[Git][security-tracker-team/security-tracker][master] new libpgjava issue

Thu, 22 Feb 2024 06:51:27 -0800 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
554757e5 by Moritz Muehlenhoff at 2024-02-22T15:49:30+01:00
new libpgjava issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -925,7 +925,14 @@ CVE-2024-25623 (Mastodon is a free, open-source social 
network server based on A
 CVE-2024-1633 (During the secure boot, bl2 (the second stage of the 
bootloader) loops ...)
        TODO: check
 CVE-2024-1597 (pgjdbc, the PostgreSQL JDBC Driver, allows attacker to inject 
SQL if u ...)
-       TODO: check
+       - libpgjava 42.7.2-1
+       NOTE: 
https://github.com/pgjdbc/pgjdbc/security/advisories/GHSA-24rp-q3w6-vc56
+       NOTE: 
https://github.com/pgjdbc/pgjdbc/commit/93b0fcb2711d9c1e3a2a03134369738a02a58b40
 (master)
+       NOTE: 
https://github.com/pgjdbc/pgjdbc/commit/06abfb78a627277a580d4df825f210e96a4e14ee
 (master)
+       NOTE: 
https://github.com/pgjdbc/pgjdbc/commit/1b1d6b53eca90409af0069d5327d4fdf8d40a255
 (release/42.5.x)
+       NOTE: 
https://github.com/pgjdbc/pgjdbc/commit/475e3e2af3033c666fc1c0015159b35455118ae5
 (release/42.5.x)
+       NOTE: 
https://github.com/pgjdbc/pgjdbc/commit/b9b3777671c8a5cc580e1985f61337d39d47c730
 (release/42.2)
+       NOTE: 
https://github.com/pgjdbc/pgjdbc/commit/990d63f6be401ab40de5eb303a75924c9e71903c
 (release/42.2)
 CVE-2024-1580 (An integer overflow in dav1d AV1 decoder that can occur when 
decoding  ...)
        - dav1d 1.4.0-1 (bug #1064310)
        NOTE: 
https://code.videolan.org/videolan/dav1d/commit/2b475307dc11be9a1c3cc4358102c76a7f386a51
 (1.4.0)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/554757e5227a31c99dcef5c0ba54638749994723

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/554757e5227a31c99dcef5c0ba54638749994723
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to