dgit.raspbian.org Git - nodejs.git/commit

Fix CVE-2024-24806

Bug: https://github.com/libuv/libuv/security/advisories/GHSA-f74f-cvh7-c6q6
Bug-Debian: https://bugs.debian.org/1063484
Origin: https://github.com/libuv/libuv
git diff v1.48.0~5..v1.48.0~2

From upstream change log:
   Merge pull request from GHSA-f74f-cvh7-c6q6
    * fix: always zero-terminate idna output
    * fix: reject zero-length idna inputs
    * test: empty strings are not valid IDNA

See also https://github.com/libuv/libuv/security/advisories/GHSA-f74f-cvh7-c6q6
===================================================================

Gbp-Pq: Topic libuv
Gbp-Pq: Name fix-cve-2024-24806

author	Debian Javascript Maintainers <pkg-javascript-devel@alioth-lists.debian.net>
	Tue, 9 Jul 2024 15:36:33 +0000 (17:36 +0200)
committer	Jérémy Lal <kapouer@melix.org>
	Tue, 9 Jul 2024 15:36:33 +0000 (17:36 +0200)
commit	9e6aed6aae6523b35ba52e729b0676f136d6d3a7
tree	5305459c729de05501020d971c831efaeb75ae71	tree \| snapshot
parent	26efc1de6381529d7195ad4894830e4714455e66	commit \| diff