[Pkg-javascript-devel] node-json-schema_0.4.0+~7.0.9-1_source.changes ACCEPTED into unstable
Debian FTP Masters
ftpmaster at ftp-master.debian.org
Tue Nov 16 11:48:42 GMT 2021
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 16 Nov 2021 17:59:10 +0100
Source: node-json-schema
Architecture: source
Version: 0.4.0+~7.0.9-1
Distribution: unstable
Urgency: high
Maintainer: Debian Javascript Maintainers <pkg-javascript-devel at lists.alioth.debian.org>
Changed-By: Jonas Smedegaard <dr at jones.dk>
Closes: 999765
Changes:
node-json-schema (0.4.0+~7.0.9-1) unstable; urgency=high
.
[ upstream ]
* new release
+ disallow __proto__ property being used for schema default/coerce
and protect against constructor modification;
closes: bug#999765, thanks to Neil Williams;
CVE-2021-3918
.
[ Jonas Smedegaard ]
* simplify source helper script copyright-check
* update copyright info:
+ use Reference field (not License-Reference);
tighten lintian overrides
+ update coverage
* declare compliance with Debian Policy 4.6.0
* set urgency=high due to security fix
* remove executable bit on JavaScript library files
Checksums-Sha1:
547aae0622c55470bd654fda51a8927cbba88fef 2472 node-json-schema_0.4.0+~7.0.9-1.dsc
97edc9037ea0c38585320b28964dde3b39e4660d 6164 node-json-schema_0.4.0+~7.0.9.orig-Xtypes.tar.gz
61f86e496b268038b1f95b8520d32349bec14cbc 38002 node-json-schema_0.4.0+~7.0.9.orig.tar.gz
a6f3ca773cf2adc6213b8fdfdb84fee58683ccd1 5064 node-json-schema_0.4.0+~7.0.9-1.debian.tar.xz
4567a18fac3958a084d285a61d26d58d4b4a00e8 5957 node-json-schema_0.4.0+~7.0.9-1_amd64.buildinfo
Checksums-Sha256:
79f8a4513ed16e18daedbec8ee4309a0ea5fd6c0699199da5d31aec99883cc6e 2472 node-json-schema_0.4.0+~7.0.9-1.dsc
e322dc0700f811158aa63382c595d31a006a1b077435b6a70ea8e81c2fe64a7b 6164 node-json-schema_0.4.0+~7.0.9.orig-Xtypes.tar.gz
50b4ac7b7541dea6ef50c955d75680b1fd03df14678b0fdd3e3a2cd3c5ee27cd 38002 node-json-schema_0.4.0+~7.0.9.orig.tar.gz
8b79ae203bf4bdc5b342b8ebd8f982f0e7fca47f034c900b2223b34b4d645bda 5064 node-json-schema_0.4.0+~7.0.9-1.debian.tar.xz
0deba505d1a0ac5343a928014c6dcae0c833e5b3ac5eec3686039efb68e49588 5957 node-json-schema_0.4.0+~7.0.9-1_amd64.buildinfo
Files:
d0747e7d0cf1ce2b1ab9acf0b35f568d 2472 javascript optional node-json-schema_0.4.0+~7.0.9-1.dsc
f2bb24f2e895541683dcfa11462b875d 6164 javascript optional node-json-schema_0.4.0+~7.0.9.orig-Xtypes.tar.gz
2ce75aca30571d40f28015bde7f3f053 38002 javascript optional node-json-schema_0.4.0+~7.0.9.orig.tar.gz
075b9793eebedc81d760beb93eee57a6 5064 javascript optional node-json-schema_0.4.0+~7.0.9-1.debian.tar.xz
a0523c9cdeda61828fb5f310f583d308 5957 javascript optional node-json-schema_0.4.0+~7.0.9-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=uEhn
-----END PGP SIGNATURE-----
Thank you for your contribution to Debian.
More information about the Pkg-javascript-devel
mailing list