Neil Williams pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2cddbf30 by Neil Williams at 2022-05-27T10:47:50+01:00
Angular is the replacement for angular.js
angular.js is not affected, vulnerable code is not present
No ITP/RFP exists for angular/angular
Angular is not a drop-in replacement for angular.js,
migrations in reverse deps would be required.
Node/NPM & upstream ceased support for angularJS in Jan 2022.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -369,7 +369,8 @@ CVE-2022-1889
CVE-2022-1888
RESERVED
CVE-2021-4231 (A vulnerability was found in Angular up to
11.0.4/11.1.0-next.2. It ha ...)
- TODO: check
+ NOT-FOR-US: angular/angular - replacement for deprecated angularjs
+ NOTE: AngularJS upstream support has officially ended as of January 2022
CVE-2022-31619
RESERVED
CVE-2022-1887
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2cddbf30bc8450e059b0232f3810a9a35310b053
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2cddbf30bc8450e059b0232f3810a9a35310b053
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
