[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] fastify NFU
Paul Wise
pabs at debian.org
Sat Mar 3 14:42:01 UTC 2018
Paul Wise pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a2fdb27c by Paul Wise at 2018-03-03T22:41:39+08:00
fastify NFU
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -10479,6 +10479,11 @@ CVE-2018-3712
RESERVED
CVE-2018-3711
RESERVED
+ NOT-FOR-US: Fastify
+ NOTE: fixed in 0.38.0 upstream
+ NOTE: https://github.com/fastify/fastify/commit/fabd2a011f2ffbb877394abe699f549513ffbd76
+ NOTE: https://hackerone.com/reports/303632
+ NOTE: https://nodesecurity.io/advisories/564
CVE-2018-3710 [Remote Code Execution Vulnerability in GitLab Projects Import]
RESERVED
- gitlab <unfixed> (bug #888508)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a2fdb27cfadd78da7a9ffb1bb8ad746215e41e47
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a2fdb27cfadd78da7a9ffb1bb8ad746215e41e47
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180303/18fabaa2/attachment-0001.html>
More information about the Secure-testing-commits
mailing list