[Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2022-22950 in libspring-java for stretch LTS.

Mon Apr 25 16:04:30 BST 2022


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1a809c5d by Chris Lamb at 2022-04-25T08:03:48-07:00
Triage CVE-2022-22950 in libspring-java for stretch LTS.

- - - - -
d5a749fc by Chris Lamb at 2022-04-25T08:04:06-07:00
Triage CVE-2022-22968 in libspring-java for stretch LTS.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20106,6 +20106,7 @@ CVE-2022-22968 (In Spring Framework versions 5.3.0 - 5.3.18, 5.2.0 - 5.2.20, and
 	- libspring-java <unfixed>
 	[bullseye] - libspring-java <no-dsa> (Minor issue)
 	[buster] - libspring-java <no-dsa> (Minor issue)
+	[stretch] - libspring-java <end-of-life>
 	NOTE: https://tanzu.vmware.com/security/cve-2022-22968
 CVE-2022-22967
 	RESERVED
@@ -20146,6 +20147,7 @@ CVE-2022-22951 (VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x pr
 	NOT-FOR-US: VMware
 CVE-2022-22950 (n Spring Framework versions 5.3.0 - 5.3.16 and older unsupported versi ...)
 	- libspring-java <unfixed>
+	[stretch] - libspring-java <end-of-life>
 	NOTE: https://tanzu.vmware.com/security/cve-2022-22950
 	TODO: check, no details available
 CVE-2022-22949



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9b46e7e4372fdff452452aaf9779cbd385427be7...d5a749fc255583cb95458477d2dab2d79720ee3a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9b46e7e4372fdff452452aaf9779cbd385427be7...d5a749fc255583cb95458477d2dab2d79720ee3a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220425/c0d504a8/attachment-0001.htm>
