[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-23400/node-nodemailer
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jun 30 13:59:58 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
76a96cf1 by Salvatore Bonaccorso at 2021-06-30T14:59:28+02:00
Add Debian bug reference for CVE-2021-23400/node-nodemailer
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -29682,7 +29682,7 @@ CVE-2021-23402
CVE-2021-23401
RESERVED
CVE-2021-23400 (The package nodemailer before 6.6.1 are vulnerable to HTTP Header Inje ...)
- - node-nodemailer <unfixed>
+ - node-nodemailer <unfixed> (bug #990485)
NOTE: https://github.com/nodemailer/nodemailer/commit/7e02648cc8cd863f5085bad3cd09087bccf84b9f
NOTE: https://github.com/nodemailer/nodemailer/issues/1289
NOTE: https://snyk.io/vuln/SNYK-JS-NODEMAILER-1296415
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76a96cf158c25b8f5beb4a4289a17baf37d484be
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76a96cf158c25b8f5beb4a4289a17baf37d484be
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210630/320467f9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list