[Git][security-tracker-team/security-tracker][master] Add CVE-2024-33883/node-ejs

Mon Apr 29 06:26:28 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c677f6f by Salvatore Bonaccorso at 2024-04-29T07:25:57+02:00
Add CVE-2024-33883/node-ejs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,7 +5,8 @@ CVE-2024-4293 (A vulnerability classified as problematic was found in PHPGurukul
 CVE-2024-4292 (A vulnerability classified as critical has been found in Contemporary  ...)
 	NOT-FOR-US: Contemporary Controls BASrouter BACnet BASRT-B
 CVE-2024-33883 (The ejs (aka Embedded JavaScript templates) package before 3.1.10 for  ...)
-	TODO: check
+	- node-ejs 3.1.10+~3.1.5-1
+	NOTE: https://github.com/mde/ejs/commit/e469741dca7df2eb400199e1cdb74621e3f89aa5 (v3.1.10)
 CVE-2024-33851 (phpecc, as used in paragonie/phpecc before 2.0.1, has a branch-based t ...)
 	TODO: check
 CVE-2024-25050 (IBM i 7.2, 7.3, 7.4, 7.5 and IBM Rational Development Studio for i 7.2 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c677f6f79670fcff9d9ebeb42c1e0400737e6f5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c677f6f79670fcff9d9ebeb42c1e0400737e6f5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240429/fdb5bbf1/attachment.htm>
