Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
97b03a4d by Salvatore Bonaccorso at 2024-11-04T20:35:19+01:00
Mark node-matrix-js-sdk as removed from unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -127676,7 +127676,7 @@ CVE-2023-28428 (PDFio is a C library for reading and
writing PDF files. In versi
NOTE:
https://github.com/michaelrsweet/pdfio/security/advisories/GHSA-68x8-9phf-j7jf
CVE-2023-28427 (matrix-js-sdk is a Matrix messaging protocol Client-Server SDK
for Jav ...)
{DSA-5392-1 DLA-3400-1}
- - node-matrix-js-sdk <unfixed> (bug #1033621)
+ - node-matrix-js-sdk <removed> (bug #1033621)
[bullseye] - node-matrix-js-sdk <no-dsa> (Minor issue)
[buster] - node-matrix-js-sdk <no-dsa> (Minor issue)
- thunderbird 1:102.9.1-1
@@ -176463,21 +176463,21 @@ CVE-2022-39253 (Git is an open source, scalable,
distributed revision control sy
CVE-2022-39252 (matrix-rust-sdk is an implementation of a Matrix client-server
library ...)
NOT-FOR-US: matrix-rust-sdk
CVE-2022-39251 (Matrix Javascript SDK is the Matrix Client-Server SDK for
JavaScript. ...)
- - node-matrix-js-sdk <unfixed> (bug #1021136)
+ - node-matrix-js-sdk <removed> (bug #1021136)
[bullseye] - node-matrix-js-sdk <ignored> (Incompatible with current
Matrix implementations)
[buster] - node-matrix-js-sdk <postponed> (Can wait for next update)
NOTE:
https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-r48r-j8fx-mq2c
NOTE:
https://github.com/matrix-org/matrix-js-sdk/commit/a587d7c36026fe1fcf93dfff63588abee359be76
NOTE:
https://matrix.org/blog/2022/09/28/upgrade-now-to-address-encryption-vulns-in-matrix-sdks-and-clients
CVE-2022-39250 (Matrix JavaScript SDK is the Matrix Client-Server software
development ...)
- - node-matrix-js-sdk <unfixed> (bug #1021136)
+ - node-matrix-js-sdk <removed> (bug #1021136)
[bullseye] - node-matrix-js-sdk <ignored> (Incompatible with current
Matrix implementations)
[buster] - node-matrix-js-sdk <postponed> (Can wait for next update)
NOTE:
https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-5w8r-8pgj-5jmf
NOTE:
https://github.com/matrix-org/matrix-js-sdk/commit/a587d7c36026fe1fcf93dfff63588abee359be76
NOTE:
https://matrix.org/blog/2022/09/28/upgrade-now-to-address-encryption-vulns-in-matrix-sdks-and-clients
CVE-2022-39249 (Matrix Javascript SDK is the Matrix Client-Server SDK for
JavaScript. ...)
- - node-matrix-js-sdk <unfixed> (bug #1021136)
+ - node-matrix-js-sdk <removed> (bug #1021136)
[bullseye] - node-matrix-js-sdk <ignored> (Incompatible with current
Matrix implementations)
[buster] - node-matrix-js-sdk <postponed> (Can wait for next update)
NOTE:
https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-6263-x97c-c4gg
@@ -176519,7 +176519,7 @@ CVE-2022-39237 (syslabs/sif is the Singularity Image
Format (SIF) reference impl
NOTE:
https://github.com/sylabs/sif/commit/21972852d8783bc93fbf080190de8e1978f1c254
(v2.8.1)
NOTE:
https://github.com/sylabs/sif/commit/a854038ce1f18237b81d505a1c3be6a60505db52
(v2.8.1)
CVE-2022-39236 (Matrix Javascript SDK is the Matrix Client-Server SDK for
JavaScript. ...)
- - node-matrix-js-sdk <unfixed> (bug #1021136)
+ - node-matrix-js-sdk <removed> (bug #1021136)
[bullseye] - node-matrix-js-sdk <ignored> (Incompatible with current
Matrix implementations)
[buster] - node-matrix-js-sdk <postponed> (Minor issue)
NOTE:
https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-hvv8-5v86-r45x
@@ -185575,7 +185575,7 @@ CVE-2022-36061 (Elrond go is the go implementation
for the Elrond Network protoc
CVE-2022-36060 (matrix-react-sdk is a Matrix chat protocol SDK for React
Javascript. E ...)
NOT-FOR-US: matrix-react-sdk
CVE-2022-36059 (matrix-js-sdk is a Matrix messaging protocol Client-Server SDK
for Jav ...)
- - node-matrix-js-sdk <unfixed> (bug #1018970)
+ - node-matrix-js-sdk <removed> (bug #1018970)
[bullseye] - node-matrix-js-sdk <no-dsa> (Minor issue)
[buster] - node-matrix-js-sdk <no-dsa> (Minor issue)
- thunderbird 1:102.2.1-1
@@ -246996,7 +246996,7 @@ CVE-2021-40824 (A logic error in the room key sharing
functionality of Element A
NOT-FOR-US: matrix-android-sdk2
CVE-2021-40823 (A logic error in the room key sharing functionality of
matrix-js-sdk ( ...)
- element-web <itp> (bug #866502)
- - node-matrix-js-sdk <unfixed> (bug #994213)
+ - node-matrix-js-sdk <removed> (bug #994213)
[bullseye] - node-matrix-js-sdk <no-dsa> (Minor issue)
[buster] - node-matrix-js-sdk <no-dsa> (Minor issue)
NOTE:
https://matrix.org/blog/2021/09/13/vulnerability-disclosure-key-sharing/
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/97b03a4df713a94eb82c18a440a3b867935941b4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/97b03a4df713a94eb82c18a440a3b867935941b4
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
