[Git][security-tracker-team/security-tracker][master] new undertow issue
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: eae0cbec by Moritz Muehlenhoff at 2024-04-05T13:07:08+02:00 new undertow issue - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -60948,6 +60948,8 @@ CVE-2023-30468 RESERVED CVE-2023-1973 RESERVED + - undertow + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2185662 CVE-2023-30467 (This vulnerability exists in Milesight 4K/H.265 Series NVR models (MS- ...) NOT-FOR-US: Milesight CVE-2023-30466 (This vulnerability exists in Milesight 4K/H.265 Series NVR models (MS- ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eae0cbec4b3436c98e709317f3d9aacf8dfa3b9c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eae0cbec4b3436c98e709317f3d9aacf8dfa3b9c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new undertow issue
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: c00a84d6 by Moritz Muehlenhoff at 2023-08-09T10:18:40+02:00 new undertow issue - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -58,6 +58,9 @@ CVE-2023-33934 (Improper Input Validation vulnerability in Apache Software Found TODO: check CVE-2023-2905 (Due to a failure in validating the length of a provided MQTT_CMD_PUBLI ...) TODO: check +CVE-2023-3223 + - undertow + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2209689 CVE-2023-4219 (A vulnerability was found in SourceCodester Doctors Appointment System ...) NOT-FOR-US: SourceCodester Doctors Appointment System CVE-2023-4203 (Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affect ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c00a84d60004fb859c355fda946f3fedda9736e4 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c00a84d60004fb859c355fda946f3fedda9736e4 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new undertow issue, concludes external check
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 366b872a by Moritz Muehlenhoff at 2022-05-13T09:50:59+02:00 new undertow issue, concludes external check - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -4447,6 +4447,8 @@ CVE-2022-29064 RESERVED CVE-2022-1319 RESERVED + - undertow + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2073890 CVE-2022-1318 (Hills ComNav version 3002-19 suffers from a weak communication channel ...) NOT-FOR-US: Hills ComNav CVE-2022-1317 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/366b872a4fa6b19c9a687c7c538140252e52ffda -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/366b872a4fa6b19c9a687c7c538140252e52ffda You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new undertow issue
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: d0b4f4b5 by Moritz Muehlenhoff at 2019-12-20T14:28:02Z new undertow issue ceph n/a - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -5830,6 +5830,8 @@ CVE-2019-19344 RESERVED CVE-2019-19343 RESERVED + - undertow + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1780445 CVE-2019-19342 RESERVED NOT-FOR-US: Ansible Tower @@ -5849,6 +5851,7 @@ CVE-2019-19338 [KVM: export MSR_IA32_TSX_CTRL to guest - incomplete fix for TAA NOTE: https://www.openwall.com/lists/oss-security/2019/12/11/1 CVE-2019-19337 RESERVED + - ceph (Only affects Ceph as packaged by Red Hat) CVE-2019-19336 RESERVED CVE-2019-19335 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d0b4f4b5e36d8f5f4bda71a887ffbfaf6f1ef5ce -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d0b4f4b5e36d8f5f4bda71a887ffbfaf6f1ef5ce You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new undertow issue
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: b0b5d914 by Moritz Muehlenhoff at 2019-10-01T10:39:55Z new undertow issue NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -20010,6 +20010,8 @@ CVE-2019-10213 NOT-FOR-US: OpenShift CVE-2019-10212 RESERVED + - undertow + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1731984 CVE-2019-10211 RESERVED NOT-FOR-US: EnterpriseDB Windows installer @@ -20063,6 +20065,7 @@ CVE-2019-10203 [PowerDNS Security Advisory 2019-06: Denial of service via crafte NOTE: https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-06.html CVE-2019-10202 RESERVED + NOT-FOR-US: Codehaus CVE-2019-10201 (It was found that Keycloak's SAML broker, versions up to 6.0.1, did no ...) NOT-FOR-US: Keycloak CVE-2019-10200 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b0b5d9148802010599ab4f932be819c13e3ce4b0 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b0b5d9148802010599ab4f932be819c13e3ce4b0 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new undertow issue
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: be0df6e6 by Moritz Muehlenhoff at 2018-05-25T08:15:58+02:00 new undertow issue - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = --- a/data/CVE/list +++ b/data/CVE/list @@ -28435,7 +28435,7 @@ CVE-2018-1068 (A flaw was found in the Linux 4.x kernel's implementation of 32-b NOTE: Unprivileged user namespaces are disabled in Debian, this only affects NOTE: non-standard setups CVE-2018-1067 (In Undertow before versions 7.1.2.CR1, 7.1.2.GA it was found that the ...) - TODO: check, unclear if issue is in src:untertow or in its use in WildFly (issue is incomplete fix for CVE-2016-4993, which might need an update depending on the result) + - undertow CVE-2018-1066 (The Linux kernel before version 4.11 is vulnerable to a NULL pointer ...) {DSA-4188-1 DSA-4187-1} - linux 4.11.6-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/be0df6e66c465b92e405b070e7c5a0d78c68107c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/be0df6e66c465b92e405b070e7c5a0d78c68107c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits