Correct used CVE id for nodejs issue for prototype pollution via console.table properties

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-18 07:31:20 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-18 07:31:20 +0100
commit: d1263b264dff79ddb08411672664e947fc6f0cfe (patch)
tree: 5ac32b9a4de41f91dc1d44e2b52008c5c3ac4e6f /data/CVE/list.2022
parent: 61de3b440b747e55962164447f6389b877c886ab (diff)
1 files changed, 6 insertions, 2 deletions
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index d764664e6a..5e0471e83e 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -3797,8 +3797,6 @@ CVE-2022-21826
 	RESERVED
 CVE-2022-21825
 	RESERVED
-CVE-2022-21824
-	RESERVED
 CVE-2022-21823 (A insecure storage of sensitive information vulnerability exists in Iv ...)
 	NOT-FOR-US: Ivanti
 CVE-2022-21822
@@ -3861,6 +3859,12 @@ CVE-2022-21148
 	RESERVED
 CVE-2022-21135
 	RESERVED
+CVE-2022-21824 [Prototype pollution via console.table properties]
+	RESERVED
+	- nodejs <unfixed>
+	[stretch] - nodejs <end-of-life> (Nodejs in stretch not covered by security support)
+	NOTE: https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/#prototype-pollution-via-console-table-properties-low-cve-2022-21824
+	NOTE: https://github.com/nodejs/node/commit/be69403528da99bf3df9e1dc47186f18ba59cb5e (v12.x)
 CVE-2022-21240
 	RESERVED
 CVE-2022-21237
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-18 07:31:20 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-18 07:31:20 +0100
commit	d1263b264dff79ddb08411672664e947fc6f0cfe (patch)
tree	5ac32b9a4de41f91dc1d44e2b52008c5c3ac4e6f /data/CVE/list.2022
parent	61de3b440b747e55962164447f6389b877c886ab (diff)