diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-31 09:05:38 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-31 09:05:38 +0100 |
| commit | ca870c041b96ec84c43e14cfdea5c83519447ea6 (patch) | |
| tree | 030500edbe728f3eef29de26664aa6df06345be4 | |
| parent | 1f643b76da5ff90ccee6c8393a4c2bba7c24a378 (diff) | |
Add CVE-2021-42740/node-shell-quote
| -rw-r--r-- | data/CVE/2021.list | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 4b2052cd36..ddf4f55734 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -752,7 +752,8 @@ CVE-2021-42742 CVE-2021-42741 RESERVED CVE-2021-42740 (The shell-quote package before 1.7.3 for Node.js allows command inject ...) - TODO: check + - node-shell-quote <unfixed> + NOTE: https://github.com/substack/node-shell-quote/commit/5799416ed454aa4ec9afafc895b4e31760ea1abe (1.7.3) CVE-2021-42739 (The firewire subsystem in the Linux kernel through 5.14.13 has a buffe ...) - linux <unfixed> NOTE: https://seclists.org/oss-sec/2021/q2/46 |