[Git][security-tracker-team/security-tracker][master] new nodejs issues

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6b97e7ed by Moritz Muehlenhoff at 2019-02-28T13:55:31Z
new nodejs issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8306,12 +8306,18 @@ CVE-2019-5741
 	RESERVED
 CVE-2019-5740
 	RESERVED
-CVE-2019-5739
+CVE-2019-5739 [Node.js: Denial of Service with keep-alive HTTP connections]
 	RESERVED
+	- nodejs <unfixed> (unimportant)
+	NOTE: https://nodejs.org/en/blog/vulnerability/february-2019-security-releases/
+	NOTE: Nodejs not covered by security support
 CVE-2019-5738
 	RESERVED
-CVE-2019-5737
+CVE-2019-5737 [Node.js: Slowloris HTTP Denial of Service with keep-alive]
 	RESERVED
+	- nodejs <unfixed> (unimportant)
+	NOTE: https://nodejs.org/en/blog/vulnerability/february-2019-security-releases/
+	NOTE: Nodejs not covered by security support
 CVE-2018-20680 (Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field. ...)
 	NOT-FOR-US: Frog CMS
 CVE-2018-20679 (An issue was discovered in BusyBox before 1.30.0. An out of bounds read ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6b97e7edf0571b506523c8d86a1f2a1d1970ef42

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6b97e7edf0571b506523c8d86a1f2a1d1970ef42
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190228/6d678b22/attachment.html>