[Pkg-javascript-devel] Processed: unarchiving 1015982, found 1015982 in 1.12.1+dfsg-8+deb11u1, found 1015982 in 1.12.1+dfsg-8

Processing commands for cont...@bugs.debian.org: > unarchive 1015982 Bug #1015982 {Done: Paul Gevers } [src:jqueryui] jqueryui: CVE-2022-31160 Unarchived Bug 1015982 > found 1015982 1.12.1+dfsg-8+deb11u1 Bug #1015982 {Done: Paul Gevers } [src:jqueryui] jqueryui: CVE-2022-31160 Marked as found in

[Pkg-javascript-devel] Bug#1031791: marked as done (jquery-minicolors: CVE-2021-32850)

Your message dated Wed, 31 May 2023 20:57:22 +0200 with message-id and subject line Accepted jquery-minicolors 2.3.5+dfsg-4 (source) into unstable has caused the Debian Bug report #1031791, regarding jquery-minicolors: CVE-2021-32850 to be marked as done. This means that you claim that the proble

[Pkg-javascript-devel] Accepted jquery-minicolors 2.3.5+dfsg-4 (source) into unstable

Source: jquery-minicolors Source-Version: 2.3.5+dfsg-4 - Forwarded message from Debian FTP Masters - -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 31 May 2023 16:44:37 +0400 Source: jquery-minicolors Architecture: source Version: 2.3.5+dfsg-4 Distribution: unst

[Pkg-javascript-devel] Processed: found 1031791 in 2.3.5+dfsg-3

Processing commands for cont...@bugs.debian.org: > found 1031791 2.3.5+dfsg-3 Bug #1031791 [src:jquery-minicolors] jquery-minicolors: CVE-2021-32850 Ignoring request to alter found versions of bug #1031791 to the same values previously set > thanks Stopping processing here. Please contact me if

[Pkg-javascript-devel] Sponsored Upload To Experimental

Hello Debian JS Team, I've had some packages [1][2][3] awaiting sponsorship since February. I know we've been in freeze and the team is busy. Please consider sponsoring them to experimental so that I can resume packaging corepack for Debian. Thank you. 1. https://alioth-lists.debian.net/pipermail

[Pkg-javascript-devel] jquery-minicolors_2.3.5+dfsg-4_sourceonly.changes ACCEPTED into unstable

Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 31 May 2023 16:44:37 +0400 Source: jquery-minicolors Architecture: source Version: 2.3.5+dfsg-4 Distribution: unstable Urgency: medium Maintainer: Debian JavaScript Maint

[Pkg-javascript-devel] Processing of jquery-minicolors_2.3.5+dfsg-4_sourceonly.changes

jquery-minicolors_2.3.5+dfsg-4_sourceonly.changes uploaded successfully to localhost along with the files: jquery-minicolors_2.3.5+dfsg-4.dsc jquery-minicolors_2.3.5+dfsg-4.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org) -- Pkg-javascript-devel

[Pkg-javascript-devel] Bug#1036980: unblock: jquery-minicolors/2.3.5+dfsg-4

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: jquery-minicol...@packages.debian.org Control: affects -1 + src:jquery-minicolors Please unblock package jquery-minicolors [ Reason ] jquery-minicolor is vulnerable to a cross

[Pkg-javascript-devel] Bug#1036978: bookworm-pu: package node-undici/5.15.0+dfsg1+~cs20.10.9.3-1+deb12u1

Package: release.debian.org Severity: normal Tags: bookworm User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: node-und...@packages.debian.org Control: affects -1 + src:node-undici [ Reason ] node-undici is vulnerable to: * CVE-2023-23936: "Host" HTTP header isn't protected a

[Pkg-javascript-devel] Bug#1036977: bullseye-pu: package jqueryui/1.12.1+dfsg-8+deb11u2

Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: jquer...@packages.debian.org Control: affects -1 + src:jqueryui [ Reason ] jqueryui is potentially vulnerable to cross-site scripting (CVE-2022-31160) [ Impact ] Low

[Pkg-javascript-devel] Bug#1036976: bullseye-pu: package grunt/1.3.0-1+deb11u2

Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: gr...@packages.debian.org Control: affects -1 + src:grunt [ Reason ] file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leading to arbitrary fi

[Pkg-javascript-devel] Bug#1036975: bullseye-pu: package node-url-parse/1.5.3-1+deb11u2

Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: node-url-pa...@packages.debian.org Control: affects -1 + src:node-url-parse [ Reason ] node-url-parse is vulnerable to authorization bypass through user-controlled ke

[Pkg-javascript-devel] node-json5_2.1.3-2+deb11u1_sourceonly.changes ACCEPTED into proposed-updates->stable-new

Thank you for your contribution to Debian. Mapping bullseye to stable. Mapping stable to proposed-updates. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 16 Jan 2023 07:34:31 +0400 Source: node-json5 Architecture: source Version: 2.1.3-2+deb11u1 Distribution: b

[Pkg-javascript-devel] node-css-what_4.0.0-3+deb11u1_sourceonly.changes ACCEPTED into proposed-updates->stable-new

Thank you for your contribution to Debian. Mapping bullseye to stable. Mapping stable to proposed-updates. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 01 Mar 2023 13:47:23 + Source: node-css-what Architecture: source Version: 4.0.0-3+deb11u1 Distribution

[Pkg-javascript-devel] Processing of node-css-what_4.0.0-3+deb11u1_sourceonly.changes

node-css-what_4.0.0-3+deb11u1_sourceonly.changes uploaded successfully to localhost along with the files: node-css-what_4.0.0-3+deb11u1.dsc node-css-what_4.0.0-3+deb11u1.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org) -- Pkg-javascript-devel mai

[Pkg-javascript-devel] Processing of node-json5_2.1.3-2+deb11u1_sourceonly.changes

node-json5_2.1.3-2+deb11u1_sourceonly.changes uploaded successfully to localhost along with the files: node-json5_2.1.3-2+deb11u1.dsc node-json5_2.1.3-2+deb11u1.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org) -- Pkg-javascript-devel mailing list