Your message dated Sun, 19 Jul 2020 06:49:05 +
with message-id
and subject line Bug#965283: fixed in node-lodash 4.17.19+dfsg-1
has caused the Debian Bug report #965283,
regarding node-lodash: CVE-2020-8203
to be marked as done.
This means that you claim that the problem has been dealt with.
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sun, 19 Jul 2020 08:13:53 +0200
Source: node-lodash
Architecture: source
Version: 4.17.19+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Javascript Maintainers
Changed-By: Xavier Guimard
Closes: 965
node-lodash_4.17.19+dfsg-1_sourceonly.changes uploaded successfully to localhost
along with the files:
node-lodash_4.17.19+dfsg-1.dsc
node-lodash_4.17.19+dfsg.orig-lodash-cli.tar.xz
node-lodash_4.17.19+dfsg.orig.tar.xz
node-lodash_4.17.19+dfsg-1.debian.tar.xz
Greetings,
Your Debia
FYI: The status of the node-babel7 source package
in Debian's testing distribution has changed.
Previous version: 7.10.4+~cs65.71.38-1
Current version: 7.10.5+~cs65.71.38-1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multipl
Source: node-lodash
Version: 4.17.15+dfsg-2
Severity: grave
Tags: security upstream
Justification: user security hole
X-Debbugs-Cc: Debian Security Team
Hi,
The following vulnerability was published for node-lodash.
CVE-2020-8203[0]:
| Prototype pollution attack when using _.zipObjectDeep in lo
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sat, 18 Jul 2020 19:30:21 +0200
Source: pkg-js-tools
Architecture: source
Version: 0.9.39
Distribution: unstable
Urgency: medium
Maintainer: Debian Javascript Maintainers
Changed-By: Xavier Guimard
Changes:
pkg-js-t
pkg-js-tools_0.9.39_sourceonly.changes uploaded successfully to localhost
along with the files:
pkg-js-tools_0.9.39.dsc
pkg-js-tools_0.9.39.tar.xz
Greetings,
Your Debian queue daemon (running on host usper.debian.org)
--
Pkg-javascript-devel mailing list
Pkg-javascript-devel@alioth-
