[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-46653/node-formidable via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Sep 15 20:02:58 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8faec129 by Salvatore Bonaccorso at 2025-09-15T21:02:23+02:00
Track fixed version for CVE-2025-46653/node-formidable via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -43833,7 +43833,7 @@ CVE-2025-46655 (CodiMD through 2.5.4 has a CSP-based protection mechanism agains
CVE-2025-46654 (CodiMD through 2.2.0 has a CSP-based protection mechanism against XSS ...)
NOT-FOR-US: CodiMD
CVE-2025-46653 (Formidable (aka node-formidable) 2.1.0 through 3.x before 3.5.3 relies ...)
- - node-formidable <unfixed> (bug #1104246)
+ - node-formidable 4.0.4+~2.1.0-1 (bug #1104246)
[trixie] - node-formidable <ignored> (Minor issue)
[bookworm] - node-formidable <ignored> (Minor issue)
[bullseye] - node-formidable <ignored> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8faec129686a891e0cc3a9dfc51e145e7beb4885
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8faec129686a891e0cc3a9dfc51e145e7beb4885
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250915/4446b07f/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list