Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fdaced5b by Moritz Muehlenhoff at 2022-07-17T13:24:48+02:00
undertow n/a (concludes external check)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20199,6 +20199,7 @@ CVE-2022-1260
RESERVED
CVE-2022-1259
RESERVED
+ - undertow <not-affected> (Incomplete fix not released to any suite)
CVE-2022-1258 (A blind SQL injection vulnerability in the ePolicy Orchestrator
(ePO) ...)
NOT-FOR-US: McAfee
CVE-2022-1257 (Insecure storage of sensitive information vulnerability in MA
for Linu ...)
@@ -72091,6 +72092,8 @@ CVE-2021-3630 (An out-of-bounds write vulnerability was
found in DjVuLibre in DJ
CVE-2021-3629 (A flaw was found in Undertow. A potential security issue in
flow contr ...)
- undertow <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1977362
+ NOTE: Make sure to also address followup tracked as CVE-2022-1259:
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2072339
CVE-2021-3628 (OpenKM Community Edition in its 6.3.10 version is vulnerable to
authen ...)
NOT-FOR-US: OpenKM
CVE-2021-3627
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fdaced5bb3abfe428ce5cf3311d299efc13f09dc
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fdaced5bb3abfe428ce5cf3311d299efc13f09dc
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
