[Git][security-tracker-team/security-tracker][master] Add fix from upstream for node-json5 CVE-2022-46175
Bastien Roucariès (@rouca)
rouca at debian.org
Sun Nov 19 19:40:13 GMT 2023
Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b7b3a286 by Bastien Roucariès at 2023-11-19T19:39:03+00:00
Add fix from upstream for node-json5 CVE-2022-46175
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -63145,6 +63145,8 @@ CVE-2022-46175 (JSON5 is an extension to the popular JSON file format that aims
NOTE: https://github.com/json5/json5/security/advisories/GHSA-9c47-m6qq-7p4h
NOTE: https://github.com/json5/json5/issues/199
NOTE: https://github.com/json5/json5/issues/295
+ NOTE: for v1 fixed by https://github.com/json5/json5/commit/62a65408408d40aeea14c7869ed327acead12972.patch
+ NOTE: for v2 fixed by https://github.com/json5/json5/commit/4a8c4568fe6bf85daf6f473aaa50007c43f74d6e.patch
CVE-2022-46174 (efs-utils is a set of Utilities for Amazon Elastic File System (EFS). ...)
NOT-FOR-US: AWS efs-utils
CVE-2022-46173 (Elrond-GO is a go implementation for the Elrond Network protocol. Vers ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7b3a2868e53f6f7c1af3e739eb7b9211e12f313
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7b3a2868e53f6f7c1af3e739eb7b9211e12f313
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231119/bf9add2a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list