Hi Xavier,
On Thu, Sep 26, 2019 at 07:31:21AM +0200, Xavier wrote:
> Le 26/09/2019 à 07:12, Salvatore Bonaccorso a écrit :
> > Source: node-set-value
> > Version: 0.4.0-1
> > Severity: important
> > Tags: security upstream
> > Control: found -1 3.0.0-1
> >
> > Hi,
> >
> > The following vulnerabi
Le 26/09/2019 à 07:12, Salvatore Bonaccorso a écrit :
> Source: node-set-value
> Version: 0.4.0-1
> Severity: important
> Tags: security upstream
> Control: found -1 3.0.0-1
>
> Hi,
>
> The following vulnerability was published for node-set-value.
>
> CVE-2019-10747[0]:
> | set-value is vulnerab
Processing control commands:
> tag -1 pending
Bug #941189 [src:node-set-value] node-set-value: CVE-2019-10747
Added tag(s) pending.
--
941189: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941189
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
Pkg-javascript-devel
Processing control commands:
> found -1 3.0.0-1
Bug #941189 [src:node-set-value] node-set-value: CVE-2019-10747
Marked as found in versions node-set-value/3.0.0-1.
--
941189: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941189
Debian Bug Tracking System
Contact ow...@bugs.debian.org with pr
Source: node-set-value
Version: 0.4.0-1
Severity: important
Tags: security upstream
Control: found -1 3.0.0-1
Hi,
The following vulnerability was published for node-set-value.
CVE-2019-10747[0]:
| set-value is vulnerable to Prototype Pollution in versions lower than
| 3.0.1. The function mixin-d
On 2019, ഓഗസ്റ്റ് 7 11:21:46 PM IST, Pirate Praveen
wrote:
>
>
>On 2019, ഓഗസ്റ്റ് 7 10:20:06 PM IST, Xavier wrote:
>>things are more worst than previously said:
>> - rollup build depends on acorn and rollup-plugin-buble
>
>Last time we converted rollup to cjs with a patch, but that is
>cumbers
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Tue, 24 Sep 2019 06:49:04 +0200
Source: node-immutable
Binary: node-immutable
Architecture: source all
Version: 3.8.2+dfsg-1
Distribution: unstable
Urgency: low
Maintainer: Debian Javascript Maintainers
Changed-By: Pi
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Wed, 25 Sep 2019 21:43:41 +0200
Source: node-is-binary-path
Architecture: source
Version: 2.1.0-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Javascript Maintainers
Changed-By: Xavier Guimard
Changes:
node-is-binary-path_2.1.0-1_sourceonly.changes uploaded successfully to
localhost
along with the files:
node-is-binary-path_2.1.0-1.dsc
node-is-binary-path_2.1.0.orig.tar.gz
node-is-binary-path_2.1.0-1.debian.tar.xz
Greetings,
Your Debian queue daemon (running on host usper.debian.
Le 25/09/2019 à 09:40, Pirate Praveen a écrit :
> package: pkg-js-tools
> version: 0.9.13
> sevrrity: important
>
> $ add-node-component -if sha1
> Thread 1 terminated abnormally: Malformed upstream registry: JSON text
> must be an object or array (but found number, string, true, false or
> null,
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Wed, 25 Sep 2019 01:12:45 +0200
Source: node-ssri
Architecture: source
Version: 6.0.1-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Javascript Maintainers
Changed-By: Xavier Guimard
Changes:
node-s
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Wed, 25 Sep 2019 19:46:57 +0200
Source: node-end-of-stream
Architecture: source
Version: 1.4.4-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Javascript Maintainers
Changed-By: Xavier Guimard
Changes:
n
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Wed, 25 Sep 2019 05:24:58 +0200
Source: node-binary-extensions
Architecture: source
Version: 2.0.0-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Javascript Maintainers
Changed-By: Xavier Guimard
Changes
node-end-of-stream_1.4.4-1_sourceonly.changes uploaded successfully to localhost
along with the files:
node-end-of-stream_1.4.4-1.dsc
node-end-of-stream_1.4.4.orig.tar.gz
node-end-of-stream_1.4.4-1.debian.tar.xz
Greetings,
Your Debian queue daemon (running on host usper.debian.org)
node-binary-extensions_2.0.0-1_sourceonly.changes uploaded successfully to
localhost
along with the files:
node-binary-extensions_2.0.0-1.dsc
node-binary-extensions_2.0.0.orig.tar.gz
node-binary-extensions_2.0.0-1.debian.tar.xz
Greetings,
Your Debian queue daemon (running on host u
node-ssri_6.0.1-1_sourceonly.changes uploaded successfully to localhost
along with the files:
node-ssri_6.0.1-1.dsc
node-ssri_6.0.1.orig-figgy-pudding.tar.gz
node-ssri_6.0.1.orig.tar.gz
node-ssri_6.0.1-1.debian.tar.xz
Greetings,
Your Debian queue daemon (running on host usper.debi
package: pkg-js-tools
version: 0.9.13
sevrrity: important
$ add-node-component -if sha1
Thread 1 terminated abnormally: Malformed upstream registry: JSON text
must be an object or array (but found number, string, true, false or
null, use allow_nonref to allow this) at /usr/share/perl5/JSON.pm l
17 matches
Mail list logo