Overview

File 0007-Update-dompurify-to-3.1.3.patch of Package velociraptor

From cb73b97b696501fde0de35e0a633171ab23a7520 Mon Sep 17 00:00:00 2001
From: Antonio Teixeira <antonio.teixeira@suse.com>
Date: Wed, 15 Jan 2025 18:08:38 -0300
Subject: [PATCH 07/11] Update dompurify to 3.1.3

Fixes CVE-2024-47875 (bsc#1231574)
---
 gui/velociraptor/package-lock.json | 15 ++++++++-------
 gui/velociraptor/package.json      |  2 +-
 2 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/gui/velociraptor/package-lock.json b/gui/velociraptor/package-lock.json
index 55140930..69c20d73 100644
--- a/gui/velociraptor/package-lock.json
+++ b/gui/velociraptor/package-lock.json
@@ -23,7 +23,7 @@
                 "classnames": "^2.3.2",
                 "csv-parse": "4.16.3",
                 "csv-stringify": "5.6.5",
-                "dompurify": "3.0.6",
+                "dompurify": "3.1.3",
                 "dotenv": "^8.6.0",
                 "env-cmd": "^10.1.0",
                 "hosted-git-info": "^2.8.9",
@@ -3494,9 +3494,10 @@
             }
         },
         "node_modules/dompurify": {
-            "version": "3.0.6",
-            "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.0.6.tgz",
-            "integrity": "sha512-ilkD8YEnnGh1zJ240uJsW7AzE+2qpbOUYjacomn3AvJ6J4JhKGSZ2nh4wUIXPZrEPppaCLx5jFe8T89Rk8tQ7w=="
+            "version": "3.1.3",
+            "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.1.3.tgz",
+            "integrity": "sha512-5sOWYSNPaxz6o2MUPvtyxTTqR4D3L77pr5rUQoWgD5ROQtVIZQgJkXbo1DLlK3vj11YGw5+LnF4SYti4gZmwng==",
+            "license": "(MPL-2.0 OR Apache-2.0)"
         },
         "node_modules/domutils": {
             "version": "1.7.0",
@@ -13676,9 +13677,9 @@
             }
         },
         "dompurify": {
-            "version": "3.0.6",
-            "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.0.6.tgz",
-            "integrity": "sha512-ilkD8YEnnGh1zJ240uJsW7AzE+2qpbOUYjacomn3AvJ6J4JhKGSZ2nh4wUIXPZrEPppaCLx5jFe8T89Rk8tQ7w=="
+            "version": "3.1.3",
+            "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.1.3.tgz",
+            "integrity": "sha512-5sOWYSNPaxz6o2MUPvtyxTTqR4D3L77pr5rUQoWgD5ROQtVIZQgJkXbo1DLlK3vj11YGw5+LnF4SYti4gZmwng=="
         },
         "domutils": {
             "version": "1.7.0",
diff --git a/gui/velociraptor/package.json b/gui/velociraptor/package.json
index f74af5a8..47bd6a96 100644
--- a/gui/velociraptor/package.json
+++ b/gui/velociraptor/package.json
@@ -19,7 +19,7 @@
         "classnames": "^2.3.2",
         "csv-parse": "4.16.3",
         "csv-stringify": "5.6.5",
-        "dompurify": "3.0.6",
+        "dompurify": "3.1.3",
         "dotenv": "^8.6.0",
         "env-cmd": "^10.1.0",
         "hosted-git-info": "^2.8.9",
-- 
2.46.1
openSUSE Build Service is sponsored by
Places