[Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2022-30126/tika

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon May 16 20:16:41 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
41ed1660 by Salvatore Bonaccorso at 2022-05-16T21:15:53+02:00
Add CVE-2022-30126/tika

- - - - -
bf462002 by Salvatore Bonaccorso at 2022-05-16T21:15:54+02:00
Add CVE-2022-25169/tika

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2036,8 +2036,10 @@ CVE-2022-1555 (DOM XSS in microweber ver 1.2.15 in GitHub repository microweber/
 	NOT-FOR-US: microweber
 CVE-2022-1554 (Path Traversal due to `send_file` call in GitHub repository clinical-g ...)
 	NOT-FOR-US: clinical-genomics/scout
-CVE-2022-30126
+CVE-2022-30126 [Regular Expression Denial of Service]
 	RESERVED
+	- tika <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2022/05/16/3
 CVE-2022-1553
 	RESERVED
 CVE-2022-1552
@@ -15874,8 +15876,10 @@ CVE-2022-25209 (Jenkins Chef Sinatra Plugin 1.20 and earlier does not configure
 	NOT-FOR-US: Jenkins Chef Sinatra Plugin
 CVE-2022-25175 (Jenkins Pipeline: Multibranch Plugin 706.vd43c65dec013 and earlier use ...)
 	NOT-FOR-US: Jenkins Pipeline: Multibranch Plugin
-CVE-2022-25169
+CVE-2022-25169 [BPGParser Memory Usage DoS]
 	RESERVED
+	- tika <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2022/05/16/4
 CVE-2022-25168
 	RESERVED
 CVE-2022-25167



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2b06025627126a860af328efd82b34c9092695b2...bf4620026d85df74e5c3c1a474b01abafa2b06e1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2b06025627126a860af328efd82b34c9092695b2...bf4620026d85df74e5c3c1a474b01abafa2b06e1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220516/20759fc3/attachment.htm>

More information about the debian-security-tracker-commits mailing list