[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-42282/node-ip via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Apr 28 19:58:13 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4111a5b8 by Salvatore Bonaccorso at 2024-04-28T20:57:34+02:00
Track fixed version for CVE-2023-42282/node-ip via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -22245,7 +22245,7 @@ CVE-2023-50061 (PrestaShop Op'art Easy Redirect >= 1.3.8 and <= 1.3.12 is vulner
CVE-2023-47020 (Multiple Cross-Site Request Forgery (CSRF) chaining in NCR Terminal Ha ...)
NOT-FOR-US: NCR Terminal Handler
CVE-2023-42282 (The ip package before 1.1.9 for Node.js might allow SSRF because some ...)
- - node-ip <unfixed> (bug #1063535)
+ - node-ip 2.0.1+~1.1.3-1 (bug #1063535)
[bookworm] - node-ip <no-dsa> (Minor issue)
[bullseye] - node-ip <no-dsa> (Minor issue)
[buster] - node-ip <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4111a5b82b07bd5b041723f6f14ab5cb5b7a32cd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4111a5b82b07bd5b041723f6f14ab5cb5b7a32cd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240428/eec136cf/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list