[Git][security-tracker-team/security-tracker][master] Add fixed-by upstream commit references for CVE-2022-41678/nss

Santiago R.R. (@santiago) santiago at debian.org
Thu Oct 24 13:06:21 BST 2024



Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker


Commits:
851e8f8f by Santiago Ruano Rincón at 2024-10-24T09:06:10-03:00
Add fixed-by upstream commit references for CVE-2022-41678/nss

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -167477,6 +167477,8 @@ CVE-2022-41678 (Once an user is authenticated on Jolokia, he can potentially tri
 	- activemq 5.17.6+dfsg-1 (unimportant)
 	NOTE: https://lists.apache.org/thread/7g17kwbtjl011mm4tr8bn1vnoq9wh4sl
 	NOTE: https://activemq.apache.org/security-advisories.data/CVE-2022-41678-announcement.txt
+	NOTE: Fixed by: https://github.com/apache/activemq/commit/bf65929fd (activemq-5.17.x)
+	NOTE: Fixed by: https://github.com/apache/activemq/commit/5c8d457d9 (activemq-5.16.x)
 CVE-2022-41677 (An information disclosure vulnerability was discovered in Bosch IP cam ...)
 	NOT-FOR-US: Bosch
 CVE-2022-41658 (Insecure inherited permissions in the Intel(R) VTune(TM) Profiler soft ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/851e8f8f2cf78391b8c52050fe9629b6ae37e726

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/851e8f8f2cf78391b8c52050fe9629b6ae37e726
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241024/49147d4b/attachment.htm>


More information about the debian-security-tracker-commits mailing list