Change log for node-url-parse package in Ubuntu
| 1 → 18 of 18 results | First • Previous • Next • Last |
| Published in noble-release |
| Published in mantic-release |
| Deleted in mantic-proposed (Reason: Moved to mantic) |
node-url-parse (1.5.10+~1.4.8-3) unstable; urgency=medium * Team upload * Declare compliance with policy 4.6.2 * Fix clean (Closes: #1045676) -- Yadd <email address hidden> Mon, 14 Aug 2023 08:38:26 +0400
Available diffs
- diff from 1.5.10+~1.4.8-2 to 1.5.10+~1.4.8-3 (734 bytes)
node-url-parse (1.2.0-1ubuntu0.1) bionic-security; urgency=medium
* SECURITY UPDATE: Authorization Bypass
- debian/patches/CVE-2022-0512[1-7].patch: fixed improper input handeling
in node-url-parse for input containing the at sign.
- debian/patches/CVE-2022-0639[1-2].patch: fixed improper input handeling
in node-url-parse in toString function.
- debian/patches/CVE-2022-0686[1-7].patch: fixed improper input handeling
in node-url-parse when input contains specified but empty port.
- debian/patches/CVE-2022-0691[1-4].patch: fixed improper input handeling
in node-url-parse for input containing URL beginning with control
characters.
- CVE-2022-0512
- CVE-2022-0639
- CVE-2022-0686
- CVE-2022-0691
* SECURITY UPDATE: Open Redirect, SSRF, and DoS
- debian/patches/CVE-2018-3774[1-4].patch: fixed improper input handeling
in node-url-parse when cerain carafted hostnames.
- debian/patches/CVE-2021-27515[1-2].patch: fixed improper input handeling
in node-url-parse for input containing backslash.
- debian/patches/CVE-2021-3664[1-5].patch: fixed improper input handeling
in node-url-parse for input containing backslash.
- CVE-2018-3774
- CVE-2021-27515
- CVE-2021-3664
* SECURITY UPDATE: Bypass Input Validation
- debian/patches/CVE-2020-8124.patch: fixed improper input handeling
in node-url-parse when using in the browser.
- CVE-2020-8124
-- Amir Naseredini <email address hidden> Thu, 23 Mar 2023 14:28:19 +0000
Available diffs
node-url-parse (1.4.7-3ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Authorization Bypass
- debian/patches/CVE-2022-0512[1-7].patch: fixed improper input handeling
in node-url-parse for input containing the at sign.
- debian/patches/CVE-2022-0639[1-2].patch: fixed improper input handeling
in node-url-parse in toString function.
- debian/patches/CVE-2022-0686[1-7].patch: fixed improper input handeling
in node-url-parse when input contains specified but empty port.
- debian/patches/CVE-2022-0691[1-2].patch: fixed improper input handeling
in node-url-parse for input containing URL beginning with control
characters.
- CVE-2022-0512
- CVE-2022-0639
- CVE-2022-0686
- CVE-2022-0691
* SECURITY UPDATE: Open Redirect, SSRF, and DoS
- debian/patches/CVE-2021-27515.patch: fixed improper input handeling
in node-url-parse for input containing backslash.
- debian/patches/CVE-2021-3664[1-5].patch: fixed improper input handeling
in node-url-parse for input containing backslash.
- CVE-2021-27515
- CVE-2021-3664
-- Amir Naseredini <email address hidden> Thu, 23 Mar 2023 12:49:27 +0000
Available diffs
| Superseded in mantic-release |
| Published in lunar-release |
| Obsolete in kinetic-release |
| Deleted in kinetic-proposed (Reason: Moved to kinetic) |
node-url-parse (1.5.10+~1.4.8-2) unstable; urgency=medium * Team upload * Update options for webpack 5.0 (Closes: #1002867) * Bump Standards-Version to 4.6.1 (no changes needed) -- Pirate Praveen <email address hidden> Wed, 25 May 2022 23:10:45 +0530
Available diffs
- diff from 1.5.10+~1.4.8-1 to 1.5.10+~1.4.8-2 (778 bytes)
node-url-parse (1.5.10+~1.4.8-1) unstable; urgency=medium * Team upload * New upstream version 1.5.10+~1.4.8 -- Yadd <email address hidden> Fri, 25 Feb 2022 16:15:00 +0100
Available diffs
| Superseded in kinetic-release |
| Published in jammy-release |
| Deleted in jammy-proposed (Reason: Moved to jammy) |
node-url-parse (1.5.9+~1.4.8-1) unstable; urgency=medium * Team upload * Use uscan group * New upstream version 1.5.9+~1.4.8 -- Yadd <email address hidden> Mon, 21 Feb 2022 11:19:45 +0100
Available diffs
- diff from 1.5.7-1 to 1.5.9+~1.4.8-1 (2.4 KiB)
node-url-parse (1.5.7-1) unstable; urgency=medium * Team upload * Update standards version to 4.6.0, no changes needed. * Fix filenamemangle * New upstream version 1.5.7 -- Yadd <email address hidden> Thu, 17 Feb 2022 13:34:28 +0100
Available diffs
- diff from 1.5.3-1 to 1.5.7-1 (7.8 KiB)
| Superseded in jammy-release |
| Obsolete in impish-release |
| Deleted in impish-proposed (Reason: Moved to impish) |
node-url-parse (1.5.3-1) unstable; urgency=medium * Team upload * Fix GitHub tags regex * New upstream version 1.5.3 (Closes: #991577) -- Yadd <email address hidden> Sat, 31 Jul 2021 13:13:02 +0200
Available diffs
- diff from 1.5.1-1 to 1.5.3-1 (5.7 KiB)
node-url-parse (1.5.1-1) unstable; urgency=medium * Team upload * New upstream version 1.5.1 (Closes: #985110, CVE-2021-27515) -- Yadd <email address hidden> Sat, 13 Mar 2021 08:55:57 +0100
Available diffs
- diff from 1.4.7+repack-2 to 1.5.1-1 (4.3 KiB)
| Superseded in impish-release |
| Obsolete in hirsute-release |
| Deleted in hirsute-proposed (Reason: moved to Release) |
node-url-parse (1.4.7+repack-2) unstable; urgency=medium * Team upload * Set upstream metadata fields: Security-Contact. * Declare compliance with policy 4.5.1 * Add ctype=nodejs to component(s) * Fix webpack config -- Xavier Guimard <email address hidden> Wed, 23 Dec 2020 17:41:24 +0100
Available diffs
node-url-parse (1.4.7+repack-1) unstable; urgency=medium
* Team upload
[ Debian Janitor ]
* Trim trailing whitespace.
