[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] node-moment: old ReDoS: fixed
Paul Wise
pabs at debian.org
Sat Mar 3 22:45:12 UTC 2018
Paul Wise pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9622c154 by Paul Wise at 2018-03-04T06:44:55+08:00
node-moment: old ReDoS: fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -93613,7 +93613,7 @@ CVE-2016-XXXX [remote memory disclosure]
NOTE: https://nodesecurity.io/advisories/67
NOTE: nodejs not covered by security support
CVE-2016-XXXX [regular expression DoS]
- - node-moment <unfixed> (unimportant)
+ - node-moment 2.13.0+ds-1 (unimportant)
NOTE: fixed in 2.11.2
NOTE: https://github.com/moment/moment/pull/2939
NOTE: https://nodesecurity.io/advisories/55
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9622c1546d3e2b6ce8223eb8d9b8595b88f6ff9f
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9622c1546d3e2b6ce8223eb8d9b8595b88f6ff9f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180303/75375820/attachment-0001.html>
More information about the Secure-testing-commits
mailing list