[Git][security-tracker-team/security-tracker][master] Track fixed version for nodejs issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Apr 4 06:56:56 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f757bdef by Salvatore Bonaccorso at 2024-04-04T07:55:06+02:00
Track fixed version for nodejs issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -616,10 +616,10 @@ CVE-2024-31080 [Heap buffer overread/data leakage in ProcXIGetSelectedEvents]
NOTE: Fixed by: https://gitlab.freedesktop.org/xorg/xserver/-/commit/96798fc1967491c80a4d0c8d9e0a80586cb2152b
NOTE: https://lists.x.org/archives/xorg-announce/2024-April/003497.html
CVE-2024-27983
- - nodejs <unfixed> (bug #1068347)
+ - nodejs 18.20.1+dfsg-1 (bug #1068347)
NOTE: https://nodejs.org/en/blog/vulnerability/april-2024-security-releases/
CVE-2024-27982
- - nodejs <unfixed> (bug #1068347)
+ - nodejs 18.20.1+dfsg-1 (bug #1068347)
NOTE: https://nodejs.org/en/blog/vulnerability/april-2024-security-releases/
CVE-2024-3248 (In Xpdf 4.05 (and earlier), a PDF object loop in the attachments leads ...)
TODO: check
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f757bdef76c5b3639aa935619227b2f7837b2886
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f757bdef76c5b3639aa935619227b2f7837b2886
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240404/c925a9b2/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list