[Git][security-tracker-team/security-tracker][master] Sync upstream tag for commit for CVE-2022-0265

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3bea9c34 by Salvatore Bonaccorso at 2022-03-04T20:39:40+01:00
Sync upstream tag for commit for CVE-2022-0265

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9349,7 +9349,7 @@ CVE-2022-0266 (Authorization Bypass Through User-Controlled Key in Packagist rem
 	NOT-FOR-US: livehelperchat
 CVE-2022-0265 (Improper Restriction of XML External Entity Reference in GitHub reposi ...)
 	- hazelcast <itp> (bug #745640)
-	NOTE: https://github.com/hazelcast/hazelcast/commit/4d6b666cd0291abd618c3b95cdbb51aa4208e748 (v5.1)
+	NOTE: https://github.com/hazelcast/hazelcast/commit/4d6b666cd0291abd618c3b95cdbb51aa4208e748 (v5.1-DR7)
 	NOTE: https://huntr.dev/bounties/d63972a2-b910-480a-a86b-d1f75d24d563/
 CVE-2022-23307 (CVE-2020-9493 identified a deserialization issue that was present in A ...)
 	{DLA-2905-1}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3bea9c34355103757cb2b4f303050b7e476c4155

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3bea9c34355103757cb2b4f303050b7e476c4155
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220304/0670ce16/attachment.htm>