Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b247a179 by Moritz Muehlenhoff at 2021-06-27T11:56:08+02:00
new node-color-string issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15271,11 +15271,13 @@ CVE-2021-29063 (A Regular Expression Denial of
Service (ReDOS) vulnerability was
CVE-2021-29062
RESERVED
CVE-2021-29061 (A Regular Expression Denial of Service (ReDOS) vulnerability
was disco ...)
- TODO: check
+ NOT-FOR-US: Vfsjfilechooser2
CVE-2021-29060 (A Regular Expression Denial of Service (ReDOS) vulnerability
was disco ...)
- TODO: check
+ - node-color-string <unfixed>
+ NOTE:
https://github.com/yetingli/PoCs/blob/main/CVE-2021-29060/Color-String.md
+ NOTE:
https://github.com/Qix-/color-string/commit/0789e21284c33d89ebc4ab4ca6f759b9375ac9d3
CVE-2021-29059 (A vulnerability was discovered in IS-SVG version 4.3.1 and
below where ...)
- TODO: check
+ NOT-FOR-US: Node is-svg
CVE-2021-29058
RESERVED
CVE-2021-29057
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b247a17949e7387440934403a1820ca5e3ea1229
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b247a17949e7387440934403a1820ca5e3ea1229
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
