Control: tags -1 + confirmed On Mon, 2020-09-14 at 16:04 +0200, Xavier Guimard wrote: > [ Reason ] > node-mysql is vulnerable to CVE-2019-14939 (#934712) > > [ Impact ] > Default "LOAD DATA LOCAL INFILE" is too permissive > > [ Tests ] > Sadly tests were not enabled in buster >
I think the intention is also to describe how the patch was tested. :-) Please go ahead. Regards, Adam
