[Git][security-tracker-team/security-tracker][master] new symfony issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Feb 2 16:27:45 GMT 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c7894b9f by Moritz Muehlenhoff at 2023-02-02T17:27:17+01:00
new symfony issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -77631,10 +77631,12 @@ CVE-2022-24897 (APIs to evaluate content with Velocity is a package for APIs to
NOT-FOR-US: Xwiki
CVE-2022-24896 (Tuleap is a Free & Open Source Suite to manage software developmen ...)
NOT-FOR-US: Tuleap
-CVE-2022-24895
+CVE-2022-24895 [Remove CSRF tokens from storage on successful login]
RESERVED
-CVE-2022-24894
+ - symfony 5.4.20+dfsg-1
+CVE-2022-24894 [Remove private headers before storing responses with HttpCache]
RESERVED
+ - symfony 5.4.20+dfsg-1
CVE-2022-24893 (ESP-IDF is the official development framework for Espressif SoCs. In E ...)
NOT-FOR-US: ESP-IDF
CVE-2022-24892 (Shopware is an open source e-commerce software platform. Starting with ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7894b9f9f7e73d570ae99f473558300db002248
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7894b9f9f7e73d570ae99f473558300db002248
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230202/eedf6f37/attachment.htm>
More information about the debian-security-tracker-commits
mailing list