Overview

File _patchinfo of Package patchinfo.32215

<patchinfo incident="32215">
  <issue tracker="ijsc" id="MSQA-719"/>
  <issue tracker="cve" id="2021-43138"/>
  <issue tracker="cve" id="2021-3807"/>
  <issue tracker="cve" id="2022-0155"/>
  <issue tracker="cve" id="2020-7753"/>
  <issue tracker="cve" id="2021-3918"/>
  <issue tracker="bnc" id="1192696">VUL-0: CVE-2021-3918: nodejs14, nodejs10, nodejs12, nodejs8: json-schema is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')</issue>
  <issue tracker="bnc" id="1218844">VUL-0: CVE-2022-0155: grafana: follow-redirects: Exposure of Private Personal Information to an Unauthorized Actor</issue>
  <issue tracker="bnc" id="1218843">VUL-0: CVE-2020-7753: grafana: nodejs-trim: Regular Expression Denial of Service (ReDoS) in trim function</issue>
  <issue tracker="bnc" id="1200480">VUL-0: CVE-2021-43138: spacewalk-web: a malicious user can obtain privileges via the mapValues() method</issue>
  <issue tracker="bnc" id="1192154">VUL-0: CVE-2021-3807: nodejs12,nodejs4,nodejs6,nodejs8,nodejs10,nodejs14: node-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes</issue>
  <packager>raulosuna</packager>
  <rating>moderate</rating>
  <category>recommended</category>
  <summary>Recommended update for grafana</summary>
  <description>This update for grafana fixes the following issues:

- Fixed changelog entries for the Bugzilla trackers related to previously implemented security fixes 
  (no source code changes)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places