[Git][security-tracker-team/security-tracker][master] Add Debian bug references for tomcat9

Tue Jul 13 15:35:11 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b5491821 by Salvatore Bonaccorso at 2021-07-13T16:34:48+02:00
Add Debian bug references for tomcat9

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8303,7 +8303,7 @@ CVE-2021-33038 (An issue was discovered in management/commands/hyperkitty_import
 	NOTE: https://gitlab.com/mailman/hyperkitty/-/issues/380
 	NOTE: https://techblog.wikimedia.org/2021/06/11/discovering-and-fixing-cve-2021-33038-in-mailman3/
 CVE-2021-33037 (Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5 ...)
-	- tomcat9 <unfixed>
+	- tomcat9 <unfixed> (bug #991046)
 	- tomcat8 <removed>
 	NOTE: https://github.com/apache/tomcat/commit/45d70a86a901cbd534f8f570bed2aec9f7f7b88e (9.0.47)
 	NOTE: https://github.com/apache/tomcat/commit/05f9e8b00f5d9251fcd3c95dcfd6cf84177f46c8 (9.0.47)
@@ -14072,7 +14072,7 @@ CVE-2021-30641 (Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching
 	NOTE: https://bz.apache.org/bugzilla/show_bug.cgi?id=65238
 	NOTE: https://github.com/apache/httpd/commit/eb986059aa5aa0b6c1d52714ea83e3dd758afdd1
 CVE-2021-30640 (A vulnerability in the JNDI Realm of Apache Tomcat allows an attacker  ...)
-	- tomcat9 <unfixed>
+	- tomcat9 <unfixed> (bug #991046)
 	- tomcat8 <removed>
 	NOTE: https://bz.apache.org/bugzilla/show_bug.cgi?id=65224
 	NOTE: https://github.com/apache/tomcat/commit/c4df8d44a959a937d507d15e5b1ca35c3dbc41eb (9.0.46)
@@ -14092,7 +14092,7 @@ CVE-2021-30640 (A vulnerability in the JNDI Realm of Apache Tomcat allows an att
 	NOTE: https://github.com/apache/tomcat/commit/6a9129ac9bd06555ce04bb564a76fc3987311f38 (8.5.66)
 	NOTE: https://github.com/apache/tomcat/commit/ad22db641dcd61c2e8078f658fa709897b5da375 (8.5.66)
 CVE-2021-30639 (A vulnerability in Apache Tomcat allows an attacker to remotely trigge ...)
-	- tomcat9 <unfixed>
+	- tomcat9 <unfixed> (bug #991046)
 	- tomcat8 <removed>
 	NOTE: https://bz.apache.org/bugzilla/show_bug.cgi?id=65203
 	NOTE: https://github.com/apache/tomcat/commit/8ece47c4a9fb9349e8862c84358a4dd23c643a24 (9.0.45)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b5491821526be7ab28ccf457c759d2d73e9d3f62

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b5491821526be7ab28ccf457c759d2d73e9d3f62
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210713/97a1f875/attachment.htm>
