Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 8c660f00 by Salvatore Bonaccorso at 2019-07-26T13:31:16Z Add Debian bug reference for CVE-2019-10744/node-lodash - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -9817,7 +9817,7 @@ CVE-2019-10746 [prototype pollution] CVE-2019-10745 RESERVED CVE-2019-10744 (Versions of lodash lower than 4.17.12 are vulnerable to Prototype Poll ...) - - node-lodash <unfixed> + - node-lodash <unfixed> (bug #933079) [buster] - node-lodash <no-dsa> (Minor issue; can be fixed in point release) [stretch] - node-lodash <ignored> (Nodejs in stretch not covered by security support) NOTE: https://snyk.io/vuln/SNYK-JS-LODASH-450202 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8c660f0009ac9a890e12ee46b1be32f1665698ad -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8c660f0009ac9a890e12ee46b1be32f1665698ad You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits