Control: notfound 927716 2.0.2-2
Hi Xavier,
On Fri, Apr 26, 2019 at 07:52:55PM +0200, Xavier wrote:
> Le 26/04/2019 à 19:40, Xavier a écrit :
> > [...]
> > Hello,
> >
> > The regex that causes CVE-2018-1109 was introduced in upstream version
> > 2.2.0, commit dcc1acab [1]. So Buster node-braces
Le 26/04/2019 à 19:40, Xavier a écrit :
> [...]
> Hello,
>
> The regex that causes CVE-2018-1109 was introduced in upstream version
> 2.2.0, commit dcc1acab [1]. So Buster node-braces seems not concerned by
> this CVE.
>
> https://snyk.io/vuln/npm:braces:20180219 extract :
>
>> braces is a
Le 21/04/2019 à 22:33, Moritz Muehlenhoff a écrit :
> Package: node-braces
> Severity: important
> Tags: security
>
> Please see https://snyk.io/vuln/npm:braces:20180219
>
> Patch:
> https://github.com/micromatch/braces/commit/abdafb0cae1e0c00f184abbadc692f4eaa98f451
>
> Cheers,
>
Le 21/04/2019 à 22:33, Moritz Muehlenhoff a écrit :
> Package: node-braces
> Severity: important
> Tags: security
>
> Please see https://snyk.io/vuln/npm:braces:20180219
>
> Patch:
> https://github.com/micromatch/braces/commit/abdafb0cae1e0c00f184abbadc692f4eaa98f451
>
> Cheers,
>
4 matches
Mail list logo
