[Git][security-tracker-team/security-tracker][master] one more burp fix in sid

Mon Oct 28 17:03:09 GMT 2024


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3a965ba7 by Moritz Muehlenhoff at 2024-10-28T18:01:51+01:00
one more burp fix in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -494367,7 +494367,7 @@ CVE-2017-16516 (In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is
 	- yajl 2.1.0-4 (bug #1040036)
 	[bookworm] - yajl 2.1.0-3+deb12u2
 	[bullseye] - yajl 2.1.0-3+deb11u2
-	- burp <unfixed> (bug #1040146)
+	- burp 3.1.4-2 (bug #1040146)
 	[bookworm] - burp <no-dsa> (Minor issue)
 	[bullseye] - burp <no-dsa> (Minor issue)
 	- epics-base <unfixed> (bug #1040159)
@@ -494380,6 +494380,7 @@ CVE-2017-16516 (In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is
 	NOTE: xqilla's embedded yajl is ancient (around 0.2.2), not having the vulnerable code
 	NOTE: https://github.com/brianmario/yajl-ruby/issues/176
 	NOTE: https://github.com/brianmario/yajl-ruby/commit/a8ca8f476655adaa187eedc60bdc770fff3c51ce
+	NOTE: burp fix: https://github.com/grke/burp/commit/5ce44cdf7018767b53a4c5466c62e4dc99d0bc93
 CVE-2017-16515
 	RESERVED
 CVE-2017-16514 (Multiple persistent stored Cross-Site-Scripting (XSS) vulnerabilities  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a965ba7a88a58702248bb9a683a44cabd0b3392

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a965ba7a88a58702248bb9a683a44cabd0b3392
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241028/7fb6d75e/attachment.htm>
