[Git][security-tracker-team/security-tracker][master] new libspring-java issue

Mon Apr 17 16:56:01 BST 2023


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1c2b0037 by Moritz Muehlenhoff at 2023-04-17T17:55:33+02:00
new libspring-java issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -38443,7 +38443,9 @@ CVE-2023-20865
 CVE-2023-20864
 	RESERVED
 CVE-2023-20863 (In spring framework versions prior to 5.2.24 release+ ,5.3.27+ and 6.0 ...)
-	TODO: check
+	- libspring-java <unfixed> (unimportant)
+	NOTE: https://spring.io/security/cve-2023-20863
+	NOTE: Only supported for building applications shipped in Debian, see README.Debian.security
 CVE-2023-20862
 	RESERVED
 CVE-2023-20861 (In Spring Framework versions 6.0.0 - 6.0.6, 5.3.0 - 5.3.25, 5.2.0.RELE ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c2b00371e20666534ee4b913fae74a807bfd506

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c2b00371e20666534ee4b913fae74a807bfd506
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230417/9d1525ee/attachment-0001.htm>
