[ubuntu/focal-security] node-object-path 0.11.4-2ubuntu0.1 (Accepted)

[Paulo Flabiano Smorigo]

node-object-path (0.11.4-2ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: Improper Input Validation
    - debian/patches/CVE-2020-15256.diff: Fix prototype pollution in set()
    - debian/patches/CVE-2021-23434.patch: Fix prototype pollution when path
      components are not strings.
    - debian/patches/CVE-2021-3805.patch: Fix prototype pollution
      vulnerability.
    - CVE-2020-15256
    - CVE-2021-3805
    - CVE-2021-23434

Date: 2023-03-16 14:56:23.004907+00:00
Changed-By: Paulo Flabiano Smorigo <pfsmorigo at canonical.com>
https://launchpad.net/ubuntu/+source/node-object-path/0.11.4-2ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.