Format: 1.8
Date: Thu, 16 Mar 2023 11:18:54 -0300
Source: node-object-path
Binary: node-object-path
Architecture: all
Version: 0.11.4-2ubuntu0.1
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy02-amd64-080.buildd>
Changed-By: Paulo Flabiano Smorigo <pfsmorigo@canonical.com>
Description:
 node-object-path - Access deep object properties using a path
Changes:
 node-object-path (0.11.4-2ubuntu0.1) focal-security; urgency=medium
 .
   * SECURITY UPDATE: Improper Input Validation
     - debian/patches/CVE-2020-15256.diff: Fix prototype pollution in set()
     - debian/patches/CVE-2021-23434.patch: Fix prototype pollution when path
       components are not strings.
     - debian/patches/CVE-2021-3805.patch: Fix prototype pollution
       vulnerability.
     - CVE-2020-15256
     - CVE-2021-3805
     - CVE-2021-23434
Checksums-Sha1:
 2df0c6e920185e901046faea39b4031c1a6eea82 7428 node-object-path_0.11.4-2ubuntu0.1_all.deb
 b03afff26c0a17528c1e280c514350a8991fcf70 9420 node-object-path_0.11.4-2ubuntu0.1_amd64.buildinfo
Checksums-Sha256:
 f4d1dd3a548f31f0679e7d8a596ad0fdd4aa75cc7b610e96f8864982b222b344 7428 node-object-path_0.11.4-2ubuntu0.1_all.deb
 71c9a2dfb7929da676c00c9cbd5bd8fe9ef31062104edc96fef7930f3ba9ab3c 9420 node-object-path_0.11.4-2ubuntu0.1_amd64.buildinfo
Files:
 455646c235de6745f4ced6baf9fa4fe3 7428 javascript optional node-object-path_0.11.4-2ubuntu0.1_all.deb
 63c63cd26e4367458fb2cbc124651c4a 9420 javascript optional node-object-path_0.11.4-2ubuntu0.1_amd64.buildinfo
Original-Maintainer: Debian Javascript Maintainers <pkg-javascript-devel@lists.alioth.debian.org>