[Git][security-tracker-team/security-tracker][master] two rejected entries

Moritz Muehlenhoff jmm at debian.org
Mon Jul 2 16:27:28 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5434b4c5 by Moritz Muehlenhoff at 2018-07-02T17:27:06+02:00
two rejected entries

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -39088,26 +39088,8 @@ CVE-2017-16013 (hapi is a web and services application framework. When hapi >
 	TODO: check
 CVE-2017-16012
 	REJECTED
-	- jquery 3.1.1-1
-	- node-jquery <unfixed>
-	NOTE: https://github.com/jquery/jquery/issues/2432
-	NOTE: https://github.com/jquery/jquery/commit/b078a62013782c7424a4a61a240c23c4c0b42614
-	NOTE: https://nodesecurity.io/advisories/328
-	TODO: check, why are there two jquery source packages once src:jquery and once src:node-jquery?
 CVE-2017-16011
 	REJECTED
-	- jquery 1.11.3+dfsg-1
-	[jessie] - jquery <ignored> (Too intrusive to backport)
-	NOTE: https://bugs.jquery.com/ticket/11290
-	NOTE: https://bugs.jquery.com/ticket/12531
-	NOTE: https://bugs.jquery.com/ticket/6429
-	NOTE: https://bugs.jquery.com/ticket/9521
-	NOTE: https://nodesecurity.io/advisories/329
-	NOTE: https://github.com/jquery/jquery/commit/05531fc4080ae24070930d15ae0cea7ae056457d
-	NOTE: 1.9 release introduced backwards incompatible changes to fix
-	NOTE: this, so may be too invasive to fix
-	NOTE: Overlapping (or potentially) duplicate of CVE-2012-6708, but explicitly
-	NOTE: two CVEs were assigned.
 CVE-2017-16010 (i18next is a language translation framework. When using the .init ...)
 	- libjs-i18next <unfixed> (unimportant)
 	NOTE: https://github.com/i18next/i18next/pull/826



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5434b4c5c777c78572c593a9ddd31471e343ab5f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5434b4c5c777c78572c593a9ddd31471e343ab5f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180702/acb1bcd3/attachment.html>

More information about the debian-security-tracker-commits mailing list