diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-31 09:05:38 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-31 09:05:38 +0100 |
| commit | c224b0c85536857de52595e47f7531117cb917d1 (patch) | |
| tree | 8dd71c6686b2e5cc36b8319098617cda4df65dc9 | |
| parent | 72e5d9f4fa882c2477db561616db2817855c7915 (diff) | |
Add CVE-2021-42740/node-shell-quote
| -rw-r--r-- | data/CVE/list.2021 | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 4b2052cd36..ddf4f55734 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -752,7 +752,8 @@ CVE-2021-42742 CVE-2021-42741 RESERVED CVE-2021-42740 (The shell-quote package before 1.7.3 for Node.js allows command inject ...) - TODO: check + - node-shell-quote <unfixed> + NOTE: https://github.com/substack/node-shell-quote/commit/5799416ed454aa4ec9afafc895b4e31760ea1abe (1.7.3) CVE-2021-42739 (The firewire subsystem in the Linux kernel through 5.14.13 has a buffe ...) - linux <unfixed> NOTE: https://seclists.org/oss-sec/2021/q2/46 |