Bug#988728: CVE-2020-17523 CVE-2020-17510 CVE-2020-11989
Moritz Muehlenhoff
jmm at debian.org
Tue May 18 19:35:01 BST 2021
Source: shiro
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team <team at security.debian.org>
CVE-2020-17523:
https://www.openwall.com/lists/oss-security/2021/02/01/3
https://issues.apache.org/jira/browse/SHIRO-797
CVE-2020-17510:
https://www.openwall.com/lists/oss-security/2020/11/04/7
https://lists.apache.org/thread.html/rc2cff2538b683d480426393eecf1ce8dd80e052fbef49303b4f47171%40%3Cdev.shiro.apache.org%3E
https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12349284&styleName=Text&projectId=12310950
CVE-2020-11989:
https://www.openwall.com/lists/oss-security/2020/06/22/1
https://github.com/apache/shiro/pull/211
https://issues.apache.org/jira/browse/SHIRO-753
Cheers,
Moritz
More information about the pkg-java-maintainers
mailing list