[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2022-0235/node-fetch

[Aron Xu (@aron)]

Aron Xu pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a261a33d by Aron Xu at 2022-01-19T16:55:09+08:00
Reference upstream commit for CVE-2022-0235/node-fetch

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -714,7 +714,7 @@ CVE-2022-0236 (The WP Import Export WordPress plugin (both free and premium vers
 CVE-2022-0235 (node-fetch is vulnerable to Exposure of Sensitive Information to an Un ...)
 	- node-fetch <unfixed>
 	NOTE: https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7/
-	TODO: check fixing commit
+	NOTE: Fixed by: https://github.com/node-fetch/node-fetch/commit/f5d3cf5e2579cb8f4c76c291871e69696aef8f80 (v3.1.1)
 CVE-2022-0234
 	RESERVED
 CVE-2022-0233 (The ProfileGrid – User Profiles, Memberships, Groups and Communi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a261a33df92c837a592b41ccc540808c99c7c747

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a261a33df92c837a592b41ccc540808c99c7c747
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220119/dd589b4c/attachment.htm>