[Git][security-tracker-team/security-tracker][master] libowasp-esapi-java,CVE-2022-23457,CVE-2022-24891 fixed in unstable
Markus Koschany (@apo)
apo at debian.org
Fri Apr 29 14:54:03 BST 2022
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
dd365b80 by Markus Koschany at 2022-04-29T15:53:17+02:00
libowasp-esapi-java,CVE-2022-23457,CVE-2022-24891 fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13974,7 +13974,7 @@ CVE-2022-24893
CVE-2022-24892 (Shopware is an open source e-commerce software platform. Starting with ...)
NOT-FOR-US: Shopware
CVE-2022-24891 (ESAPI (The OWASP Enterprise Security API) is a free, open source, web ...)
- - libowasp-esapi-java <unfixed> (bug #1010339)
+ - libowasp-esapi-java 2.4.0.0-1 (bug #1010339)
NOTE: https://github.com/ESAPI/esapi-java-legacy/security/advisories/GHSA-q77q-vx4q-xx6q
NOTE: https://github.com/ESAPI/esapi-java-legacy/blob/develop/documentation/ESAPI-security-bulletin8.pdf
NOTE: https://github.com/ESAPI/esapi-java-legacy/blob/develop/documentation/esapi4java-core-2.3.0.0-release-notes.txt
@@ -18862,7 +18862,7 @@ CVE-2022-23459
CVE-2022-23458
RESERVED
CVE-2022-23457 (ESAPI (The OWASP Enterprise Security API) is a free, open source, web ...)
- - libowasp-esapi-java <unfixed> (bug #1010339)
+ - libowasp-esapi-java 2.4.0.0-1 (bug #1010339)
NOTE: https://securitylab.github.com/advisories/GHSL-2022-008_The_OWASP_Enterprise_Security_API/
NOTE: https://github.com/ESAPI/esapi-java-legacy/security/advisories/GHSA-8m5h-hrqm-pxm2
NOTE: https://github.com/ESAPI/esapi-java-legacy/blob/develop/documentation/esapi4java-core-2.3.0.0-release-notes.txt
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd365b8039530d2dcc267a78aa9920395176af6b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd365b8039530d2dcc267a78aa9920395176af6b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220429/3c141007/attachment.htm>
More information about the debian-security-tracker-commits
mailing list