[Git][security-tracker-team/security-tracker][master] undertow n/a (concludes external check)
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Jul 17 12:25:25 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fdaced5b by Moritz Muehlenhoff at 2022-07-17T13:24:48+02:00
undertow n/a (concludes external check)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20199,6 +20199,7 @@ CVE-2022-1260
RESERVED
CVE-2022-1259
RESERVED
+ - undertow <not-affected> (Incomplete fix not released to any suite)
CVE-2022-1258 (A blind SQL injection vulnerability in the ePolicy Orchestrator (ePO) ...)
NOT-FOR-US: McAfee
CVE-2022-1257 (Insecure storage of sensitive information vulnerability in MA for Linu ...)
@@ -72091,6 +72092,8 @@ CVE-2021-3630 (An out-of-bounds write vulnerability was found in DjVuLibre in DJ
CVE-2021-3629 (A flaw was found in Undertow. A potential security issue in flow contr ...)
- undertow <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1977362
+ NOTE: Make sure to also address followup tracked as CVE-2022-1259:
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2072339
CVE-2021-3628 (OpenKM Community Edition in its 6.3.10 version is vulnerable to authen ...)
NOT-FOR-US: OpenKM
CVE-2021-3627
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fdaced5bb3abfe428ce5cf3311d299efc13f09dc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fdaced5bb3abfe428ce5cf3311d299efc13f09dc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220717/1a6f42d4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list