Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ca88c060 by Markus Koschany at 2022-08-02T19:12:33+02:00
CVE-2021-3597,undertow: fixed in unstable in 2.2.10-1
according to Red Hat the first version which contained the fix was 2.2.9.
Marking 2.2.10-1 as the first fixed version in Debian. No further details are
available
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -78084,7 +78084,7 @@ CVE-2021-3598 (There's a flaw in OpenEXR's
ImfDeepScanLineInputFile functionalit
NOTE:
https://github.com/AcademySoftwareFoundation/openexr/commit/e2667ae1a3ff8a9fce730e61129868b326abb3f5
(2.5)
NOTE: Introduced by
https://github.com/AcademySoftwareFoundation/openexr/commit/9f011ae9ce9b1ca03521ff76e7659d34ee830344
(v2.0.0)
CVE-2021-3597 (A flaw was found in undertow. The HTTP2SourceChannel fails to
write th ...)
- - undertow <unfixed> (bug #989861)
+ - undertow 2.2.10-1 (bug #989861)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1970930
CVE-2021-34674
RESERVED
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca88c0609f0742135809e2da587fb23533ec449e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca88c0609f0742135809e2da587fb23533ec449e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
