Bug#1024745: bullseye-pu: package node-xmldom/0.5.0-1+deb11u2

To: Yadd <yadd@debian.org>, 1024745@bugs.debian.org
Subject: Bug#1024745: bullseye-pu: package node-xmldom/0.5.0-1+deb11u2
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Wed, 07 Dec 2022 20:25:21 +0000
Message-id: <[🔎] fb2165954184017fda6708696e3338a4582fe0ab.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1024745@bugs.debian.org
In-reply-to: <166927839276.3104309.706023698688022018.reportbug@debian007.xnr.fr>
References: <166927839276.3104309.706023698688022018.reportbug@debian007.xnr.fr> <166927839276.3104309.706023698688022018.reportbug@debian007.xnr.fr>

Control: tags -1 + confirmed

On Thu, 2022-11-24 at 09:26 +0100, Yadd wrote:
> node-xmldom is vulnerable: it doesn't verify that root element is
> uniq
> (#1024736, CVE-2022-39353)
> 

Please go ahead.

Regards,

Adam

Reply to:

Prev by Date: Processed: Re: Bug#1024850: bullseye-pu: package spf-engine/2.9.2-1
Next by Date: Processed: Re: Bug#1024745: bullseye-pu: package node-xmldom/0.5.0-1+deb11u2
Previous by thread: Bug#1024850: bullseye-pu: package spf-engine/2.9.2-1
Next by thread: Processed: Re: Bug#1024745: bullseye-pu: package node-xmldom/0.5.0-1+deb11u2
Index(es):
- Date
- Thread