[Git][security-tracker-team/security-tracker][master] Re-associate old CVE-2021-23566 to node-postcss
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 10 19:39:31 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4fd13ec0 by Salvatore Bonaccorso at 2024-12-10T20:39:06+01:00
Re-associate old CVE-2021-23566 to node-postcss
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -301703,7 +301703,9 @@ CVE-2021-23567 (The package colors after 1.4.0 are vulnerable to Denial of Servi
NOTE: https://github.com/Marak/colors.js/issues/285
NOTE: Introduced with: https://github.com/Marak/colors.js/commit/074a0f8ed0c31c35d13d28632bd8a049ff136fb6
CVE-2021-23566 (The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Info ...)
- NOT-FOR-US: Node nanoid (NaN0-1D)
+ - node-postcss <undetermined>
+ NOTE: https://github.com/ai/nanoid/commit/2b7bd9332bc49b6330c7ddb08e5c661833db2575 (3.1.31)
+ NOTE: https://github.com/ai/nanoid/pull/328
CVE-2021-23565
RESERVED
CVE-2021-23564
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4fd13ec06e18169f58966d72551d80378ac85df9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4fd13ec06e18169f58966d72551d80378ac85df9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241210/d6bd144e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list