Bug#972694: buster-pu: package node-object-path/0.11.4-2+deb10u1

To: Xavier Guimard <yadd@debian.org>, 972694@bugs.debian.org
Subject: Bug#972694: buster-pu: package node-object-path/0.11.4-2+deb10u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 24 Oct 2020 19:33:07 +0100
Message-id: <[🔎] 2985bfe636f2d89f51b2c94432702b0bd0a4553e.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 972694@bugs.debian.org
In-reply-to: <[🔎] 160338504350.1851217.4558169080180182354.reportbug@deb007.xnr.fr>
References: <[🔎] 160338504350.1851217.4558169080180182354.reportbug@deb007.xnr.fr> <[🔎] 160338504350.1851217.4558169080180182354.reportbug@deb007.xnr.fr>

Control: tags -1 + confirmed

On Thu, 2020-10-22 at 18:44 +0200, Xavier Guimard wrote:
> node-object-path is vulnerable to a prototype pollution (CVE-2020-
> 15256)

Please go ahead.

Regards,

Adam

Reply to:

References:
- Bug#972694: buster-pu: package node-object-path/0.11.4-2+deb10u1
  - From: Xavier Guimard <yadd@debian.org>

Prev by Date: Processed: Re: Bug#972694: buster-pu: package node-object-path/0.11.4-2+deb10u1
Next by Date: Processed: Re: Bug#972651: buster-pu: package fastd/18-3+deb10u1
Previous by thread: Processed: Re: Bug#972694: buster-pu: package node-object-path/0.11.4-2+deb10u1
Next by thread: Bug#972796: buster-pu: package gajim-omemo/2.6.27-1+deb10u1
Index(es):
- Date
- Thread