diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-25 22:08:45 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-25 22:08:45 +0100 |
| commit | 5910f60d8bdca9168d625e551f6ceb2754843e09 (patch) | |
| tree | 34f7e68715c69a61af2862092a55482c89068bac | |
| parent | 23c19f786c8dc4d47a5c3e7e01e56c73e4045458 (diff) | |
CVE-2021-23567: Clarify that the referenced commit is introducing the issue
| -rw-r--r-- | data/CVE/2021.list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 791332a5e2..9a44002772 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -56326,7 +56326,7 @@ CVE-2021-23568 (The package extend2 before 1.0.1 are vulnerable to Prototype Pol CVE-2021-23567 (The package colors after 1.4.0 are vulnerable to Denial of Service (Do ...) - colors.js <not-affected> (Vulnerable code never in a released Debian version) NOTE: https://github.com/Marak/colors.js/issues/285 - NOTE: https://github.com/Marak/colors.js/commit/074a0f8ed0c31c35d13d28632bd8a049ff136fb6 + NOTE: Introduced with: https://github.com/Marak/colors.js/commit/074a0f8ed0c31c35d13d28632bd8a049ff136fb6 CVE-2021-23566 (The package nanoid before 3.1.31 are vulnerable to Information Exposur ...) NOT-FOR-US: Node nanoid (NaN0-1D) CVE-2021-23565 |