[Git][security-tracker-team/security-tracker][master] CVE-2018-3728/node-hoek fixed in unstable
Salvatore Bonaccorso
carnil at debian.org
Wed Aug 8 06:24:08 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fa4f8a12 by Salvatore Bonaccorso at 2018-08-08T05:23:37Z
CVE-2018-3728/node-hoek fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -30651,7 +30651,7 @@ CVE-2018-3730 (mcstatic node module suffers from a Path Traversal vulnerability
CVE-2018-3729 (localhost-now node module suffers from a Path Traversal vulnerability ...)
NOT-FOR-US: localhost-now nodejs module
CVE-2018-3728 (hoek node module before 4.2.0 and 5.0.x before 5.0.3 suffers from a Modification of ...)
- - node-hoek <unfixed> (unimportant)
+ - node-hoek 5.0.3-1 (unimportant)
NOTE: fixed in 4.2.1
NOTE: https://github.com/hapijs/hoek/issues/230
NOTE: https://hackerone.com/reports/310439
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa4f8a12f4eac8382e9311c20456ab807b84db0e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa4f8a12f4eac8382e9311c20456ab807b84db0e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180808/6b8c0642/attachment.html>
More information about the debian-security-tracker-commits
mailing list