Summary: | net-libs/nodejs-8.5.0 path traversal vulnerability (CVE-2017-14849) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | thomasg <thomas> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | jstein, patrick |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://nodejs.org/en/blog/vulnerability/september-2017-path-validation/ | ||
Whiteboard: | ~4 [noglsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
thomasg
2017-10-08 01:59:37 UTC
@Maintainer could you please verify which versions in tree are vulnerable? As stated in URL: 4.x NOT vulnerable (stable) 6.x NOT vulnerable (stable) 7.x unknown (non-stable) 8.x unknown (non-stable) 8.5.0 is vulnerable (non-stable) Thank you, Gentoo Security Padawan ChrisADR whoops. Sorry. ebuild and cleanup? Now everything is fixed and tree is clean. Closing Thank you |