[Git][security-tracker-team/security-tracker][master] CVE-2021-41164,CVE-2021-41165/ckeditor bug #999909

Thu Nov 18 10:48:33 GMT 2021


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
163c4bb3 by Neil Williams at 2021-11-18T10:48:21+00:00
CVE-2021-41164,CVE-2021-41165/ckeditor bug #999909

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9830,9 +9830,11 @@ CVE-2021-41167 (modern-async is an open source JavaScript tooling library for as
 CVE-2021-41166
 	RESERVED
 CVE-2021-41165 (CKEditor4 is an open source WYSIWYG HTML editor. In affected version a ...)
-	TODO: check
+	- ckeditor <unfixed> (bug #999909)
+	NOTE: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7h26-63m7-qhf2 (v4.17.0)
 CVE-2021-41164 (CKEditor4 is an open source WYSIWYG HTML editor. In affected versions  ...)
-	TODO: check
+	- ckeditor <unfixed> (bug #999909)
+	NOTE: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-pvmx-g8h5-cprj (v4.17.0)
 CVE-2021-41163 (Discourse is an open source platform for community discussion. In affe ...)
 	NOT-FOR-US: Discourse
 CVE-2021-41162



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/163c4bb37d77762c19939a69af8143fb57003fe2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/163c4bb37d77762c19939a69af8143fb57003fe2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211118/cb818b8c/attachment.htm>
