told to use kerberos over FTP to a server, as set with the CURLOPT_KRBLEVEL... |
| CVE-2019-5482 | Medium | Yes | Arbitrary code execution | libcurl contains a heap buffer overflow in the function (tftp_receive_packet()) that... |
| CVE-2020-16013 | High | Yes | Access restriction bypass | An inappropriate implementation security issue has been found in the V8 component of the... |
| CVE-2020-16017 | High | Yes | Arbitrary code execution | A use after free security issue has been found in the site isolation component of the... |
| CVE-2020-27823 | Medium | No | Arbitrary code execution | In openjpeg2 version 2.3.1 and prior, there is a heap buffer overflow in... |