Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6ca0decc by Salvatore Bonaccorso at 2022-10-23T21:21:55+02:00
Add Debian bug references for libjettison-java issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8642,11 +8642,11 @@ CVE-2022-40151 (Those using Xstream to seralize XML
data may be vulnerable to De
- libxstream-java <undetermined>
NOTE: https://github.com/x-stream/xstream/issues/304
CVE-2022-40150 (Those using Jettison to parse untrusted XML or JSON data may
be vulner ...)
- - libjettison-java <unfixed>
+ - libjettison-java <unfixed> (bug #1022553)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46549
NOTE: https://github.com/jettison-json/jettison/issues/45
CVE-2022-40149 (Those using Jettison to parse untrusted XML or JSON data may
be vulner ...)
- - libjettison-java <unfixed>
+ - libjettison-java <unfixed> (bug #1022554)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46538
NOTE: https://github.com/jettison-json/jettison/issues/45
NOTE:
https://github.com/jettison-json/jettison/commit/395f8625bcf688743872c8e7f59360d372e77811
(jettison-1.5.1)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ca0decc17b1bf4b6f1914a46c23c33b40e571a9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ca0decc17b1bf4b6f1914a46c23c33b40e571a9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
