Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d6e1750e by Salvatore Bonaccorso at 2022-05-06T21:32:29+02:00
Reference associated upstream commit for CVE-2021-22573
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -88897,6 +88897,7 @@ CVE-2021-22573 (The vulnerability is that IDToken
verifier does not verify if to
NOTE: https://github.com/googleapis/google-oauth-java-client/issues/786
NOTE: https://github.com/googleapis/google-oauth-java-client/pull/861
NOTE: https://github.com/googleapis/google-oauth-java-client/pull/872
(1.33.3)
+ NOTE:
https://github.com/googleapis/google-oauth-java-client/commit/22419d60579ef4c1a8a256a90e6ca7bc58f09aa1
(v1.33.3)
CVE-2021-22572 (On unix-like systems, the system temporary directory is shared
between ...)
NOT-FOR-US: Google Data Transfer Project
CVE-2021-22571 (A local attacker could read files from some other users' SA360
reports ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6e1750e389f4faeba2db0181b2ffdc2f7d73452
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6e1750e389f4faeba2db0181b2ffdc2f7d73452
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
