[Git][security-tracker-team/security-tracker][master] Triage CVE-2024-47068 in node-rollup for bullseye LTS.
Chris Lamb (@lamby)
lamby at debian.org
Wed Sep 25 16:43:05 BST 2024
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8529b1a2 by Chris Lamb at 2024-09-25T08:42:41-07:00
Triage CVE-2024-47068 in node-rollup for bullseye LTS.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -278,6 +278,7 @@ CVE-2024-47069 (Oveleon Cookie Bar is a cookie bar is for the Contao Open Source
CVE-2024-47068 (Rollup is a module bundler for JavaScript. Versions prior to 3.29.5 an ...)
- node-rollup 3.29.5-1 (bug #1082712)
[bookworm] - node-rollup <no-dsa> (Minor issue)
+ [bullseye] - node-rollup <postponed> (Minor issue; can be fixed in next update)
NOTE: https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm
NOTE: https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4 (v3.29.5)
NOTE: https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541 (v4.22.4)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8529b1a2dd0db18a788f19c1affd4be2c1fd03b0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8529b1a2dd0db18a788f19c1affd4be2c1fd03b0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240925/d70d41c7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list