Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5df94d08 by Sylvain Beucler at 2021-05-11T16:56:10+02:00
CVE-2021-28164/jetty9: stretch not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9987,8 +9987,10 @@ CVE-2021-28165 (In Eclipse Jetty 7.2.2 to 9.4.38,
10.0.0.alpha0 to 10.0.1, and 1
NOTE: https://github.com/eclipse/jetty.project/issues/6072
CVE-2021-28164 (In Eclipse Jetty 9.4.37.v20210219 to 9.4.38.v20210224, the
default com ...)
- jetty9 9.4.39-1
+ [stretch] - jetty9 <not-affected> (Vulnerable code introduced later)
NOTE:
https://github.com/eclipse/jetty.project/security/advisories/GHSA-v7ff-8wcx-gmc5
NOTE:
https://github.com/eclipse/jetty.project/commit/e412c8a15b3334b30193f40412c0fbc47e478e83
+ NOTE: Introduced by
https://github.com/eclipse/jetty.project/commit/20ef71fe5d709a90c2a5698834fff07b9b4e7ad7
(jetty-9.4.37.v20210219)
CVE-2021-28163 (In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and
11.0.0. ...)
- jetty9 9.4.39-1
[stretch] - jetty9 <not-affected> (Vulnerable code introduced in 9.4.32
according to upstream advisory, reproducer no-op)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5df94d081d82a3fb191700a9dd166afd36f8b5fd
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5df94d081d82a3fb191700a9dd166afd36f8b5fd
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
