Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2367591d by Moritz Muehlenhoff at 2024-10-28T17:43:07+01:00
burp fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -216091,7 +216091,7 @@ CVE-2022-24795 (yajl-ruby is a C binding to the YAJL
JSON parsing and generation
- yajl 2.1.0-4 (bug #1040036)
[bookworm] - yajl 2.1.0-3+deb12u2
[bullseye] - yajl 2.1.0-3+deb11u2
- - burp <unfixed> (bug #1040146)
+ - burp 3.1.4-2 (bug #1040146)
[bookworm] - burp <no-dsa> (Minor issue)
[bullseye] - burp <no-dsa> (Minor issue)
- epics-base <unfixed> (bug #1040159)
@@ -216106,6 +216106,7 @@ CVE-2022-24795 (yajl-ruby is a C binding to the YAJL
JSON parsing and generation
NOTE:
https://github.com/brianmario/yajl-ruby/commit/7168bd79b888900aa94523301126f968a93eb3a6
NOTE:
https://github.com/brianmario/yajl-ruby/commit/e8de283a6d64f0902740fd09e858fc3d7d803161
NOTE: https://github.com/lloyd/yajl/issues/239
+ NOTE: burp fix:
https://github.com/grke/burp/commit/5ce44cdf7018767b53a4c5466c62e4dc99d0bc93
CVE-2022-24794 (Express OpenID Connect is an Express JS middleware
implementing sign o ...)
NOT-FOR-US: Express OpenID Connect
CVE-2022-24793 (PJSIP is a free and open source multimedia communication
library writt ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2367591de4325b425445ac1682a12d496fe39c56
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2367591de4325b425445ac1682a12d496fe39c56
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
