[Git][security-tracker-team/security-tracker][master] Track fixing commit for php-horde-mime-viewer issue

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
49bb1a8c by Salvatore Bonaccorso at 2022-03-10T20:37:42+01:00
Track fixing commit for php-horde-mime-viewer issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2773,7 +2773,8 @@ CVE-2022-0731 (Improper Access Control (IDOR) in GitHub repository dolibarr/doli
 CVE-2022-XXXX [Account Takeover via Email of OpenOffice file containing XSS exploit]
 	- php-horde-mime-viewer 2.2.4+debian0-1
 	NOTE: https://blog.sonarsource.com/horde-webmail-account-takeover-via-email/
-	NOTE: Introduced: https://github.com/horde/Mime_Viewer/commit/325a7ae2663dd9c50e85fe515033454669f16f28
+	NOTE: Introduced by: https://github.com/horde/Mime_Viewer/commit/325a7ae2663dd9c50e85fe515033454669f16f28
+	NOTE: Fixed by: https://github.com/horde/Mime_Viewer/commit/02b46cec1a7e8f1a6835b628850cd56b85963bb5 (2.2.4)
 CVE-2022-25762
 	RESERVED
 CVE-2022-25757



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49bb1a8ce9e7dd5c3da7b7b1836c5f074bd1dec6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49bb1a8ce9e7dd5c3da7b7b1836c5f074bd1dec6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220310/9c89c957/attachment.htm>