Release | Version |
---|---|
jessie | 2.1-2+deb8u1 |
stretch | 2.1-2+deb9u1 |
buster | 2.8.1-1+deb10u3 |
bullseye | 2.9.4-4+deb11u1 |
bookworm | 2.9.4-5 |
trixie | 2.9.4-6 |
sid | 2.9.4-6 |
Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
---|---|---|---|---|---|---|---|---|
CVE-2019-15605 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | HTTP request smuggling in Node.js 10, 12, and 13 causes malicious payl ... |
Bug | Description |
---|---|
CVE-2020-8287 | Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 allow two co ... |
DSA / DLA | Description |
---|---|
DLA-3224-1 | http-parser - security update |
ELA-670-1 | http-parser - security update |