[Git][security-tracker-team/security-tracker][master] Update CVE-2021-3803/node-nth-check

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ac51c896 by Salvatore Bonaccorso at 2022-02-05T09:34:43+01:00
Update CVE-2021-3803/node-nth-check

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -24946,7 +24946,10 @@ CVE-2021-41079 (Apache Tomcat 8.5.0 to 8.5.63, 9.0.0-M1 to 9.0.43 and 10.0.0-M1
 	NOTE: https://github.com/apache/tomcat/commit/d4b340fa8feaf55831f9a59350578f7b6ca048b8 (9.0.44)
 	NOTE: https://github.com/apache/tomcat/commit/b90d4fc1ff44f30e4b3aba622ba6677e3f003822 (8.5.64)
 CVE-2021-3803 (nth-check is vulnerable to Inefficient Regular Expression Complexity ...)
-	NOT-FOR-US: nth-check
+	- node-nth-check 2.0.1-1
+	NOTE: https://github.com/fb55/nth-check/commit/9894c1d2010870c351f66c6f6efcf656e26bb726 (v2.0.1)
+	NOTE: https://huntr.dev/bounties/8cf8cc06-d2cf-4b4e-b42c-99fafb0b04d0/
+	NOTE: https://github.com/advisories/GHSA-rp65-9cf3-cjxr
 CVE-2021-3802 (A vulnerability found in udisks2. This flaw allows an attacker to inpu ...)
 	{DLA-2809-1}
 	- udisks2 2.9.4-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac51c896ab0c24d2028d898390867a88cc223584

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac51c896ab0c24d2028d898390867a88cc223584
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220205/f862b108/attachment.htm>