[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#935970: stretch-pu: package node-fstream/1.0.10-1+deb9u1



Control: tags -1 + moreinfo

On Wed, 2019-08-28 at 16:53 +0200, Xavier Guimard wrote:
> node-fstream is vulnerable to Arbitrary File Overwrite (#931408,
> CVE-2019-13173). This little patch fixes the problem.
> 

stretch and buster currently have the same version of node-fstream, so
this would want fixing in buster first to avoid giving us version skew.

Regards,

Adam


Reply to: