[Pkg-matrix-maintainers] Bug#1018970: node-matrix-js-sdk: CVE-2022-36059
Salvatore Bonaccorso
carnil at debian.org
Fri Sep 2 20:31:42 BST 2022
Source: node-matrix-js-sdk
Version: 9.11.0+~cs9.9.16-2
Severity: grave
Tags: security upstream
X-Debbugs-Cc: carnil at debian.org, Debian Security Team <team at security.debian.org>
Hi,
The following vulnerability was published for node-matrix-js-sdk.
CVE-2022-36059[0]:
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2022-36059
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36059
[1] https://matrix.org/blog/2022/08/31/security-releases-matrix-js-sdk-19-4-0-and-matrix-react-sdk-3-53-0/
[2] https://github.com/matrix-org/matrix-js-sdk/commit/8716c1ab9ba93659173b806097c46a2be115199f
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
More information about the Pkg-matrix-maintainers
mailing list