* Set debhelper-compat version in Build-Depends.
* Set upstream metadata fields: Bug-Submit.
* Remove obsolete fields Contact, Name from debian/upstream/metadata
(already present in machine-readable debian/copyright).
* Update standards version to 4.5.0, no changes needed.
[ Xavier Guimard ]
* Bump debhelper compatibility level to 13
* Add "Rules-Requires-Root: no"
* Add debian/gbp.conf
* Use dh-sequence-nodejs
* Modernize debian/watch
* replace embedded test modules by dependency to new node-assume
(Closes: #973962)
* Embed @types/url-parse and repack
-- Xavier Guimard <email address hidden> Sun, 08 Nov 2020 13:22:15 +0100
Available diffs
- diff from 1.4.7-3 to 1.4.7+repack-1 (27.1 KiB)
| Superseded in hirsute-release |
| Obsolete in groovy-release |
| Published in focal-release |
| Obsolete in eoan-release |
| Deleted in eoan-proposed (Reason: moved to release) |
node-url-parse (1.4.7-3) unstable; urgency=medium * Team upload * Reupload to unstable -- Pirate Praveen <email address hidden> Sun, 04 Aug 2019 18:22:13 +0000
Available diffs
- diff from 1.4.7-1 to 1.4.7-3 (1020 bytes)
node-url-parse (1.4.7-1) unstable; urgency=medium * Team upload * New upstream version 1.4.7 * Add SECURITY.md in docs * Remove CVE-2018-3774 patch * Bump debhelper compatibility level to 12 -- Xavier Guimard <email address hidden> Mon, 08 Jul 2019 07:22:42 +0200
Available diffs
- diff from 1.2.0-2 to 1.4.7-1 (6.7 KiB)
node-url-parse (1.2.0-2) unstable; urgency=medium
* Team upload
* Bump debhelper compatibility level to 11
* Declare compliance with policy 4.3.0
* Add patch to fix bad URL parsing (Closes: #906058, CVE-2018-3774)
* Enable upstream tests using pkg-js-tools. This adds node-deep-eql,
node-object-inspect and node-pathval in build dependencies
* Fix VCS fields
* Fix debian/copyright format URL
* Fix description (trailing whitespaces)
* Add upstream/metadata
-- Xavier Guimard <email address hidden> Tue, 16 Apr 2019 10:18:36 +0200
Available diffs
- diff from 1.2.0-1 to 1.2.0-2 (26.4 KiB)
| Superseded in eoan-release |
| Obsolete in disco-release |
| Obsolete in cosmic-release |
| Published in bionic-release |
| Deleted in bionic-proposed (Reason: moved to release) |
node-url-parse (1.2.0-1) unstable; urgency=medium * Team upload * New upstream release * Bump standards, update section and priority * Use github tarballs * Use webpack instead of browserify -- Pirate Praveen <email address hidden> Tue, 02 Jan 2018 21:25:10 +0530
Available diffs
- diff from 1.0.5-2 to 1.2.0-1 (16.1 KiB)
| Superseded in bionic-release |
| Obsolete in artful-release |
| Obsolete in zesty-release |
| Obsolete in yakkety-release |
| Published in xenial-release |
| Deleted in xenial-proposed (Reason: moved to release) |
node-url-parse (1.0.5-2) unstable; urgency=medium * debian/install: install more files into package -- Thorsten Alteholz <email address hidden> Sun, 14 Feb 2016 16:07:46 +0100
Available diffs
- diff from 1.0.5-1 to 1.0.5-2 (405 bytes)
node-url-parse (1.0.5-1) unstable; urgency=medium
* new upstream version
* debian/control: use correct version numbers for dependencies
(Closes: #801143)
-- Thorsten Alteholz <email address hidden> Sat, 06 Feb 2016 18:07:46 +0100
Available diffs
- diff from 1.0.2-1 to 1.0.5-1 (4.6 KiB)
node-url-parse (1.0.2-1) unstable; urgency=low * Initial release -- Thorsten Alteholz <email address hidden> Wed, 02 Sep 2015 18:07:46 +0200
| 1 → 18 of 18 results | First • Previous • Next • Last |
