[Git][security-tracker-team/security-tracker][master] new node-chart.js issue
Moritz Muehlenhoff
jmm at debian.org
Fri Nov 6 09:53:55 GMT 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
83b96922 by Moritz Muehlenhoff at 2020-11-06T10:53:35+01:00
new node-chart.js issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -49081,7 +49081,10 @@ CVE-2020-7748 (This affects the package @tsed/core before 5.65.7. This vulnerabi
CVE-2020-7747 (This affects all versions of package lightning-server. It is possible ...)
NOT-FOR-US: lightning-server nodejs module
CVE-2020-7746 (This affects the package chart.js before 2.9.4. The options parameter ...)
- TODO: check
+ - node-chart.js <unfixed>
+ [buster] - node-chart.js <no-dsa> (Minor issue)
+ NOTE: https://snyk.io/vuln/SNYK-JS-CHARTJS-1018716
+ NOTE: https://github.com/chartjs/Chart.js/pull/7920
CVE-2020-7745 (This affects the package MintegralAdSDK before 6.6.0.0. The SDK distri ...)
NOT-FOR-US: MintegralAdSDK
CVE-2020-7744 (This affects all versions of package com.mintegral.msdk:alphab. The An ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83b969223fd474ba29805f1f9ca6762d51779cb6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83b969223fd474ba29805f1f9ca6762d51779cb6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201106/554ffc18/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list