[Git][security-tracker-team/security-tracker][master] Add CVE-2022-41678/activemq
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Dec 3 09:53:54 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2cafc90e by Salvatore Bonaccorso at 2023-12-03T10:50:43+01:00
Add CVE-2022-41678/activemq
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -80625,7 +80625,9 @@ CVE-2022-41680 (Forma LMS on its 3.1.0 version and earlier is vulnerable to a SQ
CVE-2022-41679 (Forma LMS version 3.1.0 and earlier are affected by an Cross-Site scri ...)
NOT-FOR-US: Forma LMS
CVE-2022-41678 (Once an user is authenticated on Jolokia, he can potentially trigger a ...)
- TODO: check
+ - activemq 5.17.6+dfsg-1
+ NOTE: https://lists.apache.org/thread/7g17kwbtjl011mm4tr8bn1vnoq9wh4sl
+ NOTE: https://activemq.apache.org/security-advisories.data/CVE-2022-41678-announcement.txt
CVE-2022-41677
RESERVED
CVE-2022-41658 (Insecure inherited permissions in the Intel(R) VTune(TM) Profiler soft ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2cafc90ecd0513a7e430110f8d0cdd49f96158c2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2cafc90ecd0513a7e430110f8d0cdd49f96158c2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231203/6ef6d7dd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list