node-object-path 0.11.4-2ubuntu0.1 source package in Ubuntu
Changelog
node-object-path (0.11.4-2ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Improper Input Validation
- debian/patches/CVE-2020-15256.diff: Fix prototype pollution in set()
- debian/patches/CVE-2021-23434.patch: Fix prototype pollution when path
components are not strings.
- debian/patches/CVE-2021-3805.patch: Fix prototype pollution
vulnerability.
- CVE-2020-15256
- CVE-2021-3805
- CVE-2021-23434
-- Paulo Flabiano Smorigo <email address hidden> Thu, 16 Mar 2023 11:18:54 -0300
Upload details
- Uploaded by:
- Paulo Flabiano Smorigo
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- javascript
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | universe | misc | |
| Focal | security | universe | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| node-object-path_0.11.4.orig.tar.gz | 9.3 KiB | 8d90429ada9dd03784da3cff9ec8483cbd8519879d570e0d5f5307dfc552ab20 |
| node-object-path_0.11.4-2ubuntu0.1.debian.tar.xz | 7.2 KiB | 2a1cf316a15b8089d56f49bd781e776d3162b253eeb5375745a773c7ea513c10 |
| node-object-path_0.11.4-2ubuntu0.1.dsc | 2.2 KiB | 20dfebd2568b83e31eb7abd1d6fedcd3ed32642c46739d227e0ba6c7be6e3e82 |
Available diffs
Binary packages built by this source
- node-object-path: Access deep object properties using a path
Node.js module to access (get, set, insert, delete, test) deep
object properties using dot-separated paths.
.
Node.js is an event-based server-side JavaScript engine.
