[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] npm serve NFU

Sat, 03 Mar 2018 06:54:06 -0800 

Paul Wise pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cb0e8f05 by Paul Wise at 2018-03-03T22:53:16+08:00
npm serve NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -10480,6 +10480,12 @@ CVE-2018-3713
        RESERVED
 CVE-2018-3712
        RESERVED
+       NOT-FOR-US: npm serve
+       NOTE: fixed in 6.4.9 upstream
+       NOTE: 
https://github.com/zeit/serve/commit/6adad6881c61991da61ebc857857c53409544575
+       NOTE: https://github.com/zeit/serve/pull/316
+       NOTE: https://hackerone.com/reports/307666
+       NOTE: https://nodesecurity.io/advisories/561
 CVE-2018-3711
        RESERVED
        NOT-FOR-US: Fastify



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/cb0e8f050f340348f702a30ed66b283c96f6f729

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/cb0e8f050f340348f702a30ed66b283c96f6f729
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to