Bug#941189: [Pkg-javascript-devel] Bug#941189: node-set-value: CVE-2019-10747

Hi, Of course a point release is enough here Cheers, Xavier Le 26 septembre 2019 08:04:35 GMT+02:00, Salvatore Bonaccorso a écrit : >Hi Xavier, > >On Thu, Sep 26, 2019 at 07:31:21AM +0200, Xavier wrote: >> Le 26/09/2019 à 07:12, Salvatore Bonaccorso a écrit : >> > Source: node-set-value >> >

Bug#941189: [Pkg-javascript-devel] Bug#941189: node-set-value: CVE-2019-10747

Hi Xavier, On Thu, Sep 26, 2019 at 07:31:21AM +0200, Xavier wrote: > Le 26/09/2019 à 07:12, Salvatore Bonaccorso a écrit : > > Source: node-set-value > > Version: 0.4.0-1 > > Severity: important > > Tags: security upstream > > Control: found -1 3.0.0-1 > > > > Hi, > > > > The following

Bug#941189: [Pkg-javascript-devel] Bug#941189: node-set-value: CVE-2019-10747

Le 26/09/2019 à 07:12, Salvatore Bonaccorso a écrit : > Source: node-set-value > Version: 0.4.0-1 > Severity: important > Tags: security upstream > Control: found -1 3.0.0-1 > > Hi, > > The following vulnerability was published for node-set-value. > > CVE-2019-10747[0]: > | set-value is

Bug#941189: node-set-value: CVE-2019-10747

Source: node-set-value Version: 0.4.0-1 Severity: important Tags: security upstream Control: found -1 3.0.0-1 Hi, The following vulnerability was published for node-set-value. CVE-2019-10747[0]: | set-value is vulnerable to Prototype Pollution in versions lower than | 3.0.1. The function