[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2022-23181
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Apr 29 23:01:16 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0c1d4793 by Salvatore Bonaccorso at 2022-04-30T00:00:40+02:00
Track fixed version via unstable for CVE-2022-23181
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20223,7 +20223,7 @@ CVE-2022-23185
CVE-2022-23184 (In affected Octopus Server versions when the server HTTP and HTTPS bin ...)
NOT-FOR-US: Octopus Server
CVE-2022-23181 (The fix for bug CVE-2020-9484 introduced a time of check, time of use ...)
- - tomcat9 <unfixed>
+ - tomcat9 9.0.58-1
[bullseye] - tomcat9 <postponed> (Minor issue, fix along in future DSA)
[buster] - tomcat9 <postponed> (Minor issue, fix along in future DSA)
- tomcat8 <removed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0c1d47936c1c7bcb897f7c0798e317ee1e299c88
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0c1d47936c1c7bcb897f7c0798e317ee1e299c88
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220429/7fd99ca8/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list