[Git][security-tracker-team/security-tracker][master] Add upstream commit refs for CVE-2022-36179, CVE-2022-36180
Abhijith PA (@abhijith)
abhijith at debian.org
Fri May 19 08:05:54 BST 2023
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5e4d6bf2 by Abhijith PA at 2023-05-19T12:35:28+05:30
Add upstream commit refs for CVE-2022-36179, CVE-2022-36180
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -66363,10 +66363,12 @@ CVE-2022-36180 (Fusiondirectory 1.3 is vulnerable to Cross Site Scripting (XSS)
- fusiondirectory <removed>
[bullseye] - fusiondirectory <no-dsa> (Minor issue)
NOTE: https://yoroi.company/research/cve-advisory-full-disclosure-multiple-vulnerabilities/
+ NOTE: https://github.com/fusiondirectory/fusiondirectory/commit/fadebb79b932a0260bdb8723eb23694a3ae62366 [1.3.1]
CVE-2022-36179 (Fusiondirectory 1.3 suffers from Improper Session Handling.)
- fusiondirectory <removed>
[bullseye] - fusiondirectory <no-dsa> (Minor issue)
NOTE: https://yoroi.company/research/cve-advisory-full-disclosure-multiple-vulnerabilities/
+ NOTE: https://github.com/fusiondirectory/fusiondirectory/commit/d84cf05573b52df98418adf3716daf365e8da745 [1.3.1]
CVE-2022-36178
RESERVED
CVE-2022-36177
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e4d6bf236bdb4e30e50c9830187de21e092bf5e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e4d6bf236bdb4e30e50c9830187de21e092bf5e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230519/f7464b62/attachment.htm>
More information about the debian-security-tracker-commits
mailing list