View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0030772 | mantisbt | security | public | 2022-07-10 14:01 | 2023-02-22 19:21 |
| Reporter | dregad | Assigned To | dregad | ||
| Priority | high | Severity | minor | Reproducibility | have not tried |
| Status | closed | Resolution | fixed | ||
| Target Version | 2.25.6 | Fixed in Version | 2.25.6 | ||
| Summary | 0030772: Update moment.js to 2.29.4 | ||||
| Description | Versions >= 2.18.0, < 2.29.4 are affected by a vulnerability, see CVE-2022-31129 and https://github.com/mantisbt/mantisbt/security/dependabot/8 | ||||
| Tags | No tags attached. | ||||
|
MantisBT: master-2.25 b7b2a8a3 2022-07-10 14:03 Details Diff |
Update moment.js library to 2.29.4 Version 2.29.3 was exposed to a known vulnerability, see CVE-2022-31129 and https://github.com/mantisbt/mantisbt/security/dependabot/8. Fixes 0030772 |
Affected Issues 0030772 |
|
| mod - core/constant_inc.php | Diff File | ||
| rm - js/moment-with-locales-2.29.3.min.js | Diff | ||
| add - js/moment-with-locales-2.29.4.min.js | Diff File | ||
| mod - library/README.md | Diff File | ||
