This got fixed on 09 Aug 2018 update two years ago, but the bug wasn't
referred. Version was 8.10.0~dfsg-2ubuntu0.2.
** Changed in: nodejs (Ubuntu)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubunt
I see that others are working on node.js SRUs, I'll step back for now.
** Changed in: nodejs (Ubuntu)
Assignee: Simon Quigley (tsimonq2) => (unassigned)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/b
** Tags added: community-security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1770655
Title:
nodejs is at 8.10 while 8.11 is a security release.
To manage notifications about this bug go to:
http
I'll personally take a look at this next week sometime.
Trust me, this bug won't rot. :)
Thanks.
** Changed in: nodejs (Ubuntu)
Status: Incomplete => Confirmed
** Changed in: nodejs (Ubuntu)
Assignee: (unassigned) => Simon Quigley (tsimonq2)
** Changed in: nodejs (Ubuntu)
Import
oh my !
I don't know anything about ubuntu or debian bureaucracy. And I don't want to.
If even the security team is not able to do its job without being pinged
or being served the debdiff or whatever on a silver platter...
I'm trying to close this bug but I can't. Just letting things rot
--
You
Thanks for taking the time to report this bug and helping to make Ubuntu
better. Since the package referred to in this bug is in universe or
multiverse, it is community maintained. If you are able, I suggest
coordinating with upstream and posting a debdiff for this issue. When a
debdiff is availabl
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-7158
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-7159
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-7160
--
You received this bug notification because you are a member of Ubuntu
Bugs, whi
