[Git][security-tracker-team/security-tracker][master] CVE-2022-31008 remove comment

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2f686fce by Salvatore Bonaccorso at 2022-11-03T06:28:57+01:00
CVE-2022-31008 remove comment

CVE is specific to the respective plugins with which have the
obfuscation functionality implemented.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -37691,8 +37691,6 @@ CVE-2022-31009 (wire-ios is an iOS client for the Wire secure messaging applicat
 CVE-2022-31008 (RabbitMQ is a multi-protocol messaging and streaming broker. In affect ...)
 	- rabbitmq-server 3.10.8-1
 	[buster] - rabbitmq-server <not-affected> (Vulnerable code introduced later)
-	NOTE: Buster do not have any log obfuscation code meaning that the issue described is worse. On the other
-	NOTE: hand the severity of that issue is minor so no additional CVE should be needed.
 	NOTE: https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-v9gv-xp36-jgj8
 	NOTE: https://github.com/rabbitmq/rabbitmq-server/pull/4841
 	NOTE: obfuscation introduced in (built-in) Shovel plugin in: https://github.com/rabbitmq/rabbitmq-server/commit/6dbdc991c3111aa4ffa12a150b1402cf5c5e798e (v3.10.0-beta.2)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2f686fce52118816cd97ea2c3dafb27e60087417

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2f686fce52118816cd97ea2c3dafb27e60087417
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221103/2ee8a188/attachment.htm>