[Git][security-tracker-team/security-tracker][master] grunt spu
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Apr 29 14:50:20 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6915f38d by Moritz Mühlenhoff at 2022-04-29T15:49:40+02:00
grunt spu
- - - - -
2 changed files:
- data/CVE/list
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -15918,6 +15918,8 @@ CVE-2022-0437 (Cross-site Scripting (XSS) - DOM in NPM karma prior to 6.3.14. ..
CVE-2022-0436 (Path Traversal in GitHub repository gruntjs/grunt prior to 1.5.2. ...)
[experimental] - grunt 1.5.2-1
- grunt 1.5.2-2 (bug #1009676)
+ [bullseye] - grunt <no-dsa> (Minor issue)
+ [buster] - grunt <no-dsa> (Minor issue)
NOTE: https://github.com/gruntjs/grunt/commit/aad3d4521c3098fb255fb2db8f2e1d691a033665 (v1.5.0)
NOTE: https://github.com/gruntjs/grunt/pull/1740
NOTE: https://huntr.dev/bounties/f55315e9-9f6d-4dbb-8c40-bae50c1ae92b
=====================================
data/next-point-update.txt
=====================================
@@ -46,3 +46,5 @@ CVE-2021-43566
[bullseye] - samba 2:4.13.13+dfsg-1~deb11u4
CVE-2022-1328
[bullseye] - mutt 2.0.5-4.1+deb11u1
+CVE-2022-0436
+ [bullseye] - grunt 1.3.0-1+deb11u1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6915f38d3eae9e0b7bddd5afab307dc3149f446e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6915f38d3eae9e0b7bddd5afab307dc3149f446e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220429/88dd104e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list