[Git][security-tracker-team/security-tracker][master] CVE-2021-28163/jetty9: stretch not-affected

Sylvain Beucler (@beuc) beuc at debian.org
Tue May 11 15:28:33 BST 2021



Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9e8ca1d9 by Sylvain Beucler at 2021-05-11T16:25:41+02:00
CVE-2021-28163/jetty9: stretch not-affected

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9991,6 +9991,7 @@ CVE-2021-28164 (In Eclipse Jetty 9.4.37.v20210219 to 9.4.38.v20210224, the defau
 	NOTE: https://github.com/eclipse/jetty.project/commit/e412c8a15b3334b30193f40412c0fbc47e478e83
 CVE-2021-28163 (In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and 11.0.0. ...)
 	- jetty9 9.4.39-1
+	[stretch] - jetty9 <not-affected> (Vulnerable code introduced in 9.4.32 according to upstream advisory, reproducer no-op)
 	NOTE: https://github.com/eclipse/jetty.project/security/advisories/GHSA-j6qj-j888-vvgq
 	NOTE: https://github.com/eclipse/jetty.project/commit/37fffb1722604da1763d8a096ec5c5fb41ea0633
 CVE-2021-28162 (In Eclipse Theia versions up to and including 0.16.0, in the notificat ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e8ca1d95818fd0ed7e8576192ae6efaded73bf7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e8ca1d95818fd0ed7e8576192ae6efaded73bf7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210511/40856a4a/attachment.htm>


More information about the debian-security-tracker-commits mailing list