[Git][security-tracker-team/security-tracker][master] Add CVE-2021-31805/libstruts1.2-java
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Apr 13 07:28:02 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9cc9676b by Salvatore Bonaccorso at 2022-04-13T08:27:25+02:00
Add CVE-2021-31805/libstruts1.2-java
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -61634,7 +61634,8 @@ CVE-2021-31806 (An issue was discovered in Squid before 4.15 and 5.x before 5.0.
NOTE: https://github.com/squid-cache/squid/security/advisories/GHSA-pxwq-f3qr-w2xf
NOTE: http://www.squid-cache.org/Versions/v4/changesets/squid-4-e7cf864f938f24eea8af0692c04d16790983c823.patch
CVE-2021-31805 (The fix issued for CVE-2020-17530 was incomplete. So from Apache Strut ...)
- TODO: check
+ - libstruts1.2-java <not-affected> (Vulnerable code not present; fix for CVE-2020-17530 not applied; specific to 2.x)
+ NOTE: https://cwiki.apache.org/confluence/display/WW/S2-062
CVE-2020-36325 (** DISPUTED ** An issue was discovered in Jansson through 2.13.1. Due ...)
- jansson <unfixed> (unimportant)
NOTE: https://github.com/akheron/jansson/issues/548
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9cc9676b4e600e0c70f77ffad9dd6a1f360b002e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9cc9676b4e600e0c70f77ffad9dd6a1f360b002e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220413/dd9c1b88/attachment.htm>
More information about the debian-security-tracker-commits
mailing list