Back to bug 2230955

Who	When	What	Removed	Added
Mauro Matteo Cascella	2023-08-10 10:14:58 UTC	Blocks		2230962
Mauro Matteo Cascella	2023-08-10 10:16:26 UTC	Depends On		2230971, 2230968, 2230970, 2230969
Jan Houska	2023-08-21 12:30:33 UTC	CC		jhouska
		Assignee	nobody	zsvetlik
		QA Contact		jhouska
Jan Houska	2023-08-21 12:31:46 UTC	QA Contact	jhouska
		Assignee	zsvetlik	prodsec-ir-bot
Sandipan Roy	2023-08-22 07:11:26 UTC	Depends On		2233390, 2233389, 2233385, 2233392, 2233388, 2233393, 2233387, 2233384, 2233386, 2233391
Sandipan Roy	2023-08-22 07:13:44 UTC	Summary	TRIAGE-CVE-2023-32006 nodejs: Permissions policies can impersonate other modules in using module.constructor.createRequire()	CVE-2023-32006 nodejs: Permissions policies can impersonate other modules in using module.constructor.createRequire()
		Alias	TRIAGE-CVE-2023-32006	CVE-2023-32006
Sandipan Roy	2023-08-22 07:50:14 UTC	Doc Text		A vulnerability was found in NodeJS. This security issue occurs as the use of module.constructor.createRequire() can bypass the policy mechanism and require modules outside of the policy.json definition for a given module.
RHEL Program Management Team	2023-08-23 16:32:53 UTC	Depends On		2233895
RHEL Program Management Team	2023-08-23 16:32:59 UTC	Depends On		2233896
RHEL Program Management Team	2023-08-24 10:40:48 UTC	Depends On		2234406
RHEL Program Management Team	2023-08-24 10:42:05 UTC	Depends On		2234411
RHEL Program Management Team	2023-08-30 10:25:40 UTC	Depends On		2236092
Zuzana Svetlikova	2023-08-30 11:00:45 UTC	Depends On		2236104
RHEL Program Management Team	2023-08-30 12:35:55 UTC	Depends On		2236140
errata-xmlrpc	2023-09-26 14:50:42 UTC	Link ID		Red Hat Product Errata RHSA-2023:5361
errata-xmlrpc	2023-09-26 14:51:38 UTC	Link ID		Red Hat Product Errata RHSA-2023:5363
errata-xmlrpc	2023-09-26 14:52:10 UTC	Link ID		Red Hat Product Errata RHSA-2023:5360
errata-xmlrpc	2023-09-26 14:58:50 UTC	Link ID		Red Hat Product Errata RHSA-2023:5362

Back to bug 2230955