[Git][security-tracker-team/security-tracker][master] Add CVE-2022-2421/node-socket.io, itp'ed
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Nov 6 16:02:04 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
eb72644c by Salvatore Bonaccorso at 2022-11-06T17:01:35+01:00
Add CVE-2022-2421/node-socket.io, itp'ed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25879,7 +25879,7 @@ CVE-2022-2423 (The DW Promobar WordPress plugin through 1.0.4 does not sanitise
CVE-2022-2422 (Due to improper input validation in the Feathers js library, it is pos ...)
NOT-FOR-US: Feathers js library
CVE-2022-2421 (Due to improper type validation in attachment parsing the Socket.io js ...)
- TODO: check
+ - node-socket.io <itp> (bug #707166)
CVE-2022-2420 (A vulnerability was found in URVE Web Manager. It has been rated as cr ...)
NOT-FOR-US: URVE Web Manager
CVE-2022-2419 (A vulnerability was found in URVE Web Manager. It has been declared as ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb72644c57ffa0c31c2d2dc28d834d0bfe4812c5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb72644c57ffa0c31c2d2dc28d834d0bfe4812c5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221106/a71e5f9b/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list