Le samedi 20 décembre 2014 à 22:07 -0500, Michael Gilbert a écrit :
package: src:nodejs
CVE-2014-7192[0],[1]:
| Eval injection vulnerability in index.js in the syntax-error package
| before 1.1.1 for Node.js 0.10.x, as used in IBM Rational Application
| Developer and other products, allows
Hi Mike,
First, I had to cancel the upload because of too strict reverse
dependencies. Dear fellow JavaScript maintainers please figure out a
less strict dependency graph because every otherwise fully compatible
libv8 update would break several packages.
2014-12-21 2:13 GMT+01:00 Michael Gilbert
Le dimanche 21 décembre 2014 à 15:11 +0100, Bálint Réczey a écrit :
Hi Mike,
First, I had to cancel the upload because of too strict reverse
dependencies. Dear fellow JavaScript maintainers please figure out a
less strict dependency graph because every otherwise fully compatible
libv8
Hi Jérémy,
2014-12-21 15:19 GMT+01:00 Jérémy Lal kapo...@melix.org:
Le dimanche 21 décembre 2014 à 15:11 +0100, Bálint Réczey a écrit :
Hi Mike,
First, I had to cancel the upload because of too strict reverse
dependencies. Dear fellow JavaScript maintainers please figure out a
less strict
On Sun, Dec 21, 2014 at 5:31 AM, Jérémy Lal wrote:
Le samedi 20 décembre 2014 à 22:07 -0500, Michael Gilbert a écrit :
package: src:nodejs
CVE-2014-7192[0],[1]:
| Eval injection vulnerability in index.js in the syntax-error package
| before 1.1.1 for Node.js 0.10.x, as used in IBM Rational
package: src:libv8-3.14
severity: grave
tags: security
Hi,
the following vulnerabilities were published for libv8-3.14.
CVE-2013-2632[0]:
| Google V8 before 3.17.13, as used in Google Chrome before 27.0.1444.3,
| allows remote attackers to cause a denial of service (application
| crash) or
Processing commands for cont...@bugs.debian.org:
reassign 773623 libv8-3.14
Bug #773623 [src:nodejs] nodejs: CVE-2014-7192
Bug reassigned from package 'src:nodejs' to 'libv8-3.14'.
Ignoring request to alter found versions of bug #773623 to the same values
previously set
Ignoring request to
Processing commands for cont...@bugs.debian.org:
severity 773623 grave
Bug #773623 [libv8-3.14] nodejs: CVE-2014-7192
Severity set to 'grave' from 'important'
thanks
Stopping processing here.
Please contact me if you need assistance.
--
773623: