[Git][security-tracker-team/security-tracker][master] Add CVE-2023-44270/node-postcss
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Sep 30 09:46:07 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9311b234 by Salvatore Bonaccorso at 2023-09-30T10:45:26+02:00
Add CVE-2023-44270/node-postcss
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25,7 +25,8 @@ CVE-2023-5227 (Unrestricted Upload of File with Dangerous Type in GitHub reposit
CVE-2023-5201 (The OpenHook plugin for WordPress is vulnerable to Remote Code Executi ...)
NOT-FOR-US: OpenHook plugin for WordPress
CVE-2023-44270 (An issue was discovered in PostCSS before 8.4.31. It affects linters u ...)
- TODO: check
+ - node-postcss <unfixed>
+ NOTE: https://github.com/postcss/postcss/commit/58cc860b4c1707510c9cd1bc1fa30b423a9ad6c5 (8.4.31)
CVE-2023-43711 (Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) v ...)
NOT-FOR-US: Os Commerce
CVE-2023-43710 (Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) v ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9311b234dfe50806fe65d5e729082724cd1cbbb6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9311b234dfe50806fe65d5e729082724cd1cbbb6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230930/1ce1b7e3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list