diff options
author | Moritz Mühlenhoff <jmm@debian.org> | 2022-01-15 19:40:54 +0100 |
---|---|---|
committer | Moritz Mühlenhoff <jmm@debian.org> | 2022-01-15 19:40:54 +0100 |
commit | 1503764e63cbd6e1354cd1871b0283e79e1d781a (patch) | |
tree | 346e118534134f45dc7bbada3c0fdab22e10f76c /data | |
parent | 6d835da51d9e79f4c74e82ec047d8fa4194cf793 (diff) |
node-markdown-it spu
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 1 | ||||
-rw-r--r-- | data/next-point-update.txt | 2 |
2 files changed, 3 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list index 24b7ec1228..c277749e88 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -10252,6 +10252,7 @@ CVE-2022-21671 (@replit/crosis is a JavaScript client that speaks Replit's conta NOT-FOR-US: crosis CVE-2022-21670 (markdown-it is a Markdown parser. Prior to version 1.3.2, special patt ...) - node-markdown-it <unfixed> + [bullseye] - node-markdown-it <no-dsa> (Minor issue) NOTE: https://github.com/markdown-it/markdown-it/security/advisories/GHSA-6vfc-qv3f-vr6c NOTE: https://github.com/markdown-it/markdown-it/commit/ffc49ab46b5b751cd2be0aabb146f2ef84986101 (12.3.2) CVE-2022-21669 (PuddingBot is a group management bot. In version 0.0.6-b933652 and pri ...) diff --git a/data/next-point-update.txt b/data/next-point-update.txt index d09784cf44..8c36638189 100644 --- a/data/next-point-update.txt +++ b/data/next-point-update.txt @@ -34,3 +34,5 @@ CVE-2021-45116 [bullseye] - python-django 2:2.2.26-1~deb11u1 CVE-2021-45452 [bullseye] - python-django 2:2.2.26-1~deb11u1 +CVE-2022-21670 + [bullseye] - node-markdown-it 10.0.0+dfsg-2+deb11u1 |