nodejs (20.15.1+dfsg-1)
[PTS] [DDPO]
COMMITS: VCS has seen 4 commits since the debian/20.15.1+dfsg-1 tag
- Git: https://salsa.debian.org/js-team/nodejs.git -b master-20.x
-
- Branch: master-20.x
- Path: debian/changelog
- Repo size: 8912896
- Browser: https://salsa.debian.org/js-team/nodejs/tree/master-20.x
- Last scan: 2024-07-25 15:07:00+00
- Next scan: 2024-07-31 12:14:00+00
- CI pipeline status: failed
- Debian changelog in Git:
nodejs (20.15.1+dfsg-1) unstable; urgency=medium
* New upstream version 20.15.1+dfsg
* Fix watch file to ensure ada 2.7.8
* CVE-2024-36138: Bypass incomplete fix of CVE-2024-27980 (High)
* CVE-2024-22020: Bypass network import restriction via data URL (Medium)
* CVE-2024-22018: fs.lstat bypasses permission model (Low)
* CVE-2024-36137: fs.fchown/fchmod bypasses permission model (Low)
* CVE-2024-37372: Permission model improperly processes UNC paths (Low)
* Add another failing test to loong64/mips64el
-- Jérémy Lal <kapouer@melix.org> Tue, 09 Jul 2024 10:02:04 +0200
- This branch is 4 commits ahead of tag debian/20.15.1+dfsg-1
- Git log:
commit 1ba719fe889094eb284eb23e547520f34da9c74f
Author: Jérémy Lal <kapouer@melix.org>
Date: Thu Jul 25 16:15:28 2024 +0200
Refresh patches, drop applied ones.
commit e84a2aebff6d59f71dc63bc46c4014484221fd91
Merge: a3dcf0d9 1ac9f202
Author: Jérémy Lal <kapouer@melix.org>
Date: Thu Jul 25 15:41:46 2024 +0200
Update upstream source from tag 'upstream/20.16.0+dfsg'
Update to upstream version '20.16.0+dfsg'
with Debian dir 8425259d0d3009cccdacbb8af2911f832cf6bab3
commit 1ac9f202e754bbba6cc46798344d160c07b6e8de
Author: Jérémy Lal <kapouer@melix.org>
Date: Thu Jul 25 15:40:49 2024 +0200
New upstream version 20.16.0+dfsg
commit 37831169588d612fdba611b6d2906789d97f4761
Author: Jérémy Lal <kapouer@melix.org>
Date: Tue Jul 9 02:19:42 2024 +0200
New upstream version 20.15.1+dfsg