[Git][security-tracker-team/security-tracker][master] "new" openjdk-11 issue

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon Sep 4 11:34:19 BST 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bc8271f9 by Moritz Muehlenhoff at 2023-09-04T12:33:42+02:00
"new" openjdk-11 issue

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -69245,7 +69245,10 @@ CVE-2022-40435 (Employee Performance Evaluation System v1.0 was discovered to co
 CVE-2022-40434 (Softr v2.0 was discovered to be vulnerable to HTML injection via the N ...)
 	NOT-FOR-US: Softr
 CVE-2022-40433 (An issue was discovered in function ciMethodBlocks::make_block_at in O ...)
-	TODO: check
+	{DSA-5331-1}
+	- openjdk-11 11.0.17+8-1
+	NOTE: https://github.com/openjdk/jdk11u-dev/commit/fb76f0e7beb0e79eabf63399fc09923a0b3a04d2 (jdk-11.0.17-ga)
+	NOTE: https://bugs.openjdk.org/browse/JDK-8283441
 CVE-2022-40432 (The d8s-strings for python, as distributed on PyPI, included a potenti ...)
 	NOT-FOR-US: d8s-strings for python
 CVE-2022-40431 (The d8s-pdfs for python, as distributed on PyPI, included a potential  ...)


=====================================
data/DSA/list
=====================================
@@ -516,7 +516,7 @@
 	{CVE-2022-23521 CVE-2022-24765 CVE-2022-29187 CVE-2022-39253 CVE-2022-39260 CVE-2022-41903}
 	[bullseye] - git 1:2.30.2-1+deb11u1
 [28 Jan 2023] DSA-5331-1 openjdk-11 - security update
-	{CVE-2022-21619 CVE-2022-21624 CVE-2022-21626 CVE-2022-21628 CVE-2022-39399 CVE-2023-21835 CVE-2023-21843}
+	{CVE-2022-21619 CVE-2022-21624 CVE-2022-21626 CVE-2022-21628 CVE-2022-39399 CVE-2023-21835 CVE-2023-21843 CVE-2022-40433}
 	[bullseye] - openjdk-11 11.0.18+10-1~deb11u1
 [27 Jan 2023] DSA-5330-1 curl - security update
 	{CVE-2022-32221 CVE-2022-43552}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc8271f92cf3e8042824324b7f9e2084024bb87b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc8271f92cf3e8042824324b7f9e2084024bb87b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230904/0d06e407/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list