[Git][security-tracker-team/security-tracker][master] Track fixed version for guzzle issues via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jun 16 20:03:47 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
db97d8f5 by Salvatore Bonaccorso at 2022-06-16T21:01:50+02:00
Track fixed version for guzzle issues via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6921,11 +6921,11 @@ CVE-2022-31045 (Istio is an open platform to connect, manage, and secure microse
CVE-2022-31044 (Rundeck is an open source automation service with a web console, comma ...)
TODO: check
CVE-2022-31043 (Guzzle is an open source PHP HTTP client. In affected versions `Author ...)
- - guzzle <unfixed> (bug #1012821)
+ - guzzle 7.4.4-1 (bug #1012821)
NOTE: https://github.com/guzzle/guzzle/security/advisories/GHSA-w248-ffj2-4v5q
NOTE: https://github.com/guzzle/guzzle/commit/e3ff079b22820c2029d4c2a87796b6a0b8716ad8 (7.4.4)
CVE-2022-31042 (Guzzle is an open source PHP HTTP client. In affected versions the `Co ...)
- - guzzle <unfixed> (bug #1012821)
+ - guzzle 7.4.4-1 (bug #1012821)
NOTE: https://github.com/guzzle/guzzle/security/advisories/GHSA-f2wf-25xc-69c9
NOTE: https://github.com/guzzle/guzzle/commit/e3ff079b22820c2029d4c2a87796b6a0b8716ad8 (7.4.4)
CVE-2022-31041 (Open Forms is an application for creating and publishing smart forms. ...)
@@ -12301,7 +12301,7 @@ CVE-2022-29250 (GLPI is a Free Asset and IT Management Software package, that pr
CVE-2022-29249 (JavaEZ is a library that adds new functions to make Java easier. A wea ...)
NOT-FOR-US: JavaEZLib/JavaEZ
CVE-2022-29248 (Guzzle is a PHP HTTP client. Guzzle prior to versions 6.5.6 and 7.4.3 ...)
- - guzzle <unfixed> (bug #1011636)
+ - guzzle 7.4.4-1 (bug #1011636)
NOTE: https://github.com/guzzle/guzzle/security/advisories/GHSA-cwmx-hcrq-mhc3
CVE-2022-29247 (Electron is a framework for writing cross-platform desktop application ...)
TODO: check
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db97d8f59bf16f4c12c881daa4878bec50a31aca
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db97d8f59bf16f4c12c881daa4878bec50a31aca
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220616/aecd823f/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list