[ubuntu/oracular-proposed] nodejs 20.15.1+dfsg-1 (Accepted)
Gianfranco Costamagna
costamagnagianfranco at yahoo.it
Wed Jul 10 06:07:49 UTC 2024
nodejs (20.15.1+dfsg-1) unstable; urgency=medium
* New upstream version 20.15.1+dfsg
* Fix watch file to ensure ada 2.7.8
* CVE-2024-36138: Bypass incomplete fix of CVE-2024-27980 (High)
* CVE-2024-22020: Bypass network import restriction via data URL (Medium)
* CVE-2024-22018: fs.lstat bypasses permission model (Low)
* CVE-2024-36137: fs.fchown/fchmod bypasses permission model (Low)
* CVE-2024-37372: Permission model improperly processes UNC paths (Low)
* Add another failing test to loong64/mips64el
Date: 2024-07-09 22:42:06.017303+00:00
Signed-By: Gianfranco Costamagna <costamagnagianfranco at yahoo.it>
https://launchpad.net/ubuntu/+source/nodejs/20.15.1+dfsg-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the oracular-changes
mailing list