[Git][security-tracker-team/security-tracker][master] new babel issue

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1d84900a by Moritz Muehlenhoff at 2023-10-13T13:06:14+02:00
new babel issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -57,7 +57,11 @@ CVE-2023-45142 (OpenTelemetry-Go Contrib is a collection of third-party packages
 CVE-2023-45138 (Change Request is an pplication allowing users to request changes on a ...)
 	NOT-FOR-US: XWiki addon
 CVE-2023-45133 (Babel is a compiler for writingJavaScript. In `@babel/traverse` prior  ...)
-	TODO: check
+	- node-babel <removed>
+	- node-babel7 <unfixed>
+	NOTE: github.com: https://github.com/babel/babel/security/advisories/GHSA-67hx-6x53-jw92
+	NOTE: github.com: https://github.com/babel/babel/pull/16033
+	NOTE: github.com: https://github.com/babel/babel/commit/b13376b346946e3f62fc0848c1d2a23223314c82
 CVE-2023-45106 (Cross-Site Request Forgery (CSRF) vulnerability in Fedor Urvanov, Aram ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-45103 (Cross-Site Request Forgery (CSRF) vulnerability in YAS Global Team Per ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d84900a7f111edda6c0b630a3559a988d0a202e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d84900a7f111edda6c0b630a3559a988d0a202e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231013/876e81ad/attachment.htm>