[Pkg-javascript-devel] Bug#994974: node-define-property: Please deembed and fix vulnereability
Bastien Roucariès
roucaries.bastien at gmail.com
Fri Sep 24 08:49:37 BST 2021
Package: node-define-property
Severity: serious
Tags: security upstream fixed-upstream
Justification: security bug
Forwarded: https://github.com/jonschlinkert/define-property/pull/6
X-Debbugs-Cc: Debian Security Team <team at security.debian.org>
Dear Maintainer,
According to
https://www.npmjs.com/advisories/1490
node-define-property is vulnerable
Because it embed small modules that are vulnerable.
Embdeding is bad and we have here another proof
Bastien
More information about the Pkg-javascript-devel
mailing list