[Git][security-tracker-team/security-tracker][master] jakarta-el-api unimportant
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon May 31 08:11:09 BST 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e17d303a by Moritz Muehlenhoff at 2021-05-31T09:10:43+02:00
jakarta-el-api unimportant
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13201,9 +13201,10 @@ CVE-2021-28172 (There is a Path Traversal vulnerability in the file download fun
CVE-2021-28171 (The Vangene deltaFlow E-platform does not take properly protective mea ...)
NOT-FOR-US: Vangene deltaFlow E-platform
CVE-2021-28170 (In the Jakarta Expression Language implementation 3.0.3 and earlier, a ...)
- - jakarta-el-api <unfixed> (bug #989259)
+ - jakarta-el-api <unfixed> (unimportant; bug #989259)
NOTE: https://github.com/eclipse-ee4j/el-ri/issues/155
NOTE: https://securitylab.github.com/advisories/GHSL-2020-021-jakarta-el/
+ NOTE: Only affects the EL reference implementation which isn't built into the binary packages
CVE-2021-28169
RESERVED
CVE-2021-28168 (Eclipse Jersey 2.28 to 2.33 and Eclipse Jersey 3.0.0 to 3.0.1 contains ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e17d303a0c4ddc23a5a6e39609f1c29197fcd73a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e17d303a0c4ddc23a5a6e39609f1c29197fcd73a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210531/98b60ef3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list