Bug#1032921: bullseye-pu: package node-webpack/4.43.0-6+deb11u1

To: Yadd <yadd@debian.org>, 1032921@bugs.debian.org
Subject: Bug#1032921: bullseye-pu: package node-webpack/4.43.0-6+deb11u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 01 Apr 2023 19:58:47 +0100
Message-id: <[🔎] c5897fc1c7be469859b15f53668e8123e314a434.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1032921@bugs.debian.org
In-reply-to: <167876649815.1594035.6168086723274278235.reportbug@debian007.xnr.fr>
References: <167876649815.1594035.6168086723274278235.reportbug@debian007.xnr.fr> <167876649815.1594035.6168086723274278235.reportbug@debian007.xnr.fr>

Control: tags -1 + confirmed

On Tue, 2023-03-14 at 08:01 +0400, Yadd wrote:
> node-webpack is vulnerable to cross-realm object access
> (#1032904, CVE-2023-28154)
> 

Please go ahead.

Regards,

Adam

Reply to:

Prev by Date: Processed: Re: Bug#1033578: bullseye-pu: package joblib/0.17.0-4+deb11u1
Next by Date: Processed: Re: Bug#1032921: bullseye-pu: package node-webpack/4.43.0-6+deb11u1
Previous by thread: Bug#1033759: bullseye-pu: duktape/2.5.0-2+deb11u1
Next by thread: Processed: Re: Bug#1032921: bullseye-pu: package node-webpack/4.43.0-6+deb11u1
Index(es):
- Date
- Thread