2017-07-12 16:53 GMT+02:00 Moritz Muehlenhoff <j...@debian.org>: > Source: nodejs > Severity: grave > Tags: security > > Hi, > please see https://nodejs.org/en/blog/release/v4.8.4/ > and https://nodejs.org/en/blog/release/v6.11.1/ > > The hash see vulnerabiliy doesn't have a CVE ID yet and the > c-ares one is being addressed via the sec:c-ares package. >
A proposal for a simple patch will follow quickly. Jérémy