Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3e90c111 by Markus Koschany at 2024-03-19T20:54:01+01:00
CVE-2024-25710,libcommons-compress-java: Link to upstream ticket
Apparently this problem was discovered during some fuzzing and was just one of
many
improvements fixed by pull requests related to COMPRESS-632.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7875,6 +7875,7 @@ CVE-2024-25710 (Loop with Unreachable Exit Condition
('Infinite Loop') vulnerabi
[bookworm] - libcommons-compress-java <no-dsa> (Minor issue)
[bullseye] - libcommons-compress-java <no-dsa> (Minor issue)
NOTE: https://www.openwall.com/lists/oss-security/2024/02/19/1
+ NOTE: Related to and fixed by
https://issues.apache.org/jira/browse/COMPRESS-632
CVE-2024-23114 (Deserialization of Untrusted Data vulnerability in Apache
Camel Cassan ...)
NOT-FOR-US: Apache Camel
CVE-2024-22369 (Deserialization of Untrusted Data vulnerability in Apache
Camel SQL Co ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e90c11189013a24887c772dcb27557e1d464877
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e90c11189013a24887c772dcb27557e1d464877
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
