[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2022-41853,hsqldb: fixed in unstable

Sun, 04 Dec 2022 13:19:07 -0800 


Markus Koschany pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
5a315e62 by Markus Koschany at 2022-12-04T21:57:51+01:00
CVE-2022-41853,hsqldb: fixed in unstable

- - - - -
cafb4773 by Markus Koschany at 2022-12-04T22:18:30+01:00
Update firmware-nonfree in dla-needed.txt

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -15388,7 +15388,7 @@ CVE-2022-41854 (Those using Snakeyaml to parse 
untrusted YAML files may be vulne
        NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50355
        TODO: check details
 CVE-2022-41853 (Those using java.sql.Statement or java.sql.PreparedStatement 
in hsqldb ...)
-       - hsqldb <unfixed> (bug #1023573)
+       - hsqldb 2.7.1-1 (bug #1023573)
        NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50212#c7
        NOTE: 
http://hsqldb.org/doc/2.0/guide/sqlroutines-chapt.html#src_jrt_access_control
        NOTE: https://sourceforge.net/p/hsqldb/svn/6614/


=====================================
data/dla-needed.txt
=====================================
@@ -39,6 +39,7 @@ exiv2
 --
 firmware-nonfree (Markus Koschany)
   NOTE: 20220906: Consider to check the severity of the issues again and judge 
whether a correction is worth it.
+  NOTE: 20221204: Coming soon in the first week of December. (apo)
 --
 fusiondirectory
   NOTE: 20221203: Programming language: PHP.



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9987a9ec494064e1f356fe9548050e3a9d75ffd3...cafb47737e7036ec9be77a2b0db8f69f413f725e

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9987a9ec494064e1f356fe9548050e3a9d75ffd3...cafb47737e7036ec9be77a2b0db8f69f413f725e
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to