[Git][security-tracker-team/security-tracker][master] jodd removed from sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Oct 13 10:28:54 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
63b6a7ce by Moritz Muehlenhoff at 2024-10-13T11:28:18+02:00
jodd removed from sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -197340,7 +197340,7 @@ CVE-2022-29633 (An access control issue in Linglong v1.0 allows attackers to acc
CVE-2022-29632 (An arbitrary file upload vulnerability in the component /course/api/up ...)
NOT-FOR-US: Roncoo Education
CVE-2022-29631 (Jodd HTTP v6.0.9 was discovered to contain multiple CLRF injection vul ...)
- - jodd <unfixed> (bug #1013270)
+ - jodd <removed> (bug #1013270)
[buster] - jodd <no-dsa> (Minor issue)
NOTE: https://github.com/oblac/jodd-http/issues/9
NOTE: Fixed by: https://github.com/oblac/jodd-http/commit/e50f573c8f6a39212ade68c6eb1256b2889fa8a6 (v6.2.1)
@@ -340023,7 +340023,7 @@ CVE-2019-20804 (Gila CMS before 1.11.6 allows CSRF with resultant XSS via the ad
CVE-2019-20803 (Gila CMS before 1.11.6 has reflected XSS via the admin/content/postcat ...)
NOT-FOR-US: Gila CMS
CVE-2018-21234 (Jodd before 5.0.4 performs Deserialization of Untrusted JSON Data when ...)
- - jodd <unfixed> (bug #961298)
+ - jodd <removed> (bug #961298)
[buster] - jodd <ignored> (Minor issue; upstream fix needs changes in rdeps and none present in Buster)
NOTE: https://github.com/oblac/jodd/commit/9bffc3913aeb8472c11bb543243004b4b4376f16
NOTE: https://github.com/oblac/jodd/issues/628
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/63b6a7cec3404e7239b7f3a083e0ce253ede482d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/63b6a7cec3404e7239b7f3a083e0ce253ede482d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241013/d39a3a5d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list