[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for erlang issue
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Oct 11 21:51:54 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4d7eafe8 by Salvatore Bonaccorso at 2022-10-11T22:51:02+02:00
Track fixed version via unstable for erlang issue
This follows from the upstream announce on the fixed verison for the
24.x branch. We still need to isolate the fixes to potentially backport
to older versions if needed.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14640,7 +14640,7 @@ CVE-2022-37028 (ISAMS 22.2.3.2 is prone to stored Cross-site Scripting (XSS) att
CVE-2022-37027 (Ahsay AhsayCBS 9.1.4.0 allows an authenticated system user to inject a ...)
NOT-FOR-US: Ahsay AhsayCBS
CVE-2022-37026 (In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before ...)
- - erlang <unfixed>
+ - erlang 1:24.3.4.5+dfsg-1
NOTE: https://erlangforums.com/t/otp-25-1-released/1854
CVE-2022-37025 (An improper privilege management vulnerability in McAfee Security Scan ...)
NOT-FOR-US: McAfee
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d7eafe860fc8cffa6b9f66f31549317ed74befb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d7eafe860fc8cffa6b9f66f31549317ed74befb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221011/cb281530/attachment.htm>
More information about the debian-security-tracker-commits
mailing list