[Git][security-tracker-team/security-tracker][master] several nodejs n/a

Moritz Muehlenhoff jmm at debian.org
Thu Jun 14 08:16:17 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fa71366b by Moritz Muehlenhoff at 2018-06-14T09:15:53+02:00
several nodejs n/a

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -13398,14 +13398,20 @@ CVE-2018-7165
 	RESERVED
 CVE-2018-7164 (Node.js versions 9.7.0 and later and 10.x are vulnerable and the ...)
 	- nodejs <unfixed> (unimportant)
+	[stretch] - nodejs <not-affected> (Only affects >= 9.x)
+	[jessie] - nodejs <not-affected> (Only affects >= 9.x)
 	NOTE: https://nodejs.org/en/blog/vulnerability/june-2018-security-releases/#memory-exhaustion-dos-on-v9-x-cve-2018-7164
 CVE-2018-7163
 	RESERVED
 CVE-2018-7162 (All versions of Node.js 9.x and 10.x are vulnerable and the severity ...)
 	- nodejs <unfixed> (unimportant)
+	[stretch] - nodejs <not-affected> (Only affects >= 8.x)
+	[jessie] - nodejs <not-affected> (Only affects >= 8.x)
 	NOTE: https://nodejs.org/en/blog/vulnerability/june-2018-security-releases/#denial-of-service-vulnerability-in-tls-cve-2018-7162
 CVE-2018-7161 (All versions of Node.js 8.x, 9.x, and 10.x are vulnerable and the ...)
 	- nodejs <unfixed> (unimportant)
+	[stretch] - nodejs <not-affected> (Only affects >= 8.x)
+	[jessie] - nodejs <not-affected> (Only affects >= 8.x)
 	NOTE: https://nodejs.org/en/blog/vulnerability/june-2018-security-releases/#denial-of-service-vulnerability-in-http-2-cve-2018-7161
 CVE-2018-7160 (The Node.js inspector, in 6.x and later is vulnerable to a DNS ...)
 	- nodejs <unfixed> (unimportant)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa71366beca6cad4a5600c879a47dde23e891f44

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa71366beca6cad4a5600c879a47dde23e891f44
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180614/ad45f91f/attachment.html>

More information about the debian-security-tracker-commits mailing list