Versions in Bionic, Focal and Jammy are vulnerable to CVE-2022-24785 and CVE-2022-31129
Bug #1982617 reported by
Luís Infante da Câmara
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
node-moment (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Undecided
|
Unassigned | ||
Jammy |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
The versions in Bionic, Focal and Jammy are vulnerable to CVE-2022-24785 and CVE-2022-31129.
Please release patched packages.
I will forward these patches to Debian.
CVE References
information type: | Public → Public Security |
Changed in node-moment (Ubuntu): | |
status: | New → Incomplete |
Changed in node-moment (Ubuntu Bionic): | |
status: | New → Confirmed |
Changed in node-moment (Ubuntu Focal): | |
status: | New → Confirmed |
Changed in node-moment (Ubuntu Jammy): | |
status: | New → Confirmed |
Changed in node-moment (Ubuntu): | |
status: | Fix Committed → Fix Released |
assignee: | Nishit Majithia (0xnishit) → nobody |
To post a comment you must log in.
The attachment "node-moment_ bionic. debdiff" seems to be a debdiff. The ubuntu-sponsors team has been subscribed to the bug report so that they can review and hopefully sponsor the debdiff. If the attachment isn't a patch, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are member of the ~ubuntu-sponsors, unsubscribe the team.
[This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issue please contact him.]