[Git][security-tracker-team/security-tracker][master] Add CVE-2023-40167/jetty9
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Sep 17 09:59:43 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
63ca9038 by Salvatore Bonaccorso at 2023-09-17T10:59:09+02:00
Add CVE-2023-40167/jetty9
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -192,7 +192,8 @@ CVE-2023-40868 (Cross Site Request Forgery vulnerability in mooSocial MooSocial
CVE-2023-40588 (Discourse is an open-source discussion platform. Prior to version 3.1. ...)
NOT-FOR-US: Discourse
CVE-2023-40167 (Jetty is a Java based web server and servlet engine. Prior to versions ...)
- TODO: check
+ - jetty9 <unfixed>
+ NOTE: https://github.com/eclipse/jetty.project/security/advisories/GHSA-hmr7-m48g-48f6
CVE-2023-40019 (FreeSWITCH is a Software Defined Telecom Stack enabling the digital tr ...)
- freeswitch <itp> (bug #389591)
CVE-2023-40018 (FreeSWITCH is a Software Defined Telecom Stack enabling the digital tr ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/63ca90385cd8d57872fb06ef5f40c59b00ee519b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/63ca90385cd8d57872fb06ef5f40c59b00ee519b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230917/8519d187/attachment.htm>
More information about the debian-security-tracker-commits
mailing list