[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2015-8855

Salvatore Bonaccorso carnil at debian.org
Thu Mar 8 21:09:12 UTC 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
42c2802c by Salvatore Bonaccorso at 2018-03-08T22:08:51+01:00
Add fixed version for CVE-2015-8855

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -119310,7 +119310,7 @@ CVE-2015-3011 (Multiple cross-site scripting (XSS) vulnerabilities in the contac
 	NOTE: owncloud-contacts fixed in 0.3.0.18+8.0.0+dfsg-1
 	NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2015-001
 CVE-2015-8855 (The semver package before 4.3.2 for Node.js allows attackers to cause ...)
-	- node-semver <unfixed> (unimportant)
+	- node-semver 5.3.0-1 (unimportant)
 	NOTE: https://nodesecurity.io/advisories/semver_redos
 	NOTE: https://github.com/npm/npm/releases/tag/v2.7.5
 	NOTE: libv8 is not covered by security support



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/42c2802ceb865bedfef91a7431f50dfe2b5fa489

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/42c2802ceb865bedfef91a7431f50dfe2b5fa489
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180308/70c39bcb/attachment.html>


More information about the Secure-testing-commits mailing list