diff options
| author | Sylvain Beucler <beuc@beuc.net> | 2020-02-22 15:06:39 +0100 |
|---|---|---|
| committer | Sylvain Beucler <beuc@beuc.net> | 2020-02-22 15:06:44 +0100 |
| commit | dd055e8441943da0ce5f22b9fcb450b4e483f375 (patch) | |
| tree | 7fcef093eb86bed85e4649fb35ca45bee4fd36a0 /data/CVE/2017.list | |
| parent | 723666d58dc5a1cf860c9c2fea0f380dbcfa17ff (diff) | |
nodejs: reflect security-support-limited -> security-support-ended.deb8,security-support-ended.deb9 in debian-security-support
Diffstat (limited to 'data/CVE/2017.list')
| -rw-r--r-- | data/CVE/2017.list | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/data/CVE/2017.list b/data/CVE/2017.list index 36992edafd..5360f90ffb 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -7475,7 +7475,7 @@ CVE-2017-16130 (exxxxxxxxxxx is an Http eX Frame Google Style JavaScript Guide. CVE-2017-16129 (The HTTP client module superagent is vulnerable to ZIP bomb attacks. I ...) - node-superagent 0.20.0+dfsg-2 [stretch] - node-superagent 0.20.0+dfsg-1+deb9u2 - [jessie] - node-superagent <ignored> (Nodejs in jessie not covered by security support) + [jessie] - node-superagent <end-of-life> (Nodejs in jessie not covered by security support) NOTE: https://github.com/visionmedia/superagent/issues/1259 NOTE: https://nodesecurity.io/advisories/479 CVE-2017-16128 (The module npm-script-demo opened a connection to a command and contro ...) @@ -7498,8 +7498,8 @@ CVE-2017-16120 (liyujing is a static file server. liyujing is vulnerable to a di NOT-FOR-US: liyujing CVE-2017-16119 (Fresh is a module used by the Express.js framework for HTTP response f ...) - node-fresh 0.2.0-2 (bug #927715) - [stretch] - node-fresh <ignored> (Nodejs in stretch not covered by security support) - [jessie] - node-fresh <ignored> (Nodejs in jessie not covered by security support) + [stretch] - node-fresh <end-of-life> (Nodejs in stretch not covered by security support) + [jessie] - node-fresh <end-of-life> (Nodejs in jessie not covered by security support) NOTE: https://nodesecurity.io/advisories/526 CVE-2017-16118 (The forwarded module is used by the Express.js framework to handle the ...) NOT-FOR-US: forwarded nodejs module @@ -7695,8 +7695,8 @@ CVE-2017-16027 RESERVED CVE-2017-16026 (Request is an http client. If a request is made using ```multipart```, ...) - node-request 2.88.1-1 (bug #901708) - [stretch] - node-request <ignored> (Nodejs in stretch not covered by security support) - [jessie] - node-request <ignored> (Nodejs in jessie not covered by security support) + [stretch] - node-request <end-of-life> (Nodejs in stretch not covered by security support) + [jessie] - node-request <end-of-life> (Nodejs in jessie not covered by security support) NOTE: https://github.com/request/request/issues/1904 NOTE: https://nodesecurity.io/advisories/309 NOTE: https://github.com/request/request/pull/2018 |