FEDORA-2020-5eca570e16 created by sdgathman 4 days ago for Fedora 31
testing

New upstream release with bug and security fixes. Also, consolidates duplicate pakages marked and nodejs-marked. I tested upgrades from both, but may have missed some wonky situation.

How to install

sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2020-5eca570e16

This update has been submitted for testing by sdgathman.

4 days ago

This update's test gating status has been changed to 'waiting'.

4 days ago

This update's test gating status has been changed to 'ignored'.

4 days ago

This update has been pushed to testing.

4 days ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
4 days ago
in testing
4 days ago
days to stable
3
BZ#1185162 NodeJS marked: VBScript Content Injection [epel-all]
0
0
BZ#1186221 marked-1.1.0 is available
0
0
BZ#1328407 CVE-2016-1000013 marked: sanitization bypass using HTML [epel-6]
0
0
BZ#1328408 CVE-2016-1000013 marked: sanitization bypass using HTML [epel-7]
0
0
BZ#1329535 CVE-2015-8854 marked: regular expression denial of service [epel-6]
0
0
BZ#1329537 CVE-2015-8854 marked: regular expression denial of service [epel-7]
0
0
BZ#1417926 CVE-2017-1000427 marked: Cross-site scripting via Data URIs [epel-7]
0
0
BZ#1417927 CVE-2017-1000427 marked: Cross-site scripting via Data URIs [fedora-all]
0
0
BZ#1417928 CVE-2017-1000427 marked: Cross-site scripting via Data URIs [epel-6]
0
0
BZ#1529729 marked: Cross-site Scripting (XSS) attacks via hexadecimal form of HTML [fedora-all]
0
0
BZ#1529730 marked: Cross-site Scripting (XSS) attacks via hexadecimal form of HTML [epel-all]
0
0
BZ#1529737 marked: Cross-site Scripting (XSS) via autolink with mangling disabled [fedora-all]
0
0
BZ#1529738 marked: Cross-site Scripting (XSS) via autolink with mangling disabled [epel-all]
0
0
BZ#1550778 marked: Regular expression denial of service in marked.js [epel-all]
0
0
BZ#1550779 marked: Regular expression denial of service in marked.js [fedora-all]
0
0
BZ#1702320 marked: Regular expression denial of service in inline.text regex [epel-all]
0
0

Automated Test Results