[Git][security-tracker-team/security-tracker][master] node-js-yaml fixed in sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Mar 6 14:55:22 GMT 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
289dd6ab by Moritz Muehlenhoff at 2026-03-06T15:54:10+01:00
node-js-yaml fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -45184,7 +45184,7 @@ CVE-2025-64738 (External control of file name or path in Zoom Workplace for macO
CVE-2025-64726 (Socket Firewall is an HTTP/HTTPS proxy server that intercepts package ...)
NOT-FOR-US: Socket Firewall
CVE-2025-64718 (js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1. ...)
- - node-js-yaml <unfixed> (bug #1120696)
+ - node-js-yaml 4.1.1+dfsg+~4.0.9-1 (bug #1120696)
[trixie] - node-js-yaml <no-dsa> (Minor issue)
[bookworm] - node-js-yaml <no-dsa> (Minor issue)
[bullseye] - node-js-yaml <postponed> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/289dd6ab88638d11462b43dadcf30cef93cf415c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/289dd6ab88638d11462b43dadcf30cef93cf415c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260306/19d3cc16/attachment.htm>
More information about the debian-security-tracker-commits
mailing list