[Git][security-tracker-team/security-tracker][master] 2 commits: fixed in recent upload

Thorsten Alteholz (@alteholz) alteholz at debian.org
Wed Nov 17 11:34:06 GMT 2021



Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f7ddc48d by Thorsten Alteholz at 2021-11-17T11:02:01+01:00
fixed in recent upload

- - - - -
2f3a435b by Thorsten Alteholz at 2021-11-17T12:33:49+01:00
Reserve DLA-2821-1 for axis

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -231535,7 +231535,6 @@ CVE-2018-8033 (In Apache OFBiz 16.11.01 to 16.11.04, the OFBiz HTTP engine (org.
 	NOT-FOR-US: Apache OFBiz
 CVE-2018-8032 (Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site  ...)
 	- axis 1.4-28 (bug #905328)
-	[stretch] - axis <no-dsa> (Minor issue)
 	[jessie] - axis <no-dsa> (Minor issue)
 	NOTE: https://issues.apache.org/jira/browse/AXIS-2924
 	NOTE: https://svn.apache.org/r1831943


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[17 Nov 2021] DLA-2821-1 axis - security update
+	{CVE-2018-8032}
+	[stretch] - axis 1.4-25+deb9u1
 [17 Nov 2021] DLA-2820-1 atftp - security update
 	{CVE-2020-6097 CVE-2021-41054}
 	[stretch] - atftp 0.7.git20120829-3.1~deb9u2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/e89bca100bfde236fd885ca9b93b1e6ff9d31fc0...2f3a435b6b7ac1c7fa7b458ff598ece9e837f727

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/e89bca100bfde236fd885ca9b93b1e6ff9d31fc0...2f3a435b6b7ac1c7fa7b458ff598ece9e837f727
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211117/a8f3bc81/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list