[Git][security-tracker-team/security-tracker][master] Add CVE-2023-28427/node-matrix-js-sdk
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 28 20:43:38 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
337de082 by Salvatore Bonaccorso at 2023-03-28T21:42:58+02:00
Add CVE-2023-28427/node-matrix-js-sdk
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1656,6 +1656,10 @@ CVE-2023-28428 (PDFio is a C library for reading and writing PDF files. In versi
TODO: check
CVE-2023-28427
RESERVED
+ - node-matrix-js-sdk <unfixed>
+ [bullseye] - node-matrix-js-sdk <no-dsa> (Minor issue)
+ NOTE: https://matrix.org/blog/2023/03/28/security-releases-matrix-js-sdk-24-0-0-and-matrix-react-sdk-3-69-0/
+ NOTE: https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-mwq8-fjpf-c2gr
CVE-2023-28426
REJECTED
CVE-2023-28425 (Redis is an in-memory database that persists on disk. Starting in vers ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/337de0822a2a9e81d2724c725b411fb0b9526d2d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/337de0822a2a9e81d2724c725b411fb0b9526d2d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230328/120abf9e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list