[Git][security-tracker-team/security-tracker][master] Add CVE-2025-23207/node-katex
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jan 18 08:38:59 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3c98fd5a by Salvatore Bonaccorso at 2025-01-18T09:38:36+01:00
Add CVE-2025-23207/node-katex
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,7 +3,9 @@ CVE-2025-23209 (Craft is a flexible, user-friendly CMS for creating custom digit
CVE-2025-23208 (zot is a production-ready vendor-neutral OCI image registry. The group ...)
NOT-FOR-US: zot
CVE-2025-23207 (KaTeX is a fast, easy-to-use JavaScript library for TeX math rendering ...)
- TODO: check
+ - node-katex <unfixed>
+ NOTE: https://github.com/KaTeX/KaTeX/security/advisories/GHSA-cg87-wmx4-v546
+ NOTE: https://github.com/KaTeX/KaTeX/commit/ff289955e81aab89086eef09254cbf88573d415c (v0.16.21)
CVE-2025-23206 (The AWS Cloud Development Kit (AWS CDK) is an open-source software dev ...)
NOT-FOR-US: AWS Cloud Development Kit (AWS CDK)
CVE-2025-23205 (nbgrader is a system for assigning and grading notebooks. Enabling fra ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c98fd5a3f57ea5a0107f40870159bda9fd4d0e1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c98fd5a3f57ea5a0107f40870159bda9fd4d0e1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250118/acc59a78/attachment.htm>
More information about the debian-security-tracker-commits
mailing list