[Git][security-tracker-team/security-tracker][master] Update CVE-2022-24795 information

[Adrian Bunk (@bunk)]

Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker


Commits:
abd9a987 by Adrian Bunk at 2022-10-16T05:13:48+03:00
Update CVE-2022-24795 information

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -49653,12 +49653,13 @@ CVE-2022-24797 (Pomerium is an identity-aware access proxy. In distributed servi
 CVE-2022-24796 (RaspberryMatic is a free and open-source operating system for running  ...)
 	NOT-FOR-US: RaspberryMatic
 CVE-2022-24795 (yajl-ruby is a C binding to the YAJL JSON parsing and generation libra ...)
-	- ruby-yajl <unfixed> (bug #1014803)
+	- ruby-yajl 1.4.3-1 (bug #1014803)
 	[bullseye] - ruby-yajl <no-dsa> (Minor issue)
 	[buster] - ruby-yajl <no-dsa> (Minor issue)
 	[stretch] - ruby-yajl <no-dsa> (Minor issue)
 	NOTE: https://github.com/brianmario/yajl-ruby/security/advisories/GHSA-jj47-x69x-mxrm
 	NOTE: https://github.com/brianmario/yajl-ruby/commit/7168bd79b888900aa94523301126f968a93eb3a6
+	NOTE: https://github.com/brianmario/yajl-ruby/commit/e8de283a6d64f0902740fd09e858fc3d7d803161
 CVE-2022-24794 (Express OpenID Connect is an Express JS middleware implementing sign o ...)
 	NOT-FOR-US: Express OpenID Connect
 CVE-2022-24793 (PJSIP is a free and open source multimedia communication library writt ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abd9a987492828f7f6ca01807ca28f4c708ae84b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abd9a987492828f7f6ca01807ca28f4c708ae84b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221016/0966d489/attachment.htm>