On 03/12/15 13:12, Stephen Gallagher wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 12/03/2015 08:06 AM, Zuzana Svetlikova wrote:
There is a CVE, I am not sure if we have the fixed sources
already.
https://nodejs.org/en/blog/vulnerability/cve-2015-8027_cve-2015-6764/
OK, looking into it, it seems that they haven't released the updated
packages or actually lifted the embargo yet. I'll keep an eye on it.
They moved it from yesterday to tomorrow it seems:
https://nodejs.org/en/blog/vulnerability/december-2015-security-release-update/
Tom
--
Tom Hughes ([email protected])
http://compton.nu/
_______________________________________________
nodejs mailing list
[email protected]
http://lists.fedoraproject.org/admin/lists/[email protected]
