[Git][security-tracker-team/security-tracker][master] Reference upstream report for CVE-2023-5072/libjettison-java
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Dec 15 13:22:41 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
60b02e76 by Salvatore Bonaccorso at 2024-12-15T14:22:08+01:00
Reference upstream report for CVE-2023-5072/libjettison-java
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -110302,6 +110302,7 @@ CVE-2023-5072 (Denial of Service in JSON-Java versions up to and including 2023
NOTE: https://github.com/stleary/JSON-java/commit/16967f322ee65c301b48fa79bb681e38896fd212 (20231013)
NOTE: https://github.com/stleary/JSON-java/commit/661114c50dcfd53bb041aab66f14bb91e0a87c8a (20231013)
NOTE: https://github.com/kordamp/json-lib/issues/58
+ NOTE: https://github.com/jettison-json/jettison/issues/86
CVE-2023-5046 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
NOT-FOR-US: Procost
CVE-2023-5045 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60b02e761b33895e2a60c1e5af3aebb0965bb180
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60b02e761b33895e2a60c1e5af3aebb0965bb180
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241215/c40f6909/attachment.htm>
More information about the debian-security-tracker-commits
mailing list