[Git][security-tracker-team/security-tracker][master] CVE-2022-41853,hsqldb: Link to possible fixing commit
Markus Koschany (@apo)
apo at debian.org
Mon Oct 31 12:37:10 GMT 2022
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fabc7c5a by Markus Koschany at 2022-10-31T13:36:30+01:00
CVE-2022-41853,hsqldb: Link to possible fixing commit
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8071,6 +8071,7 @@ CVE-2022-41853 (Those using java.sql.Statement or java.sql.PreparedStatement in
- hsqldb <unfixed>
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50212#c7
NOTE: http://hsqldb.org/doc/2.0/guide/sqlroutines-chapt.html#src_jrt_access_control
+ NOTE: https://sourceforge.net/p/hsqldb/svn/6614/
CVE-2022-41852 (Those using JXPath to interpret untrusted XPath expressions may be vul ...)
- libcommons-jxpath-java <unfixed>
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47133
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fabc7c5aba000e98ba161e2792dbd4dd90a0a54a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fabc7c5aba000e98ba161e2792dbd4dd90a0a54a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221031/96b9870c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list