[Git][security-tracker-team/security-tracker][master] Remove association of CVE-2022-21291 to openjdk-8

[Emilio Pozuelo Monfort (@pochu)]

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
afaa4a09 by Emilio Pozuelo Monfort at 2022-02-11T09:30:43+01:00
Remove association of CVE-2022-21291 to openjdk-8

The Oracle advisory said Oracle Java 8u and 7u were affected, but
OpenJDK 8u and 7u are not as they do not have the corresponding
affected code backported. Double checked with upstream.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -17403,7 +17403,6 @@ CVE-2022-21292 (Vulnerability in the Oracle WebLogic Server product of Oracle Fu
 	NOT-FOR-US: Oracle
 CVE-2022-21291 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
 	{DSA-5058-1 DSA-5057-1}
-	- openjdk-8 <unfixed>
 	- openjdk-11 11.0.14+9-1
 	- openjdk-17 17.0.2+8-1
 CVE-2022-21290 (Vulnerability in the MySQL Cluster product of Oracle MySQL (component: ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afaa4a09d27e9d688fbb7f39f8d5f1bd2b97a2b6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afaa4a09d27e9d688fbb7f39f8d5f1bd2b97a2b6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220211/2f5c1b6a/attachment.htm>