[Git][security-tracker-team/security-tracker][master] Reference upstream commits for CVE-2024-7885/undertow
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 25 20:02:08 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
26aff56e by Salvatore Bonaccorso at 2024-12-25T21:01:18+01:00
Reference upstream commits for CVE-2024-7885/undertow
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -33481,6 +33481,8 @@ CVE-2023-4024 (The Radio Player plugin for WordPress is vulnerable to unauthoriz
CVE-2024-7885 (A vulnerability was found in Undertow where the ProxyProtocolReadListe ...)
- undertow <unfixed> (bug #1082854)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2305290
+ NOTE: Fixed by: https://github.com/undertow-io/undertow/commit/ce5182c37376982ef0abee34fce0d8c0aab0fab8 (2.2.36.Final)
+ NOTE: Fixed by: https://github.com/undertow-io/undertow/commit/80c125e09068ac52ed0a9acde266ef12f8ed7ae1 (2.3.17.Final)
CVE-2024-7646 (A security issue was discovered in ingress-nginx where an actor with p ...)
NOT-FOR-US: Kubernetes ingress-nginx
CVE-2024-7147 (The JetBlocks for Elementor plugin for WordPress is vulnerable to Stor ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/26aff56e12df1f1fba4ec01396f6d9ca415a3f48
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/26aff56e12df1f1fba4ec01396f6d9ca415a3f48
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241225/9ec78059/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list