Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4e5444e1 by Moritz Mühlenhoff at 2025-02-17T13:11:56+01:00
json-smart fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2810,7 +2810,7 @@ CVE-2025-0799 (IBM App Connect enterprise12.0.1.0 through
12.0.12.10 and13.0.1.0
CVE-2025-0522 (The LikeBot WordPress plugin through 0.85 does not have CSRF
check in ...)
NOT-FOR-US: WordPress plugin
CVE-2024-57699 (A security issue was found in Netplex Json-smart 2.5.0 through
2.5.1. ...)
- - json-smart <unfixed> (bug #1095839)
+ - json-smart 2.5.2-1 (bug #1095839)
NOTE: https://github.com/TurtleLiu/Vul_PoC/tree/main/CVE-2024-57699
NOTE: https://github.com/netplex/json-smart-v2/pull/233
NOTE: Fixed by:
https://github.com/netplex/json-smart-v2/commit/c21d8545e58b2ef2aa16094a09b13ff92adef15c
(2.5.2)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e5444e1cded5b5e60aa158e143f12ff5f16c5b5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e5444e1cded5b5e60aa158e143f12ff5f16c5b5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
