[Git][security-tracker-team/security-tracker][master] Add CVE-2023-50572/jline3
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Dec 29 20:42:38 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2ca1c3f9 by Salvatore Bonaccorso at 2023-12-29T21:42:07+01:00
Add CVE-2023-50572/jline3
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -113,7 +113,10 @@ CVE-2023-50878 (Cross-Site Request Forgery (CSRF) vulnerability in InspireUI MSt
CVE-2023-50837 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
NOT-FOR-US: WordPress plugin
CVE-2023-50572 (An issue in the component GroovyEngine.execute of jline-groovy v3.24.1 ...)
- TODO: check
+ - jline3 <unfixed>
+ NOTE: https://github.com/jline/jline3/issues/909
+ NOTE: https://github.com/jline/jline3/commit/f3c60a3e6255e8e0c20d5043a4fe248446f292bb (jline-parent-3.25.0)
+ TODO: check if jline 3.x specific or affects as well src:jline2, src:jline
CVE-2023-50571 (easy-rules-mvel v4.1.0 was discovered to contain a remote code executi ...)
TODO: check
CVE-2023-50570 (An issue in the component IPAddressBitsDivision of IPAddress v5.1.0 le ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ca1c3f9ff5dec79238903277794b132bfb8a09f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ca1c3f9ff5dec79238903277794b132bfb8a09f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231229/9e1a2d29/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list