[Git][security-tracker-team/security-tracker][master] Fix CVE-2023-28709,tomcat10. (hopefully)
Markus Koschany (@apo)
apo at debian.org
Sun Jun 18 16:59:51 BST 2023
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
71a893a0 by Markus Koschany at 2023-06-18T17:59:20+02:00
Fix CVE-2023-28709,tomcat10. (hopefully)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12080,7 +12080,7 @@ CVE-2023-1552 (ToolboxST prior to version 7.10 is affected by a deserialization
CVE-2023-28709 (The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2 ...)
[experimental] - tomcat10 10.1.8-1
- tomcat10 10.1.10-1
- -[bookworm] - tomcat10 <postponed> (Fix when more important issues arise)
+ [bookworm] - tomcat10 <postponed> (Fix when more important issues arise)
- tomcat9 <not-affected> (Incomplete fix for CVE-2023-24998 not applied)
NOTE: https://github.com/apache/tomcat/commit/ba848da71c523d94950d3c53c19ea155189df9dc (10.1.8)
NOTE: https://github.com/apache/tomcat/commit/fbd81421629afe8b8a3922d59020cde81caea861 (9.0.74)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71a893a097fef5b98bf168794849232c8086c54c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71a893a097fef5b98bf168794849232c8086c54c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230618/8eb462ca/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list