Bug#1006215: bullseye-pu: package node-prismjs/1.23.0+dfsg-1+deb11u1

To: Yadd <yadd@debian.org>
Cc: 1006215@bugs.debian.org
Subject: Bug#1006215: bullseye-pu: package node-prismjs/1.23.0+dfsg-1+deb11u1
From: Moritz Mühlenhoff <jmm@inutil.org>
Date: Wed, 23 Feb 2022 22:27:33 +0100
Message-id: <[🔎] Yhamxa2EzwjeI331@pisco.westfalen.local>
Reply-to: Moritz Mühlenhoff <jmm@inutil.org>, 1006215@bugs.debian.org
In-reply-to: <[🔎] 164544827432.462558.1504147728389034487.reportbug@debian007.xnr.fr>
References: <[🔎] 164544827432.462558.1504147728389034487.reportbug@debian007.xnr.fr> <[🔎] 164544827432.462558.1504147728389034487.reportbug@debian007.xnr.fr>

Am Mon, Feb 21, 2022 at 01:57:54PM +0100 schrieb Yadd:
> Package: release.debian.org
> Severity: normal
> Tags: bullseye
> User: release.debian.org@packages.debian.org
> Usertags: pu
> 
> [ Reason ]
> node-prismjs has 2 vulnerabilities:
>  * Regex DoS (CVE-2021-40438)

Where did you get that CVE reference from? CVE-2021-40438 is for a
mod_proxy vulnerability in Apache httpd?

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Bug#1006215: bullseye-pu: package node-prismjs/1.23.0+dfsg-1+deb11u1
  - From: Salvatore Bonaccorso <carnil@debian.org>

References:
- Bug#1006215: bullseye-pu: package node-prismjs/1.23.0+dfsg-1+deb11u1
  - From: Yadd <yadd@debian.org>

Prev by Date: Processed: Re: Bug#1006212: transition: trilinos
Next by Date: Bug#1006215: bullseye-pu: package node-prismjs/1.23.0+dfsg-1+deb11u1
Previous by thread: Bug#1006215: bullseye-pu: package node-prismjs/1.23.0+dfsg-1+deb11u1
Next by thread: Bug#1006215: bullseye-pu: package node-prismjs/1.23.0+dfsg-1+deb11u1
Index(es):
- Date
- Thread