Bug#994555: bullseye-pu: package node-object-path/0.11.5-3+deb11u1

To: Yadd <yadd@debian.org>, 994555@bugs.debian.org
Subject: Bug#994555: bullseye-pu: package node-object-path/0.11.5-3+deb11u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Thu, 30 Sep 2021 19:52:12 +0100
Message-id: <[🔎] 4fa507197b69d2e01f1f133d738215c1b77430e3.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 994555@bugs.debian.org
In-reply-to: <[🔎] 163189734724.489137.11195459607365228506.reportbug@deb007.xnr.fr>
References: <[🔎] 163189734724.489137.11195459607365228506.reportbug@deb007.xnr.fr> <[🔎] 163189734724.489137.11195459607365228506.reportbug@deb007.xnr.fr>

Control: tags -1 + confirmed

On Fri, 2021-09-17 at 18:49 +0200, Yadd wrote:
> node-object-path is vulnerable to prototye pollution (CVE-2021-23434
> and
> CVE-2021-3805
> 

The noise in the patches - spacing changes and removal of terminating
semi-colons at least - makes review quite annoying. :-(

Please go ahead.

Regards,

Adam

Reply to:

References:
- Bug#994555: bullseye-pu: package node-object-path/0.11.5-3+deb11u1
  - From: Yadd <yadd@debian.org>

Prev by Date: Processed: perl 5.32.1-4+deb11u2 flagged for acceptance
Next by Date: Processed: Re: Bug#994555: bullseye-pu: package node-object-path/0.11.5-3+deb11u1
Previous by thread: Bug#994555: bullseye-pu: package node-object-path/0.11.5-3+deb11u1
Next by thread: Processed: Re: Bug#994555: bullseye-pu: package node-object-path/0.11.5-3+deb11u1
Index(es):
- Date
- Thread