[Git][security-tracker-team/security-tracker][master] tomcat DSA
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Aug 9 22:04:03 BST 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7237d3fd by Moritz Mühlenhoff at 2021-08-09T23:03:39+02:00
tomcat DSA
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -12032,6 +12032,7 @@ CVE-2021-33038 (An issue was discovered in management/commands/hyperkitty_import
CVE-2021-33037 (Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5 ...)
{DLA-2733-1}
- tomcat9 9.0.43-2 (bug #991046)
+ [bullseye] - tomcat9 9.0.43-2~deb11u1
- tomcat8 <removed>
NOTE: https://github.com/apache/tomcat/commit/45d70a86a901cbd534f8f570bed2aec9f7f7b88e (9.0.47)
NOTE: https://github.com/apache/tomcat/commit/05f9e8b00f5d9251fcd3c95dcfd6cf84177f46c8 (9.0.47)
@@ -18013,6 +18014,7 @@ CVE-2021-30641 (Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching
CVE-2021-30640 (A vulnerability in the JNDI Realm of Apache Tomcat allows an attacker ...)
{DLA-2733-1}
- tomcat9 9.0.43-2 (bug #991046)
+ [bullseye] - tomcat9 9.0.43-2~deb11u1
- tomcat8 <removed>
NOTE: https://bz.apache.org/bugzilla/show_bug.cgi?id=65224
NOTE: https://github.com/apache/tomcat/commit/c4df8d44a959a937d507d15e5b1ca35c3dbc41eb (9.0.46)
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[09 Aug 2021] DSA-4952-1 tomcat9 - security update
+ {CVE-2021-30640 CVE-2021-33037}
+ [buster] - tomcat9 9.0.31-1~deb10u5
[07 Aug 2021] DSA-4951-1 bluez - security update
{CVE-2020-26558 CVE-2020-27153 CVE-2021-0129}
[buster] - bluez 5.50-1.2~deb10u2
=====================================
data/dsa-needed.txt
=====================================
@@ -48,8 +48,6 @@ runc
--
salt
--
-tomcat9
---
trafficserver (jmm)
--
varnish
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7237d3fd70a27fb2d0ab55d04e4c7dad9fb0dc17
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7237d3fd70a27fb2d0ab55d04e4c7dad9fb0dc17
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210809/53ec8ba5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list