[Git][security-tracker-team/security-tracker][master] Add CVE-2023-2251/node-yaml
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Apr 25 21:13:18 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
57abcc8c by Salvatore Bonaccorso at 2023-04-25T22:13:05+02:00
Add CVE-2023-2251/node-yaml
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -301,7 +301,9 @@ CVE-2023-2253
CVE-2023-2252
RESERVED
CVE-2023-2251 (Uncaught Exception in GitHub repository eemeli/yaml prior to 2.2.2. ...)
- TODO: check
+ - node-yaml <unfixed>
+ NOTE: https://huntr.dev/bounties/4b494e99-5a3e-40d9-8678-277f3060e96c
+ NOTE: https://www.github.com/eemeli/yaml/commit/984f5781ffd807e58cad3b5c8da1f940dab75fba (v2.2.2)
CVE-2023-2250 (A flaw was found in the Open Cluster Management (OCM) when a user have ...)
TODO: check
CVE-2023-2249
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/57abcc8c0eb797525a8f2b1a84d96085dd7ef406
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/57abcc8c0eb797525a8f2b1a84d96085dd7ef406
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230425/3f7507ae/attachment.htm>
More information about the debian-security-tracker-commits
mailing list