[Git][security-tracker-team/security-tracker][master] Track fixed version for redis issues via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jan 22 19:27:31 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
774ae6d1 by Salvatore Bonaccorso at 2023-01-22T20:26:55+01:00
Track fixed version for redis issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5117,7 +5117,7 @@ CVE-2023-22461 (The `sanitize-svg` package, a small SVG sanitizer to prevent cro
 CVE-2023-22460 (go-ipld-prime is an implementation of the InterPlanetary Linked Data ( ...)
 	NOT-FOR-US: go-ipld-prime
 CVE-2023-22458 (Redis is an in-memory database that persists on disk. Authenticated us ...)
-	- redis <unfixed> (bug #1029363)
+	- redis 5:7.0.8-1 (bug #1029363)
 	[bullseye] - redis <not-affected> (Vulnerable code introduced later)
 	[buster] - redis <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/redis/redis/security/advisories/GHSA-r8w2-2m53-gprj
@@ -43167,7 +43167,7 @@ CVE-2022-35978 (Minetest is a free open-source voxel game engine with easy moddi
 	NOTE: https://github.com/minetest/minetest/security/advisories/GHSA-663q-pcjw-27cc
 	NOTE: https://github.com/minetest/minetest/commit/da71e86633d0b27cd02d7aac9fdac625d141ca13 (5.6.0)
 CVE-2022-35977 (Redis is an in-memory database that persists on disk. Authenticated us ...)
-	- redis <unfixed>
+	- redis 5:7.0.8-1
 	NOTE: https://github.com/redis/redis/commit/6c25c6b7da116e110e89a5db45eeae743879e7ea (7.0.8)
 CVE-2022-35976 (The GitOps Tools Extension for VSCode relies on kubeconfigs in order t ...)
 	NOT-FOR-US: GitOps Tools Extension for VSCode



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/774ae6d1f26e6d9bca3857b41be97a5ad5ae2d74

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/774ae6d1f26e6d9bca3857b41be97a5ad5ae2d74
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230122/e61044b0/attachment.htm>


More information about the debian-security-tracker-commits mailing list