Bug#994829: buster-pu: package node-prismjs/1.11.0+dfsg-3+deb10u1

To: Yadd <yadd@debian.org>, 994829@bugs.debian.org
Subject: Bug#994829: buster-pu: package node-prismjs/1.11.0+dfsg-3+deb10u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Thu, 30 Sep 2021 20:33:02 +0100
Message-id: <[🔎] 01345a753127bad79baea90d8b8bb49afb509395.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 994829@bugs.debian.org
In-reply-to: <[🔎] 163222897292.690854.16371407126524244900.reportbug@deb007.xnr.fr>
References: <[🔎] 163222897292.690854.16371407126524244900.reportbug@deb007.xnr.fr> <[🔎] 163222897292.690854.16371407126524244900.reportbug@deb007.xnr.fr>

Control: tags -1 + moreinfo

On Tue, 2021-09-21 at 14:56 +0200, Yadd wrote:
> node-prismjs is vulnerable to a Regex Denial of Service (ReDoS)
> (CVE-2021-40438)
> 

As with the bullseye request, that appears to be the wrong CVE number.

Regards,

Adam

Reply to:

References:
- Bug#994829: buster-pu: package node-prismjs/1.11.0+dfsg-3+deb10u1
  - From: Yadd <yadd@debian.org>

Prev by Date: Bug#995144: bullseye-pu: package jailkit/2.21-4+deb11u1
Next by Date: Processed: Re: Bug#994829: buster-pu: package node-prismjs/1.11.0+dfsg-3+deb10u1
Previous by thread: Bug#994829: buster-pu: package node-prismjs/1.11.0+dfsg-3+deb10u1
Next by thread: Processed: Re: Bug#994829: buster-pu: package node-prismjs/1.11.0+dfsg-3+deb10u1
Index(es):
- Date
- Thread