FEDORA-EPEL-2019-a6100f3df6 created by sgallagh 10 months ago for Fedora EPEL 7
stable

Update to Node.js 6.16.0

This update has been submitted for testing by sgallagh. 10 months ago
User Icon anonymous commented & provided feedback 10 months ago

hello sgallagh, thank you for your efforts! does this update only fix CVE-2018-12120 and not the other vulnerabilities from release v6.15.0? https://nodejs.org/en/blog/release/v6.15.0/

thank you, sascha

User Icon sgallagh commented & provided feedback 10 months ago

It includes everything that is fixed by 6.15.0 in Node.js. The OpenSSL-related ones are fixed by that package, as we link to the system copy rather than using the bundled version. I have it on my TODO list to process through the open CVE bugs and make sure they're closed appropriately, I just have been backlogged lately.

This update has been pushed to testing. 10 months ago
This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes 10 months ago
This update has been submitted for batched by sgallagh. 10 months ago
This update has been submitted for stable by bodhi. 10 months ago
This update has been pushed to stable. 9 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
10 months ago
in testing
10 months ago
in stable
9 months ago
BZ#1661014 Invalid bug number
0
0
BZ#1661018 CVE-2018-12120 nodejs: Debugger port 5858 listens on any interface by default [epel-all]
0
0

Automated Test Results