[Git][security-tracker-team/security-tracker][master] spring n/a
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Jun 27 11:09:23 BST 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ec5074f5 by Moritz Muehlenhoff at 2021-06-27T12:08:57+02:00
spring n/a
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -31631,7 +31631,10 @@ CVE-2021-22120
CVE-2021-22119
RESERVED
CVE-2021-22118 (In Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x ...)
- TODO: check
+ - libspring-java <not-affected> (Introduced in v5.0.0.RC1)
+ NOTE: https://tanzu.vmware.com/security/cve-2021-22118
+ NOTE: https://github.com/spring-projects/spring-framework/issues/26931
+ NOTE: https://github.com/spring-projects/spring-framework/commit/cce60c479c22101f24b2b4abebb6d79440b120d1
CVE-2021-22117 (RabbitMQ installers on Windows prior to version 3.8.16 do not harden p ...)
- rabbitmq-server <not-affected> (Windows-specific)
CVE-2021-22116 (RabbitMQ all versions prior to 3.8.16 are prone to a denial of service ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec5074f5e41c9a9ca8bccda6a7c5717921fb70c5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec5074f5e41c9a9ca8bccda6a7c5717921fb70c5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210627/f6e51f25/attachment.htm>
More information about the debian-security-tracker-commits
mailing list