* SECURITY UPDATE: Path traversal (LP: #1982617)
- debian/patches/CVE-2022-24785.patch: Avoid loading path-looking locales
from filesystem.
- CVE-2022-24785
* SECURITY UPDATE: Denial of service via very long date string (LP: #1982617)
- debian/patches/CVE-2022-31129.patch: Make a regular expression more
efficient.
- CVE-2022-31129
* debian/control: Add a build dependency on libjs-qunit.
* debian/rules: Add an override_dh_auto_test target that invokes
debian/run_test_suite.
* debian/run_test_suite: New file that invokes the upstream test suite.
This bug was fixed in the package node-moment - 2.20.1+ ds-1ubuntu0. 1
--------------- ds-1ubuntu0. 1) bionic-security; urgency=medium
node-moment (2.20.1+
* SECURITY UPDATE: Path traversal (LP: #1982617) patches/ CVE-2022- 24785.patch: Avoid loading path-looking locales patches/ CVE-2022- 31129.patch: Make a regular expression more dh_auto_ test target that invokes run_test_ suite. run_test_ suite: New file that invokes the upstream test suite.
- debian/
from filesystem.
- CVE-2022-24785
* SECURITY UPDATE: Denial of service via very long date string (LP: #1982617)
- debian/
efficient.
- CVE-2022-31129
* debian/control: Add a build dependency on libjs-qunit.
* debian/rules: Add an override_
debian/
* debian/
-- Luís Infante da Câmara <email address hidden> Fri, 22 Jul 2022 22:08:31 +0100