[Git][security-tracker-team/security-tracker][master] Add CVE-2022-36944/scala
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Sep 27 06:56:34 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1727f855 by Salvatore Bonaccorso at 2022-09-27T07:55:25+02:00
Add CVE-2022-36944/scala
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11750,7 +11750,10 @@ CVE-2022-36946 (nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux ker
CVE-2022-36945 (The Remote Keyless Entry (RKE) receiving unit on certain Mazda vehicle ...)
NOT-FOR-US: Remote Keyless Entry (RKE) receiving unit on Mazda vehicles
CVE-2022-36944 (Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR ...)
- TODO: check
+ - scala <undetermined>
+ NOTE: https://github.com/scala/scala/pull/10118
+ NOTE: https://github.com/scala/scala/commit/f24c226211eb340c999d810013efbff35a49863f (v2.13.9)
+ TODO: check, check might be 2.13.x specific
CVE-2022-36797
RESERVED
CVE-2022-36794
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1727f8552d0f0ac1210831bf8c18673cdeaef4c1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1727f8552d0f0ac1210831bf8c18673cdeaef4c1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220927/5c27fbbc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list