diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2022-02-21 21:02:24 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-02-21 21:02:24 +0100 |
commit | c8da9bb6a0909654c8894eeed6df43317932a5fe (patch) | |
tree | 5f70d7fc7ea64532b7e450e69bb7558dbdedd8d1 | |
parent | 9044e923d09150f07afa3a264fa382784471c037 (diff) |
Track fixed version for CVE-2022-0686/node-url-parse via unstable
-rw-r--r-- | data/CVE/2022.list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/2022.list b/data/CVE/2022.list index 0570c2b0e5..41d446fa17 100644 --- a/data/CVE/2022.list +++ b/data/CVE/2022.list @@ -487,7 +487,7 @@ CVE-2022-0688 (Business Logic Errors in Packagist microweber/microweber prior to CVE-2022-0687 RESERVED CVE-2022-0686 (Authorization Bypass Through User-Controlled Key in NPM url-parse prio ...) - - node-url-parse <unfixed> + - node-url-parse 1.5.9+~1.4.8-1 NOTE: https://huntr.dev/bounties/55fd06cd-9054-4d80-83be-eb5a454be78c NOTE: https://github.com/unshiftio/url-parse/commit/d5c64791ef496ca5459ae7f2176a31ea53b127e5 (1.5.8) CVE-2022-0685 (Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior ...) |