Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3a965ba7 by Moritz Muehlenhoff at 2024-10-28T18:01:51+01:00
one more burp fix in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -494367,7 +494367,7 @@ CVE-2017-16516 (In the yajl-ruby gem 1.3.0 for Ruby,
when a crafted JSON file is
- yajl 2.1.0-4 (bug #1040036)
[bookworm] - yajl 2.1.0-3+deb12u2
[bullseye] - yajl 2.1.0-3+deb11u2
- - burp <unfixed> (bug #1040146)
+ - burp 3.1.4-2 (bug #1040146)
[bookworm] - burp <no-dsa> (Minor issue)
[bullseye] - burp <no-dsa> (Minor issue)
- epics-base <unfixed> (bug #1040159)
@@ -494380,6 +494380,7 @@ CVE-2017-16516 (In the yajl-ruby gem 1.3.0 for Ruby,
when a crafted JSON file is
NOTE: xqilla's embedded yajl is ancient (around 0.2.2), not having the
vulnerable code
NOTE: https://github.com/brianmario/yajl-ruby/issues/176
NOTE:
https://github.com/brianmario/yajl-ruby/commit/a8ca8f476655adaa187eedc60bdc770fff3c51ce
+ NOTE: burp fix:
https://github.com/grke/burp/commit/5ce44cdf7018767b53a4c5466c62e4dc99d0bc93
CVE-2017-16515
RESERVED
CVE-2017-16514 (Multiple persistent stored Cross-Site-Scripting (XSS)
vulnerabilities ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a965ba7a88a58702248bb9a683a44cabd0b3392
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a965ba7a88a58702248bb9a683a44cabd0b3392
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
