[Git][security-tracker-team/security-tracker][master] Reference upstream report for CVE-2023-5072/libjettison-java

Sun, 15 Dec 2024 05:22:52 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
60b02e76 by Salvatore Bonaccorso at 2024-12-15T14:22:08+01:00
Reference upstream report for CVE-2023-5072/libjettison-java

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -110302,6 +110302,7 @@ CVE-2023-5072 (Denial of Service  in JSON-Java 
versions up to and including 2023
        NOTE: 
https://github.com/stleary/JSON-java/commit/16967f322ee65c301b48fa79bb681e38896fd212
 (20231013)
        NOTE: 
https://github.com/stleary/JSON-java/commit/661114c50dcfd53bb041aab66f14bb91e0a87c8a
 (20231013)
        NOTE: https://github.com/kordamp/json-lib/issues/58
+       NOTE: https://github.com/jettison-json/jettison/issues/86
 CVE-2023-5046 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
        NOT-FOR-US: Procost
 CVE-2023-5045 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60b02e761b33895e2a60c1e5af3aebb0965bb180

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60b02e761b33895e2a60c1e5af3aebb0965bb180
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to