[Git][security-tracker-team/security-tracker][master] Add CVE-2021-23358/underscore
Salvatore Bonaccorso
carnil at debian.org
Tue Mar 30 20:15:07 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bd5a6271 by Salvatore Bonaccorso at 2021-03-30T21:14:55+02:00
Add CVE-2021-23358/underscore
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13974,7 +13974,8 @@ CVE-2021-23360 (This affects the package killport before 1.0.2. If (attacker-con
CVE-2021-23359 (This affects all versions of package port-killer. If (attacker-control ...)
NOT-FOR-US: Node port-killer
CVE-2021-23358 (The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 a ...)
- TODO: check
+ - underscore <unfixed>
+ NOTE: https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984
CVE-2021-23357 (All versions of package github.com/tyktechnologies/tyk/gateway are vul ...)
NOT-FOR-US: tyk/gateway
CVE-2021-23356 (This affects all versions of package kill-process-by-name. If (attacke ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd5a6271d6cd5244ef9699f5e7d689fdaa8f04c8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd5a6271d6cd5244ef9699f5e7d689fdaa8f04c8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210330/418083ef/attachment.htm>
More information about the debian-security-tracker-commits
mailing list