[Git][security-tracker-team/security-tracker][master] shiro fixed in sidx

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Aug 27 21:41:17 BST 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
677a4b7c by Moritz Mühlenhoff at 2021-08-27T22:40:43+02:00
shiro fixed in sidx

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -83060,7 +83060,7 @@ CVE-2020-17511 (In Airflow versions prior to 1.10.13, when creating a user using
 	- airflow <itp> (bug #819700)
 CVE-2020-17510 (Apache Shiro before 1.7.0, when using Apache Shiro with Spring, a spec ...)
 	{DLA-2726-1}
-	- shiro <unfixed> (bug #988728)
+	- shiro 1.3.2-5 (bug #988728)
 	[bullseye] - shiro <no-dsa> (Minor issue)
 	[buster] - shiro <no-dsa> (Minor issue)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/11/04/7
@@ -92303,7 +92303,7 @@ CVE-2020-13934 (An h2c direct connection to Apache Tomcat 10.0.0-M1 to 10.0.0-M6
 	NOTE: https://github.com/apache/tomcat/commit/172977f04a5215128f1e278a688983dcd230f399 (9.0.37)
 CVE-2020-13933 (Apache Shiro before 1.6.0, when using Apache Shiro, a specially crafte ...)
 	{DLA-2726-1}
-	- shiro <unfixed> (bug #968753)
+	- shiro 1.3.2-5 (bug #968753)
 	[bullseye] - shiro <no-dsa> (Minor issue)
 	[buster] - shiro <no-dsa> (Minor issue)
 	NOTE: https://lists.apache.org/thread.html/r539f87706094e79c5da0826030384373f0041068936912876856835f%40%3Cdev.shiro.apache.org%3E
@@ -97476,7 +97476,7 @@ CVE-2020-11990 (We have resolved a security issue in the camera plugin that coul
 	NOT-FOR-US: Apache Cordova
 CVE-2020-11989 (Apache Shiro before 1.5.3, when using Apache Shiro with Spring dynamic ...)
 	{DLA-2273-1}
-	- shiro <unfixed> (bug #988728)
+	- shiro 1.3.2-5 (bug #988728)
 	[bullseye] - shiro <no-dsa> (Minor issue)
 	[buster] - shiro <no-dsa> (Minor issue)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/06/22/1
@@ -125518,7 +125518,7 @@ CVE-2020-1958 (When LDAP authentication is enabled in Apache Druid 0.17.0, calle
 	- druid <itp> (bug #825797)
 CVE-2020-1957 (Apache Shiro before 1.5.2, when using Apache Shiro with Spring dynamic ...)
 	{DLA-2273-1 DLA-2181-1}
-	- shiro <unfixed> (bug #955018)
+	- shiro 1.3.2-5 (bug #955018)
 	[bullseye] - shiro <no-dsa> (Minor issue)
 	[buster] - shiro <no-dsa> (Minor issue)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/03/23/2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/677a4b7cdff9ac79fc074a29a84f3a39199d1846

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/677a4b7cdff9ac79fc074a29a84f3a39199d1846
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210827/a550392e/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list