[Git][security-tracker-team/security-tracker][master] CVE-2023-41900,jetty9: Buster is not affected

Markus Koschany (@apo) apo at debian.org
Wed Sep 27 20:23:24 BST 2023



Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
66047330 by Markus Koschany at 2023-09-27T21:22:25+02:00
CVE-2023-41900,jetty9: Buster is not affected

The vulnerable code was introduced in version 9.4.21

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1288,6 +1288,7 @@ CVE-2023-41901
 	REJECTED
 CVE-2023-41900 (Jetty is a Java based web server and servlet engine. Versions 9.4.21 t ...)
 	- jetty9 9.4.52-1
+	[buster] - jetty9 <not-affected> (The vulnerable code was introduced in 9.4.21)
 	NOTE: https://github.com/eclipse/jetty.project/security/advisories/GHSA-pwh8-58vv-vw48
 	NOTE: https://github.com/eclipse/jetty.project/pull/9528 (10.0.16, 11.0.16)
 	NOTE: https://github.com/eclipse/jetty.project/pull/9660 (9.4.52)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/660473300f24e8e35082f7ffa6948e903c02fe09

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/660473300f24e8e35082f7ffa6948e903c02fe09
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230927/702c29a1/attachment.htm>


More information about the debian-security-tracker-commits mailing list