[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] npm serve NFU
Paul Wise
pabs at debian.org
Sat Mar 3 14:53:31 UTC 2018
Paul Wise pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cb0e8f05 by Paul Wise at 2018-03-03T22:53:16+08:00
npm serve NFU
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -10480,6 +10480,12 @@ CVE-2018-3713
RESERVED
CVE-2018-3712
RESERVED
+ NOT-FOR-US: npm serve
+ NOTE: fixed in 6.4.9 upstream
+ NOTE: https://github.com/zeit/serve/commit/6adad6881c61991da61ebc857857c53409544575
+ NOTE: https://github.com/zeit/serve/pull/316
+ NOTE: https://hackerone.com/reports/307666
+ NOTE: https://nodesecurity.io/advisories/561
CVE-2018-3711
RESERVED
NOT-FOR-US: Fastify
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cb0e8f050f340348f702a30ed66b283c96f6f729
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cb0e8f050f340348f702a30ed66b283c96f6f729
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180303/b628d9af/attachment.html>
More information about the Secure-testing-commits
mailing list