[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-29060/node-color-string via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Jun 27 22:02:33 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0f580727 by Salvatore Bonaccorso at 2021-06-27T23:01:56+02:00
Track fixed version for CVE-2021-29060/node-color-string via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15289,7 +15289,7 @@ CVE-2021-29062
CVE-2021-29061 (A Regular Expression Denial of Service (ReDOS) vulnerability was disco ...)
NOT-FOR-US: Vfsjfilechooser2
CVE-2021-29060 (A Regular Expression Denial of Service (ReDOS) vulnerability was disco ...)
- - node-color-string <unfixed>
+ - node-color-string 1.5.4-2
NOTE: https://github.com/yetingli/PoCs/blob/main/CVE-2021-29060/Color-String.md
NOTE: https://github.com/Qix-/color-string/commit/0789e21284c33d89ebc4ab4ca6f759b9375ac9d3
CVE-2021-29059 (A vulnerability was discovered in IS-SVG version 4.3.1 and below where ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f580727a5be068855791b9f6133765cb420962d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f580727a5be068855791b9f6133765cb420962d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210627/5dcf8bf7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list