[Git][security-tracker-team/security-tracker][master] nodejs patch references

Thu Nov 29 11:04:33 GMT 2018

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d2c0f496 by Moritz Muehlenhoff at 2018-11-29T11:04:00Z
nodejs patch references

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -22045,19 +22045,23 @@ CVE-2018-12123 (Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 a
 	- nodejs <unfixed> (unimportant)
 	NOTE: https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/
 	NOTE: Nodejs not covered by security support
+	NOTE: Patch (v8): https://github.com/nodejs/node/commit/53a6e4eb2002efc66eb9aefe24529fb63715094e
 CVE-2018-12122 (Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and ...)
 	- nodejs <unfixed> (unimportant)
 	NOTE: https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/
 	NOTE: Nodejs not covered by security support
+	NOTE: Patch (v8): https://github.com/nodejs/node/commit/696f063c5e9157fd10859515da00fd8bd190d76d
 CVE-2018-12121 (Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and ...)
 	- nodejs <unfixed> (unimportant)
 	NOTE: https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/
 	NOTE: Nodejs not covered by security support
+	NOTE: Patch (v8): https://github.com/nodejs/node/commit/93dba83fb0fb46ee2ea87163f435392490b4d59b
 CVE-2018-12120 (Node.js: All versions prior to Node.js 6.15.0: Debugger port 5858 ...)
 	- nodejs 8.9.3~dfsg-5 (unimportant)
 	NOTE: https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/
 	NOTE: Nodejs not covered by security support
 	NOTE: Code got removed in 8.x, so marking first 8.x version in sid as fixed
+	NOTE: Patch (v6): https://github.com/nodejs/node/commit/a9791c9090927b41a8bbfad254a2279204508059
 CVE-2018-12119
 	RESERVED
 CVE-2018-12118
@@ -22068,6 +22072,7 @@ CVE-2018-12116 (Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP r
 	- nodejs <unfixed> (unimportant)
 	NOTE: https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/
 	NOTE: Nodejs not covered by security support
+	NOTE: Patch (v8): https://github.com/nodejs/node/commit/513e9747a22386bc9c93a12f9698561827a1e631
 CVE-2018-12115 (In all versions of Node.js prior to 6.14.4, 8.11.4 and 10.9.0 when ...)
 	- nodejs <unfixed> (unimportant)
 	NOTE: https://nodejs.org/en/blog/vulnerability/august-2018-security-releases/


=====================================
data/dsa-needed.txt
=====================================
@@ -52,6 +52,8 @@ sssd
 --
 tiff (jmm)
 --
+wireshark
+--
 xen
 --
 xml-security-c



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d2c0f496048f3e4ded69906212a1f4ba152a2a46

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d2c0f496048f3e4ded69906212a1f4ba152a2a46
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181129/b41a0b0e/attachment.html>
