[Git][security-tracker-team/security-tracker][master] spring n/a

Moritz Muehlenhoff (@jmm) Sun, 27 Jun 2021 03:09:33 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ec5074f5 by Moritz Muehlenhoff at 2021-06-27T12:08:57+02:00
spring n/a

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31631,7 +31631,10 @@ CVE-2021-22120
 CVE-2021-22119
        RESERVED
 CVE-2021-22118 (In Spring Framework, versions 5.2.x prior to 5.2.15 and 
versions 5.3.x ...)
-       TODO: check
+       - libspring-java <not-affected> (Introduced in v5.0.0.RC1)
+       NOTE: https://tanzu.vmware.com/security/cve-2021-22118
+       NOTE: https://github.com/spring-projects/spring-framework/issues/26931
+       NOTE: 
https://github.com/spring-projects/spring-framework/commit/cce60c479c22101f24b2b4abebb6d79440b120d1
 CVE-2021-22117 (RabbitMQ installers on Windows prior to version 3.8.16 do not 
harden p ...)
        - rabbitmq-server <not-affected> (Windows-specific)
 CVE-2021-22116 (RabbitMQ all versions prior to 3.8.16 are prone to a denial of 
service ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec5074f5e41c9a9ca8bccda6a7c5717921fb70c5

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec5074f5e41c9a9ca8bccda6a7c5717921fb70c5
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] spring n/a

Reply via email to