Bug#994490: bullseye-pu: package node-set-value/3.0.1-2+deb11u1

To: Yadd <yadd@debian.org>, 994490@bugs.debian.org
Subject: Bug#994490: bullseye-pu: package node-set-value/3.0.1-2+deb11u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Thu, 30 Sep 2021 19:53:28 +0100
Message-id: <[🔎] d896e1b1b4d68dee8373958ff52d87c6d320b480.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 994490@bugs.debian.org
In-reply-to: <[🔎] 163180931165.336235.4621289043902095480.reportbug@deb007.xnr.fr>
References: <[🔎] 163180931165.336235.4621289043902095480.reportbug@deb007.xnr.fr> <[🔎] 163180931165.336235.4621289043902095480.reportbug@deb007.xnr.fr>

Control: tags -1 + confirmed

On Thu, 2021-09-16 at 18:21 +0200, Yadd wrote:
> node-set-value is vulnerable to prototype pollution (#994448, CVE-
> 2021-23440)
> 

Please go ahead.

Regards,

Adam

Reply to:

References:
- Bug#994490: bullseye-pu: package node-set-value/3.0.1-2+deb11u1
  - From: Yadd <yadd@debian.org>

Prev by Date: Processed: Re: Bug#994490: bullseye-pu: package node-set-value/3.0.1-2+deb11u1
Next by Date: Bug#994710: bullseye-pu: package nautilus/3.38.2-1+deb11u1
Previous by thread: Processed: Re: Bug#994490: bullseye-pu: package node-set-value/3.0.1-2+deb11u1
Next by thread: Re: 11.1 and 10.11 planning]
Index(es):
- Date
- Thread