[Git][security-tracker-team/security-tracker][master] Mark two CVEs for node-loader-utils as no-dsa

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Nov 15 22:01:35 GMT 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0c5d1e30 by Salvatore Bonaccorso at 2022-11-15T22:59:23+01:00
Mark two CVEs for node-loader-utils as no-dsa

They are additionally already proposed to be fixed via the next
bullseye point release.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -23339,6 +23339,7 @@ CVE-2022-37604
 	RESERVED
 CVE-2022-37603 (A Regular expression denial of service (ReDoS) flaw was found in Funct ...)
 	- node-loader-utils 2.0.4-1
+	[bullseye] - node-loader-utils <no-dsa> (Minor issue; will be fixed via point release)
 	NOTE: https://github.com/webpack/loader-utils/issues/213
 	NOTE: https://github.com/webpack/loader-utils/pull/225
 	NOTE: https://github.com/webpack/loader-utils/commit/ac09944dfacd7c4497ef692894b09e63e09a5eeb (v2.0.4)
@@ -23353,6 +23354,7 @@ CVE-2022-37600
 	RESERVED
 CVE-2022-37599 (A Regular expression denial of service (ReDoS) flaw was found in Funct ...)
 	- node-loader-utils 2.0.4-1
+	[bullseye] - node-loader-utils <no-dsa> (Minor issue; will be fixed via point release)
 	NOTE: https://github.com/webpack/loader-utils/issues/211
 	NOTE: https://github.com/webpack/loader-utils/pull/225
 	NOTE: https://github.com/webpack/loader-utils/commit/ac09944dfacd7c4497ef692894b09e63e09a5eeb (v2.0.4)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0c5d1e309ad00812584db970a33ff29f330225ef

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0c5d1e309ad00812584db970a33ff29f330225ef
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221115/91c60978/attachment.htm>


More information about the debian-security-tracker-commits mailing list