| Summary: | nodejs-yargs-parser new security issue CVE-2020-7608 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | Zombie Ryushu <zombie_ryushu> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | normal | ||
| Priority: | Normal | CC: | andrewsfarm, herman.viaene, mageia, ouaurelien, sysadmin-bugs |
| Version: | 7 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | https://nvd.nist.gov/vuln/detail/CVE-2020-7608 | ||
| Whiteboard: | MGA7-64-OK | ||
| Source RPM: | nodejs-yargs-parser-10.0.0-3.mga7.src.rpm | CVE: | CVE-2020-7608 |
| Status comment: | |||
|
Description
Zombie Ryushu
2020-12-29 11:15:29 CET
Zombie Ryushu
2020-12-29 11:15:48 CET
CVE:
(none) =>
CVE-2020-7608 fix pushed in cauldron. Resolution:
(none) =>
FIXED nodejs-yargs-parser-10.0.0-5.mga8 was the fixed version. Mageia 7 is also affected. Source RPM:
nodejs-yargs-parser-10.0.0-4.mga8.src.rpm =>
nodejs-yargs-parser-10.0.0-3.mga7.src.rpm This is for you Stig. CC:
(none) =>
ouaurelien fix pushed in mga7:
src:
- nodejs-yargs-parser-10.0.0-3.1.mga7Assignee:
smelror =>
qa-bugs MGA7-64 MATE on Peaq C1011 No installation issues. No previous updates. This is developers territory, so OK on clean install. CC:
(none) =>
herman.viaene Validating. Keywords:
(none) =>
validated_update
Thomas Backlund
2021-04-02 21:17:22 CEST
Keywords:
(none) =>
advisory An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2021-0170.html Resolution:
(none) =>
FIXED |