[Git][security-tracker-team/security-tracker][master] Mark Buster CVE of libxstream-java as fixed in version 1.4.11.1-1+deb10u3

Markus Koschany (@apo) apo at debian.org
Wed Nov 10 19:48:09 GMT 2021 


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1aa24f85 by Markus Koschany at 2021-11-10T20:47:31+01:00
Mark Buster CVE of libxstream-java as fixed in version 1.4.11.1-1+deb10u3

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -36429,6 +36429,7 @@ CVE-2021-29506 (GraphHopper is an open-source Java routing engine. In GrassHoppe
 CVE-2021-29505 (XStream is software for serializing Java objects to XML and back again ...)
 	{DLA-2704-1}
 	- libxstream-java 1.4.15-3 (bug #989491)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-7chv-rrw6-w6fc
 	NOTE: https://github.com/x-stream/xstream/commit/f0c4a8d861b68ffc3119cfbbbd632deee624e227 (v1.4.17)
 CVE-2021-29504 (WP-CLI is the command-line interface for WordPress. An improper error  ...)
@@ -57357,46 +57358,57 @@ CVE-2021-21352 (Anuko Time Tracker is an open source, web-based time tracking ap
 CVE-2021-21351 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-hrcp-8f3q-4w2c
 CVE-2021-21350 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-43gc-mjxg-gvrq
 CVE-2021-21349 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-f6hm-88x3-mfjv
 CVE-2021-21348 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-56p8-3fh9-4cvq
 CVE-2021-21347 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-qpfq-ph7r-qv6f
 CVE-2021-21346 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-4hrm-m67v-5cxr
 CVE-2021-21345 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-hwpc-8xqv-jvj4
 CVE-2021-21344 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-59jw-jqf4-3wq3
 CVE-2021-21343 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-74cv-f58x-f9wf
 CVE-2021-21342 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-hvv8-336g-rx3m
 CVE-2021-21341 (XStream is a Java library to serialize objects to XML and back again.  ...)
 	{DLA-2616-1}
 	- libxstream-java 1.4.15-2 (bug #985843)
+	[buster] - libxstream-java 1.4.11.1-1+deb10u3
 	NOTE: https://github.com/x-stream/xstream/security/advisories/GHSA-2p3x-qw9c-25hh
 CVE-2021-21340 (TYPO3 is an open source PHP based web content management system. In TY ...)
 	NOT-FOR-US: TYPO3



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1aa24f850af4a56718ea5f7a08592151fdac4f9d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1aa24f850af4a56718ea5f7a08592151fdac4f9d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211110/76c0ebfd/attachment.htm>

More information about the debian-security-tracker-commits mailing list