[Git][security-tracker-team/security-tracker][master] CVE-2022-2168{0,1}/node-marked fixed in unstable
Neil Williams (@codehelp)
codehelp at debian.org
Thu Feb 3 14:19:46 GMT 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7e67e06a by Neil Williams at 2022-02-03T14:19:19+00:00
CVE-2022-2168{0,1}/node-marked fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14463,9 +14463,16 @@ CVE-2022-21682 (Flatpak is a Linux application sandboxing and distribution frame
NOTE: Documentation: https://github.com/flatpak/flatpak/commit/4d11f77aa7fd3e64cfa80af89d92567ab9e8e6fa
NOTE: 1.12.4 added further changes to avoid regressions for some workflows
CVE-2022-21681 (Marked is a markdown parser and compiler. Prior to version 4.0.10, the ...)
- TODO: check
+ - node-marked 4.0.12+ds+~4.0.1-1
+ NOTE: https://github.com/markedjs/marked/security/advisories/GHSA-5v2h-r2cx-5xgj
+ NOTE: https://github.com/markedjs/marked/commit/8f806573a3f6c6b7a39b8cdb66ab5ebb8d55a5f5
+ NOTE: https://github.com/markedjs/marked/commit/c4a3ccd344b6929afa8a1d50ac54a721e57012c0 (4.0.10)
+ NOTE: https://github.com/markedjs/marked/releases/tag/v4.0.10
CVE-2022-21680 (Marked is a markdown parser and compiler. Prior to version 4.0.10, the ...)
- TODO: check
+ - node-marked 4.0.12+ds+~4.0.1-1
+ NOTE: https://github.com/markedjs/marked/commit/c4a3ccd344b6929afa8a1d50ac54a721e57012c0 (4.0.10)
+ NOTE: https://github.com/markedjs/marked/releases/tag/v4.0.10
+ NOTE: https://github.com/markedjs/marked/security/advisories/GHSA-rrrm-qjm4-v8hf
CVE-2022-21679 (Istio is an open platform to connect, manage, and secure microservices ...)
NOT-FOR-US: Istio
CVE-2022-21678 (Discourse is an open source discussion platform. Prior to version 2.8. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e67e06aa509545ce700694ac9b53e756563c6b4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e67e06aa509545ce700694ac9b53e756563c6b4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220203/f7fdde7e/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list