[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-23364/node-browserslist as ignored for buster
Salvatore Bonaccorso
carnil at debian.org
Thu Apr 29 19:52:35 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f70b6c8a by Salvatore Bonaccorso at 2021-04-29T20:51:48+02:00
Mark CVE-2021-23364/node-browserslist as ignored for buster
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -19727,6 +19727,7 @@ CVE-2021-23365 (The package github.com/tyktechnologies/tyk-identity-broker befor
NOT-FOR-US: tyk-identity-broker
CVE-2021-23364 (The package browserslist from 4.0.0 and before 4.16.5 are vulnerable t ...)
- node-browserslist <unfixed>
+ [buster] - node-browserslist <ignored> (Minor issue; risky backport with regression potential)
NOTE: https://github.com/browserslist/browserslist/commit/c091916910dfe0b5fd61caad96083c6709b02d98
NOTE: https://snyk.io/vuln/SNYK-JS-BROWSERSLIST-1090194
NOTE: https://github.com/browserslist/browserslist/pull/593
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f70b6c8a1742889d174aa86e42ac25c72398acb4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f70b6c8a1742889d174aa86e42ac25c72398acb4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210429/9ce5d42e/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list