[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2022-29599,maven-shared-utils: fixed in unstable

Markus Koschany (@apo) apo at debian.org
Wed Jun 22 17:18:51 BST 2022 


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6b68ba7c by Markus Koschany at 2022-06-22T18:17:58+02:00
CVE-2022-29599,maven-shared-utils: fixed in unstable

- - - - -
b59483b8 by Markus Koschany at 2022-06-22T18:18:23+02:00
Claim maven-shared-utils in dla-needed.txt

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -12480,7 +12480,7 @@ CVE-2019-25059 (Artifex Ghostscript through 9.26 mishandles .completefont. NOTE:
 	NOTE: Fixed by: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=430e219ea17a2650577d70021399c4ead05869e0
 	NOTE: Issue exists because of an incomplete fix for CVE-2019-3839
 CVE-2022-29599 (In Apache Maven maven-shared-utils prior to version 3.3.3, the Command ...)
-	- maven-shared-utils <unfixed> (bug #1012314)
+	- maven-shared-utils 3.3.4-1 (bug #1012314)
 	NOTE: https://github.com/apache/maven-shared-utils/pull/40
 	NOTE: https://issues.apache.org/jira/browse/MSHARED-297
 	NOTE: https://github.com/apache/maven-shared-utils/commit/f751e614c09df8de1a080dc1153931f3f68991c9 (maven-shared-utils-3.3.1)


=====================================
data/dla-needed.txt
=====================================
@@ -167,7 +167,7 @@ mariadb-10.1
   NOTE: 20220529: Programming language: C.
   NOTE: 20220222: Can be risky. Please consider backporting mariadb-10.3. See discussion https://lists.debian.org/debian-lts/2022/02/msg00005.html and coordinate with maintainer (Anton)
 --
-maven-shared-utils
+maven-shared-utils (Markus Koschany)
   NOTE: 20220606: Programming language: Java.
 --
 mbedtls (Utkarsh)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d8ea72580431ad11ebedf8fed518f493c1332f1f...b59483b82f8f7fb31558919a33181479938831fc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d8ea72580431ad11ebedf8fed518f493c1332f1f...b59483b82f8f7fb31558919a33181479938831fc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220622/010f4a16/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list