[Git][security-tracker-team/security-tracker][master] ckeditor fixed

Moritz Muehlenhoff (@jmm) Sun, 17 Jul 2022 10:22:17 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
3eb9ccc0 by Moritz Muehlenhoff at 2022-07-17T19:17:18+02:00
ckeditor fixed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31673,12 +31673,12 @@ CVE-2022-24731 (Argo CD is a declarative, GitOps 
continuous delivery tool for Ku
 CVE-2022-24730 (Argo CD is a declarative, GitOps continuous delivery tool for 
Kubernet ...)
        NOT-FOR-US: Argo CD
 CVE-2022-24729 (CKEditor4 is an open source what-you-see-is-what-you-get HTML 
editor.  ...)
-       - ckeditor <unfixed>
+       - ckeditor 4.19.0+dfsg-1
        - ckeditor3 <unfixed>
        [stretch] - ckeditor3 <end-of-life> (EOL'd for stretch)
        NOTE: 
https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-f6rf-9m92-x2hh
 CVE-2022-24728 (CKEditor4 is an open source what-you-see-is-what-you-get HTML 
editor.  ...)
-       - ckeditor <unfixed>
+       - ckeditor 4.19.0+dfsg-1
        - ckeditor3 <unfixed>
        [stretch] - ckeditor3 <end-of-life> (EOL'd for stretch)
        NOTE: 
https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-4fc4-4p5g-6w89
@@ -58800,7 +58800,7 @@ CVE-2021-41167 (modern-async is an open source 
JavaScript tooling library for as
 CVE-2021-41166 (The Nextcloud Android app is the Android client for Nextcloud, 
a self- ...)
        NOT-FOR-US: Nextcloud Android app
 CVE-2021-41165 (CKEditor4 is an open source WYSIWYG HTML editor. In affected 
version a ...)
-       - ckeditor <unfixed> (bug #999909)
+       - ckeditor 4.19.0+dfsg-1 (bug #999909)
        [bullseye] - ckeditor <no-dsa> (Minor issue)
        [buster] - ckeditor <no-dsa> (Minor issue)
        [stretch] - ckeditor <no-dsa> (Minor issue)
@@ -58808,7 +58808,7 @@ CVE-2021-41165 (CKEditor4 is an open source WYSIWYG 
HTML editor. In affected ver
        [stretch] - ckeditor3 <end-of-life> (EOL'd for stretch)
        NOTE: 
https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7h26-63m7-qhf2 
(v4.17.0)
 CVE-2021-41164 (CKEditor4 is an open source WYSIWYG HTML editor. In affected 
versions  ...)
-       - ckeditor <unfixed> (bug #999909)
+       - ckeditor 4.19.0+dfsg-1 (bug #999909)
        [bullseye] - ckeditor <no-dsa> (Minor issue)
        [buster] - ckeditor <no-dsa> (Minor issue)
        [stretch] - ckeditor <no-dsa> (Minor issue)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3eb9ccc0a2a0858ec8c364ef0dfe6fa34bcbe6ce

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3eb9ccc0a2a0858ec8c364ef0dfe6fa34bcbe6ce
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] ckeditor fixed

Reply via email to