[Git][security-tracker-team/security-tracker][master] ckeditor fixed

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun Jul 17 18:22:07 BST 2022 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3eb9ccc0 by Moritz Muehlenhoff at 2022-07-17T19:17:18+02:00
ckeditor fixed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31673,12 +31673,12 @@ CVE-2022-24731 (Argo CD is a declarative, GitOps continuous delivery tool for Ku
 CVE-2022-24730 (Argo CD is a declarative, GitOps continuous delivery tool for Kubernet ...)
 	NOT-FOR-US: Argo CD
 CVE-2022-24729 (CKEditor4 is an open source what-you-see-is-what-you-get HTML editor.  ...)
-	- ckeditor <unfixed>
+	- ckeditor 4.19.0+dfsg-1
 	- ckeditor3 <unfixed>
 	[stretch] - ckeditor3 <end-of-life> (EOL'd for stretch)
 	NOTE: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-f6rf-9m92-x2hh
 CVE-2022-24728 (CKEditor4 is an open source what-you-see-is-what-you-get HTML editor.  ...)
-	- ckeditor <unfixed>
+	- ckeditor 4.19.0+dfsg-1
 	- ckeditor3 <unfixed>
 	[stretch] - ckeditor3 <end-of-life> (EOL'd for stretch)
 	NOTE: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-4fc4-4p5g-6w89
@@ -58800,7 +58800,7 @@ CVE-2021-41167 (modern-async is an open source JavaScript tooling library for as
 CVE-2021-41166 (The Nextcloud Android app is the Android client for Nextcloud, a self- ...)
 	NOT-FOR-US: Nextcloud Android app
 CVE-2021-41165 (CKEditor4 is an open source WYSIWYG HTML editor. In affected version a ...)
-	- ckeditor <unfixed> (bug #999909)
+	- ckeditor 4.19.0+dfsg-1 (bug #999909)
 	[bullseye] - ckeditor <no-dsa> (Minor issue)
 	[buster] - ckeditor <no-dsa> (Minor issue)
 	[stretch] - ckeditor <no-dsa> (Minor issue)
@@ -58808,7 +58808,7 @@ CVE-2021-41165 (CKEditor4 is an open source WYSIWYG HTML editor. In affected ver
 	[stretch] - ckeditor3 <end-of-life> (EOL'd for stretch)
 	NOTE: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7h26-63m7-qhf2 (v4.17.0)
 CVE-2021-41164 (CKEditor4 is an open source WYSIWYG HTML editor. In affected versions  ...)
-	- ckeditor <unfixed> (bug #999909)
+	- ckeditor 4.19.0+dfsg-1 (bug #999909)
 	[bullseye] - ckeditor <no-dsa> (Minor issue)
 	[buster] - ckeditor <no-dsa> (Minor issue)
 	[stretch] - ckeditor <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3eb9ccc0a2a0858ec8c364ef0dfe6fa34bcbe6ce

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3eb9ccc0a2a0858ec8c364ef0dfe6fa34bcbe6ce
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220717/4e778008/attachment.htm>

More information about the debian-security-tracker-commits mailing list