[Git][security-tracker-team/security-tracker][master] Track fix for CVE-2023-46234/node-browserify-sign via unstable upload
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Oct 28 10:11:29 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7a16c93f by Salvatore Bonaccorso at 2023-10-28T11:10:38+02:00
Track fix for CVE-2023-46234/node-browserify-sign via unstable upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -292,7 +292,7 @@ CVE-2023-46435 (Sourcecodester Packers and Movers Management System v1.0 is vuln
CVE-2023-46238 (ZITADEL is an identity infrastructure management system. ZITADEL users ...)
NOT-FOR-US: ZITADEL
CVE-2023-46234 (browserify-sign is a package to duplicate the functionality of node's ...)
- - node-browserify-sign <unfixed> (bug #1054667)
+ - node-browserify-sign 4.2.2-1 (bug #1054667)
NOTE: https://github.com/browserify/browserify-sign/security/advisories/GHSA-x9w5-v3q2-3rhw
NOTE: https://github.com/browserify/browserify-sign/commit/85994cd6348b50f2fd1b73c54e20881416f44a30 (v4.2.2)
CVE-2023-46094 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Conversi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a16c93f579eb4c6a40f964664e8aaa1f76e0d52
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a16c93f579eb4c6a40f964664e8aaa1f76e0d52
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231028/6196d92a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list