Update to upstream 1.1.7 release to remediate DoS issue npm:brace-expansion:20170302
sudo dnf upgrade --advisory=FEDORA-2017-2522df3526
On my system upgraded from Fedora 25 to Fedora 26, I am having dependency issues with this update. I get following error on doing dnf upgrade:
Problem: cannot install the best update candidate for package nodejs-brace-expansion-1.1.3-2.fc26.noarch
- nothing provides npm(balanced-match) >= 0.4.1 needed by nodejs-brace-expansion-1.1.7-1.fc26.noarch
Package Arch Version Repository Size
Skipping packages with broken dependencies:
nodejs-brace-expansion noarch 1.1.7-1.fc26 updates-testing 12 k
Skip 1 Package
Nothing to do.
please unpush this update, or provide the required nodejs-balanced-match package in version 0.4.2 for Fedora 26 too.
Please login to add feedback.
Copyright © 2007-2019 Red Hat, Inc. and
bodhi is Free Software.
if you have any problems. Read the documentation.