Publishing details

Published on 2022-08-10
Copied from ubuntu jammy in PPA for Ubuntu Security Proposed by Nishit Majithia

Changelog

node-moment (2.29.1+ds-3ubuntu0.2) jammy-security; urgency=medium

  * SECURITY UPDATE: Path traversal (LP: #1982617)
    - debian/patches/CVE-2022-24785.patch: Avoid loading path-looking locales
      from filesystem.
    - CVE-2022-24785
  * SECURITY UPDATE: Denial of service via very long date string (LP: #1982617)
    - debian/patches/CVE-2022-31129.patch: Make a regular expression more
      efficient.
    - CVE-2022-31129
  * debian/changelog: Add build dependency on libjs-qunit.
  * debian/source/lintian-overrides: Remove, because all overrides are unused
    or mismatched.
  * debian/tests/control: Add dependency on libjs-qunit.
  * debian/tests/pkg-js/test: Do a complete test.

 -- Luís Infante da Câmara <email address hidden>  Thu, 04 Aug 2022 09:27:56 +0100

Available diffs

diff from 2.29.1+ds-3ubuntu0.1 to 2.29.1+ds-3ubuntu0.2 (333 bytes)

Builds

amd64

Built packages

libjs-moment Work with dates in JavaScript (library)

node-moment Work with dates in JavaScript (Node.js module)

Package files

libjs-moment_2.29.1+ds-3ubuntu0.2_all.deb (143.0 KiB)
node-moment_2.29.1+ds-3ubuntu0.2.debian.tar.xz (5.2 KiB)
node-moment_2.29.1+ds-3ubuntu0.2.dsc (2.1 KiB)
node-moment_2.29.1+ds-3ubuntu0.2_all.deb (341.3 KiB)
node-moment_2.29.1+ds.orig.tar.xz (543.0 KiB)