Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2bbd0d29 by Moritz Muehlenhoff at 2022-07-13T10:53:05+02:00
wavpack fixed in sid
node-moment no-dsa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11922,6 +11922,8 @@ CVE-2022-31130
RESERVED
CVE-2022-31129 (moment is a JavaScript date library for parsing, validating,
manipulat ...)
- node-moment <unfixed> (bug #1014845)
+ [bullseye] - node-moment <no-dsa> (Minor issue)
+ [buster] - node-moment <no-dsa> (Minor issue)
NOTE:
https://github.com/moment/moment/commit/9a3b5894f3d5d602948ac8a02e4ee528a49ca3a3
(2.29.4)
NOTE: https://github.com/moment/moment/pull/6015#issuecomment-1152961973
NOTE:
https://github.com/moment/moment/security/advisories/GHSA-wc69-rhjr-hc9g
@@ -45998,7 +46000,7 @@ CVE-2021-44271
CVE-2021-44270
RESERVED
CVE-2021-44269 (An out of bounds read was found in Wavpack 5.4.0 in processing
*.WAV f ...)
- - wavpack <unfixed> (unimportant)
+ - wavpack 5.5.0-1 (unimportant)
NOTE: https://github.com/dbry/WavPack/issues/110
NOTE: Fixed by:
https://github.com/dbry/WavPack/commit/773f9d0803c6888ae7d5391878d7337f24216f4a
NOTE: Negligible security impact; only impacts the CLI program
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bbd0d2988470553bbe74f2e26fc15a07265a6c1
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bbd0d2988470553bbe74f2e26fc15a07265a6c1
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
