Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dd365b80 by Markus Koschany at 2022-04-29T15:53:17+02:00
libowasp-esapi-java,CVE-2022-23457,CVE-2022-24891 fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13974,7 +13974,7 @@ CVE-2022-24893
CVE-2022-24892 (Shopware is an open source e-commerce software platform.
Starting with ...)
NOT-FOR-US: Shopware
CVE-2022-24891 (ESAPI (The OWASP Enterprise Security API) is a free, open
source, web ...)
- - libowasp-esapi-java <unfixed> (bug #1010339)
+ - libowasp-esapi-java 2.4.0.0-1 (bug #1010339)
NOTE:
https://github.com/ESAPI/esapi-java-legacy/security/advisories/GHSA-q77q-vx4q-xx6q
NOTE:
https://github.com/ESAPI/esapi-java-legacy/blob/develop/documentation/ESAPI-security-bulletin8.pdf
NOTE:
https://github.com/ESAPI/esapi-java-legacy/blob/develop/documentation/esapi4java-core-2.3.0.0-release-notes.txt
@@ -18862,7 +18862,7 @@ CVE-2022-23459
CVE-2022-23458
RESERVED
CVE-2022-23457 (ESAPI (The OWASP Enterprise Security API) is a free, open
source, web ...)
- - libowasp-esapi-java <unfixed> (bug #1010339)
+ - libowasp-esapi-java 2.4.0.0-1 (bug #1010339)
NOTE:
https://securitylab.github.com/advisories/GHSL-2022-008_The_OWASP_Enterprise_Security_API/
NOTE:
https://github.com/ESAPI/esapi-java-legacy/security/advisories/GHSA-8m5h-hrqm-pxm2
NOTE:
https://github.com/ESAPI/esapi-java-legacy/blob/develop/documentation/esapi4java-core-2.3.0.0-release-notes.txt
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd365b8039530d2dcc267a78aa9920395176af6b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd365b8039530d2dcc267a78aa9920395176af6b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits