[Git][security-tracker-team/security-tracker][master] Add CVE-2017-16023/node-decamelize
Salvatore Bonaccorso
carnil at debian.org
Sun Jun 17 08:20:52 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e7e2b689 by Salvatore Bonaccorso at 2018-06-17T09:20:21+02:00
Add CVE-2017-16023/node-decamelize
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -37440,7 +37440,10 @@ CVE-2017-16025 (Nes is a websocket extension library for hapi. Hapi is a webserv
CVE-2017-16024 (The sync-exec module is used to simulate child_process.execSync in ...)
TODO: check
CVE-2017-16023 (Decamelize is used to convert a dash/dot/underscore/space separated ...)
- TODO: check
+ - node-decamelize <not-affected> (Fixed before initial upload to Debian)
+ NOTE: https://github.com/sindresorhus/decamelize/issues/5
+ NOTE: https://github.com/sindresorhus/decamelize/commit/76d47d8de360afb574da2e34db87430ce11094e0
+ NOTE: nodejs not covered by security support
CVE-2017-16022 (Morris.js creates an svg graph, with labels that appear when hovering ...)
TODO: check
CVE-2017-16021 (uri-js is a module that tries to fully implement RFC 3986. One of ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e7e2b689c43496920c4c403d6bdd9cbcad90eacf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e7e2b689c43496920c4c403d6bdd9cbcad90eacf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180617/7f8cf2d5/attachment.html>
More information about the debian-security-tracker-commits
mailing list