[Git][security-tracker-team/security-tracker][master] Marked CVE-2022-42920 for node-minimatch as no-dsa for buster following decision for bullseye.
Ola Lundqvist (@opal)
opal at debian.org
Mon Oct 31 19:50:06 GMT 2022
Ola Lundqvist pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2c6923bf by Ola Lundqvist at 2022-10-31T20:49:44+01:00
Marked CVE-2022-42920 for node-minimatch as no-dsa for buster following decision for bullseye.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5573,6 +5573,7 @@ CVE-2022-42920
CVE-2022-3517 (A vulnerability was found in the minimatch package. This flaw allows a ...)
- node-minimatch 3.0.5+~3.0.5-1
[bullseye] - node-minimatch <no-dsa> (Minor issue)
+ [buster] - node-minimatch <no-dsa> (Minor issue)
NOTE: https://github.com/grafana/grafana-image-renderer/issues/329
NOTE: https://github.com/isaacs/minimatch/commit/a8763f4388e51956be62dc6025cec1126beeb5e6 (v3.0.5)
CVE-2022-3516
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c6923bf48484d53fe64a411c0427db5fad86f78
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c6923bf48484d53fe64a411c0427db5fad86f78
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221031/7427af1b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list