diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2020-05-22 22:44:16 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-05-22 22:44:16 +0200 |
| commit | 714f3e4291f8c8dcb48776dc577c8ede15bbaaa9 (patch) | |
| tree | 8bd2f6be613f4748e1362de0639318ce626eb5ac | |
| parent | 9c44bb6cb3c6aecc4f0a398d9fa5a91b74c3f276 (diff) | |
Add CVE-2018-21234/jodd
| -rw-r--r-- | data/CVE/list.2018 | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list.2018 b/data/CVE/list.2018 index 7cba93d1cc..dbeb455d50 100644 --- a/data/CVE/list.2018 +++ b/data/CVE/list.2018 @@ -1,5 +1,7 @@ CVE-2018-21234 (Jodd before 5.0.4 performs Deserialization of Untrusted JSON Data when ...) - TODO: check + - jodd <unfixed> + NOTE: https://github.com/oblac/jodd/commit/9bffc3913aeb8472c11bb543243004b4b4376f16 + NOTE: https://github.com/oblac/jodd/issues/628 CVE-2018-21233 (TensorFlow before 1.7.0 has an integer overflow that causes an out-of- ...) - tensorflow <itp> (bug #804612) CVE-2018-21232 (re2c before 2.0 has uncontrolled recursion that causes stack consumpti ...) |