diff options
| author | Moritz Muehlenhoff <jmm@debian.org> | 2022-02-04 14:23:37 +0100 |
|---|---|---|
| committer | Moritz Muehlenhoff <jmm@debian.org> | 2022-02-04 14:25:10 +0100 |
| commit | 3d1c0d969440a2654803b74154e9c887405e5190 (patch) | |
| tree | 1d6a512630825ea28c78caa334580c444b678e82 /data/CVE/list.2018 | |
| parent | aae78b8f2e5cefcda439c99802f3dff668210cb4 (diff) | |
bullseyre/buster triage
Diffstat (limited to 'data/CVE/list.2018')
| -rw-r--r-- | data/CVE/list.2018 | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list.2018 b/data/CVE/list.2018 index cefd65a17c..7d45270572 100644 --- a/data/CVE/list.2018 +++ b/data/CVE/list.2018 @@ -13065,6 +13065,7 @@ CVE-2018-16473 (A path traversal in takeapeek module versions <=0.2.2 allows NOT-FOR-US: takeapeek CVE-2018-16472 (A prototype pollution attack in cached-path-relative versions <=1.0 ...) - node-cached-path-relative 1.0.2-1 + [buster] - node-cached-path-relative <no-dsa> (Minor issue) NOTE: https://hackerone.com/reports/390847 NOTE: https://github.com/ashaffer/cached-path-relative/issues/3 NOTE: Fixed by: https://github.com/ashaffer/cached-path-relative/commit/a43cffec84ed0e9eceecb43b534b6937a8028fc0 |