node-turndown - Debian Package Tracker

general

versioned links

7.1.1-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7.2.2+~2.2.0~git20240406-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

action needed

1 security issue in forky high

1 important issue:

CVE-2025-9670: A security flaw has been discovered in mixmark-io turndown up to 7.2.1. This affects an unknown function of the file src/commonmark-rules.js. Performing manipulation results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited.

Created: 2025-08-30 Last update: 2025-10-26 18:30

Multiarch hinter reports 1 issue(s) normal

There are issues with the multiarch metadata for this package.

Created: 2022-01-26 Last update: 2025-10-27 10:02

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2025-10-26 Last update: 2025-10-26 21:31

1 low-priority security issue in trixie low

1 issue left for the package maintainer to handle:

CVE-2025-9670: (needs triaging) A security flaw has been discovered in mixmark-io turndown up to 7.2.1. This affects an unknown function of the file src/commonmark-rules.js. Performing manipulation results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-30 Last update: 2025-10-26 18:30

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2025-9670: (needs triaging) A security flaw has been discovered in mixmark-io turndown up to 7.2.1. This affects an unknown function of the file src/commonmark-rules.js. Performing manipulation results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-30 Last update: 2025-10-26 18:30

testing migrations

[2025-10-26] Accepted node-turndown 7.2.2+~2.2.0~git20240406-2 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2025-10-25] Accepted node-turndown 7.2.2+~2.2.0~git20240406-1 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2022-11-02] node-turndown 7.1.1-3 MIGRATED to testing (Debian testing watch)
[2022-10-28] Accepted node-turndown 7.1.1-3 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2022-02-14] node-turndown 7.1.1-2 MIGRATED to testing (Debian testing watch)
[2022-02-08] Accepted node-turndown 7.1.1-2 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2022-01-25] Accepted node-turndown 7.1.1-1 (source all) into unstable, unstable (Debian FTP Masters) (signed by: Julien Puydt)

bugs [bug history graph]

links

ubuntu