[Pkg-javascript-devel] Bug#773623: nodejs: CVE-2014-7192

Le samedi 20 décembre 2014 à 22:07 -0500, Michael Gilbert a écrit : package: src:nodejs CVE-2014-7192[0],[1]: | Eval injection vulnerability in index.js in the syntax-error package | before 1.1.1 for Node.js 0.10.x, as used in IBM Rational Application | Developer and other products, allows

Re: [Pkg-javascript-devel] lowering severity of bugs not tracked by release team

Hi Mike, First, I had to cancel the upload because of too strict reverse dependencies. Dear fellow JavaScript maintainers please figure out a less strict dependency graph because every otherwise fully compatible libv8 update would break several packages. 2014-12-21 2:13 GMT+01:00 Michael Gilbert

Re: [Pkg-javascript-devel] lowering severity of bugs not tracked by release team

Le dimanche 21 décembre 2014 à 15:11 +0100, Bálint Réczey a écrit : Hi Mike, First, I had to cancel the upload because of too strict reverse dependencies. Dear fellow JavaScript maintainers please figure out a less strict dependency graph because every otherwise fully compatible libv8

Re: [Pkg-javascript-devel] lowering severity of bugs not tracked by release team

Hi Jérémy, 2014-12-21 15:19 GMT+01:00 Jérémy Lal kapo...@melix.org: Le dimanche 21 décembre 2014 à 15:11 +0100, Bálint Réczey a écrit : Hi Mike, First, I had to cancel the upload because of too strict reverse dependencies. Dear fellow JavaScript maintainers please figure out a less strict

[Pkg-javascript-devel] Bug#773623: nodejs: CVE-2014-7192

On Sun, Dec 21, 2014 at 5:31 AM, Jérémy Lal wrote: Le samedi 20 décembre 2014 à 22:07 -0500, Michael Gilbert a écrit : package: src:nodejs CVE-2014-7192[0],[1]: | Eval injection vulnerability in index.js in the syntax-error package | before 1.1.1 for Node.js 0.10.x, as used in IBM Rational

[Pkg-javascript-devel] Bug#773671: libv8-3.14: multiple security issues

package: src:libv8-3.14 severity: grave tags: security Hi, the following vulnerabilities were published for libv8-3.14. CVE-2013-2632[0]: | Google V8 before 3.17.13, as used in Google Chrome before 27.0.1444.3, | allows remote attackers to cause a denial of service (application | crash) or

[Pkg-javascript-devel] Processed: Re: Bug#773623: nodejs: CVE-2014-7192

Processing commands for cont...@bugs.debian.org: reassign 773623 libv8-3.14 Bug #773623 [src:nodejs] nodejs: CVE-2014-7192 Bug reassigned from package 'src:nodejs' to 'libv8-3.14'. Ignoring request to alter found versions of bug #773623 to the same values previously set Ignoring request to

[Pkg-javascript-devel] Processed: your mail

Processing commands for cont...@bugs.debian.org: severity 773623 grave Bug #773623 [libv8-3.14] nodejs: CVE-2014-7192 Severity set to 'grave' from 'important' thanks Stopping processing here. Please contact me if you need assistance. -- 773623: