[Git][security-tracker-team/security-tracker][master] new java issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Apr 20 16:26:12 BST 2022 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cb287a34 by Moritz Muehlenhoff at 2022-04-20T17:25:19+02:00
new java issues

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -30290,7 +30290,9 @@ CVE-2022-21498 (Vulnerability in the Java VM component of Oracle Database Server
 CVE-2022-21497 (Vulnerability in the Oracle Web Services Manager product of Oracle Fus ...)
 	TODO: check
 CVE-2022-21496 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	TODO: check
+	- openjdk-8 <unfixed>
+	- openjdk-11 <unfixed>
+	- openjdk-17 <unfixed>
 CVE-2022-21495
 	RESERVED
 CVE-2022-21494 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
@@ -30330,7 +30332,9 @@ CVE-2022-21478 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
 CVE-2022-21477 (Vulnerability in the Oracle Applications Framework product of Oracle E ...)
 	TODO: check
 CVE-2022-21476 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	TODO: check
+	- openjdk-8 <unfixed>
+	- openjdk-11 <unfixed>
+	- openjdk-17 <unfixed>
 CVE-2022-21475 (Vulnerability in the Oracle Banking Payments product of Oracle Financi ...)
 	TODO: check
 CVE-2022-21474 (Vulnerability in the Oracle Banking Trade Finance product of Oracle Fi ...)
@@ -30384,7 +30388,9 @@ CVE-2022-21451 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
 CVE-2022-21450 (Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub produc ...)
 	TODO: check
 CVE-2022-21449 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	TODO: check
+	- openjdk-8 <unfixed>
+	- openjdk-11 <unfixed>
+	- openjdk-17 <unfixed>
 CVE-2022-21448 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
 	TODO: check
 CVE-2022-21447 (Vulnerability in the PeopleSoft Enterprise CS Academic Advisement prod ...)
@@ -30396,7 +30402,9 @@ CVE-2022-21445 (Vulnerability in the Oracle JDeveloper product of Oracle Fusion
 CVE-2022-21444 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	TODO: check
 CVE-2022-21443 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	TODO: check
+	- openjdk-8 <unfixed>
+	- openjdk-11 <unfixed>
+	- openjdk-17 <unfixed>
 CVE-2022-21442 (Vulnerability in Oracle GoldenGate (component: OGG Core Library). The  ...)
 	TODO: check
 CVE-2022-21441 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
@@ -30414,7 +30422,9 @@ CVE-2022-21436 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
 CVE-2022-21435 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	TODO: check
 CVE-2022-21434 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	TODO: check
+	- openjdk-8 <unfixed>
+	- openjdk-11 <unfixed>
+	- openjdk-17 <unfixed>
 CVE-2022-21433
 	RESERVED
 CVE-2022-21432
@@ -30430,7 +30440,9 @@ CVE-2022-21428
 CVE-2022-21427 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	TODO: check
 CVE-2022-21426 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
-	TODO: check
+	- openjdk-8 <unfixed>
+	- openjdk-11 <unfixed>
+	- openjdk-17 <unfixed>
 CVE-2022-21425 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	TODO: check
 CVE-2022-21424 (Vulnerability in the Oracle Communications Billing and Revenue Managem ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -32,6 +32,10 @@ ndpi/oldstable
 --
 nodejs (jmm)
 --
+openjdk-11 (jmm)
+--
+openjdk-17
+--
 puma
 --
 python-pysaml2 (jmm)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb287a3444689f88f8fd804efc82d86d828eb230

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb287a3444689f88f8fd804efc82d86d828eb230
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220420/c6909c8c/attachment.htm>

More information about the debian-security-tracker-commits mailing list