Henri Salo pushed to branch master at Debian Security Tracker / security-tracker
Commits: 6d9ac5fd by Henri Salo at 2022-06-14T12:10:09+03:00 CVE-2022-25167 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -22459,8 +22459,10 @@ CVE-2022-25169 (The BPG parser in versions of Apache Tika before 1.28.2 and 2.4. NOTE: https://www.openwall.com/lists/oss-security/2022/05/16/4 CVE-2022-25168 RESERVED -CVE-2022-25167 +CVE-2022-25167 [Apache Flume JMSSource does not protect from malicious JNDI urls] RESERVED + TODO: check + NOTE: https://www.openwall.com/lists/oss-security/2022/06/14/1 CVE-2022-24435 (Cross-site scripting vulnerability in phpUploader v1.2 and earlier all ...) NOT-FOR-US: phpUploader CVE-2022-23986 (SQL injection vulnerability in the phpUploader v1.2 and earlier allows ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d9ac5fddca8a4cf72f076d597e186618c59c507 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d9ac5fddca8a4cf72f076d597e186618c59c507 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits