Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
523809fe by Salvatore Bonaccorso at 2025-11-14T22:23:24+01:00
Add Debian bug reference for node-js-yaml issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -211,7 +211,7 @@ CVE-2025-64738 (External control of file name or path in
Zoom Workplace for macO
CVE-2025-64726 (Socket Firewall is an HTTP/HTTPS proxy server that intercepts
package ...)
NOT-FOR-US: Socket Firewall
CVE-2025-64718 (js-yaml is a JavaScript YAML parser and dumper. In js-yaml
4.1.0 and b ...)
- - node-js-yaml <unfixed>
+ - node-js-yaml <unfixed> (bug #1120696)
NOTE:
https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m
NOTE: Fixed by:
https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879
(4.1.1)
CVE-2025-64717 (ZITADEL is an open source identity management platform.
Starting in ve ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/523809fe012fae0e1e494899b7ad562183e3586b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/523809fe012fae0e1e494899b7ad562183e3586b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
