[Git][security-tracker-team/security-tracker][master] node-axios fixed in sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Sep 5 12:09:47 BST 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bd1225e4 by Moritz Muehlenhoff at 2021-09-05T13:09:21+02:00
node-axios fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -450,7 +450,9 @@ CVE-2021-3750 [hcd-ehci: DMA reentrancy issue leads to use-after-free]
NOTE: Fix for whole class of DMA MMIO reentrancy issues: https://gitlab.com/qemu-project/qemu/-/issues/556
NOTE: Patchset: https://lists.nongnu.org/archive/html/qemu-devel/2021-08/msg03692.html
CVE-2021-3749 (axios is vulnerable to Inefficient Regular Expression Complexity ...)
- - node-axios <unfixed>
+ - node-axios 0.21.3+dfsg-1
+ [bullseye] - node-axios <no-dsa> (Minor issue)
+ [buster] - node-axios <no-dsa> (Minor issue)
NOTE: https://huntr.dev/bounties/1e8f07fc-c384-4ff9-8498-0690de2e8c31/
NOTE: https://github.com/axios/axios/commit/5b457116e31db0e88fede6c428e969e87f290929
NOTE: https://github.com/axios/axios/pull/3980
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd1225e47c45438c133c33bc160da755b7631eb8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd1225e47c45438c133c33bc160da755b7631eb8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210905/bd120689/attachment.htm>
More information about the debian-security-tracker-commits
mailing list