[Git][security-tracker-team/security-tracker][master] Add CVE-2022-39250/node-matrix-js-sdk

Fri Sep 30 19:59:20 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6bb36e86 by Salvatore Bonaccorso at 2022-09-30T20:58:53+02:00
Add CVE-2022-39250/node-matrix-js-sdk

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6078,7 +6078,11 @@ CVE-2022-39251 (Matrix Javascript SDK is the Matrix Client-Server SDK for JavaSc
 	NOTE: https://matrix.org/blog/2022/09/28/upgrade-now-to-address-encryption-vulns-in-matrix-sdks-and-clients
 	TODO: check if affecting the nodejs version of matrix-js-sdk
 CVE-2022-39250 (Matrix JavaScript SDK is the Matrix Client-Server software development ...)
-	TODO: check
+	- node-matrix-js-sdk <undetermined>
+	NOTE: https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-5w8r-8pgj-5jmf
+	NOTE: https://github.com/matrix-org/matrix-js-sdk/commit/a587d7c36026fe1fcf93dfff63588abee359be76
+	NOTE: https://matrix.org/blog/2022/09/28/upgrade-now-to-address-encryption-vulns-in-matrix-sdks-and-clients
+	TODO: check if affecting the nodejs version of matrix-js-sdk
 CVE-2022-39249 (Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript.  ...)
 	- node-matrix-js-sdk <undetermined>
 	NOTE: https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-6263-x97c-c4gg



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bb36e86b66774450a7002de705f7c6941311b75

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bb36e86b66774450a7002de705f7c6941311b75
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220930/af8a15cf/attachment.htm>
