[Git][security-tracker-team/security-tracker][master] grunt fixed in experimental

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Apr 14 10:58:00 BST 2022



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2ef5e51c by Moritz Muehlenhoff at 2022-04-14T11:57:09+02:00
grunt fixed in experimental

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13683,6 +13683,7 @@ CVE-2022-24283
 CVE-2022-0437 (Cross-site Scripting (XSS) - DOM in NPM karma prior to 6.3.14. ...)
 	NOT-FOR-US: Node karma
 CVE-2022-0436 (Path Traversal in GitHub repository gruntjs/grunt prior to 1.5.2. ...)
+	[experimental] - grunt 1.5.2-1
 	- grunt <unfixed> (bug #1009676)
 	NOTE: https://github.com/gruntjs/grunt/commit/aad3d4521c3098fb255fb2db8f2e1d691a033665 (v1.5.0)
 	NOTE: https://github.com/gruntjs/grunt/pull/1740



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ef5e51c414159c06f465e8fc73640bc37f4b0a5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ef5e51c414159c06f465e8fc73640bc37f4b0a5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220414/845f20de/attachment.htm>


More information about the debian-security-tracker-commits mailing list