Register | Log in

node-lodash

Lo-dash is a Node.js utility library

Choose email to subscribe with

general

source: node-lodash (main)
version: 4.17.15+dfsg-1
maintainer: Debian Javascript Maintainers (archive) (DMD)
uploaders: Matthew Pideil [DMD] – Pirate Praveen [DMD] – Valentin OVD [DMD]
arch: all
std-ver: 4.4.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.4.1+dfsg-3
oldstable: 4.16.6+dfsg-2
stable: 4.17.11+dfsg-2
testing: 4.17.11+dfsg-4
unstable: 4.17.15+dfsg-1

versioned links

2.4.1+dfsg-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.16.6+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.17.11+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.17.11+dfsg-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.17.15+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libjs-lodash
node-lodash (1 bugs: 0, 1, 0, 0)
node-lodash-packages

action needed

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2019-10744: Versions of lodash lower than 4.17.12 are vulnerable to Prototype Pollution. The function defaultsDeep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.

Please fix it.

Created: 2019-07-26 Last update: 2019-08-14 01:22

Multiarch hinter reports 1 issue(s) normal

There are issues with the multiarch metadata for this package.

node-lodash-packages could be marked Multi-Arch: foreign

Created: 2019-01-02 Last update: 2019-08-17 20:41

1 ignored security issue in jessie low

There is 1 open security issue in jessie.

1 issue skipped by the security teams:

CVE-2019-10744: Versions of lodash lower than 4.17.12 are vulnerable to Prototype Pollution. The function defaultsDeep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.

Please fix it.

Created: 2019-07-26 Last update: 2019-08-14 01:22

1 ignored security issue in stretch low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2019-10744: Versions of lodash lower than 4.17.12 are vulnerable to Prototype Pollution. The function defaultsDeep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.

Please fix it.

Created: 2019-07-26 Last update: 2019-08-14 01:22

1 ignored security issue in buster low

There is 1 open security issue in buster.

1 issue skipped by the security teams:

CVE-2019-10744: Versions of lodash lower than 4.17.12 are vulnerable to Prototype Pollution. The function defaultsDeep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.

Please fix it.

Created: 2019-07-26 Last update: 2019-08-14 01:22

testing migrations

excuses:
- Too young, only 4 of 5 days old
- node-lodash/armel unsatisfiable Depends: nodejs
- node-lodash-packages/armel unsatisfiable Depends: nodejs
- Piuparts tested OK - https://piuparts.debian.org/sid/source/n/node-lodash.html
- autopkgtest for node-applause/1.2.2-2: amd64: Regression ♻
- autopkgtest for node-babel-plugin-transform-define/1.3.0-2: amd64: Regression ♻
- autopkgtest for node-globule/0.2.0-1: amd64: Regression ♻
- autopkgtest for node-graphlibrary/2.2.0+dfsg-1: amd64: Regression ♻
- autopkgtest for node-grunt-contrib-coffee/1.0.0-1: amd64: Regression ♻
- autopkgtest for node-grunt-legacy-log/1.0.0-1: amd64: Regression ♻
- autopkgtest for node-grunt-legacy-log-utils/1.0.0-1: amd64: Regression ♻
- autopkgtest for node-grunt-legacy-util/1.0.0-1: amd64: Regression ♻
- autopkgtest for node-hash-sum/1.0.2-1: amd64: Regression ♻
- autopkgtest for node-inquirer/3.3.0-2: amd64: Regression ♻
- autopkgtest for node-log4js/4.5.1-3: amd64: Regression ♻
- autopkgtest for node-object-key/0.2.0-2: amd64: Regression ♻
- autopkgtest for node-postcss-reporter/6.0.1+~3.0.0-1: amd64: Regression ♻
- autopkgtest for node-stats-webpack-plugin/0.6.1-1: amd64: Regression ♻
- autopkgtest for node-webpack-merge/2.2.0-2: amd64: Regression ♻
- Checking build-dependency on amd64
- Not considered

news

[2019-08-13] Accepted node-lodash 4.17.15+dfsg-1 (source) into unstable (Xavier Guimard)
[2019-08-07] node-lodash 4.17.11+dfsg-4 MIGRATED to testing (Debian testing watch)
[2019-08-05] Accepted node-lodash 4.17.11+dfsg-4 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2019-06-27] Accepted node-lodash 4.17.11+dfsg-3 (source all) into experimental (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2019-02-28] node-lodash 4.17.11+dfsg-2 MIGRATED to testing (Debian testing watch)
[2019-02-18] Accepted node-lodash 4.17.11+dfsg-2 (source all) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-09-23] node-lodash 4.17.11+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-09-21] Accepted node-lodash 4.17.11+dfsg-1 (source all) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2017-08-28] node-lodash 4.17.4+dfsg-1 MIGRATED to testing (Debian testing watch)
[2017-08-22] Accepted node-lodash 4.17.4+dfsg-1 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2017-01-05] node-lodash 4.16.6+dfsg-2 MIGRATED to testing (Debian testing watch)
[2016-12-25] Accepted node-lodash 4.16.6+dfsg-2 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2016-11-19] node-lodash 4.16.6+dfsg-1 MIGRATED to testing (Debian testing watch)
[2016-11-12] Accepted node-lodash 4.16.6+dfsg-1 (source all) into unstable (Sruthi Chandran) (signed by: Thorsten Alteholz)
[2016-11-02] Accepted node-lodash 2.4.1+dfsg-4 (source all) into unstable (Paolo Greppi) (signed by: Praveen Arimbrathodiyil)
[2014-06-30] node-lodash 2.4.1+dfsg-3 MIGRATED to testing (Debian testing watch)
[2014-06-19] Accepted node-lodash 2.4.1+dfsg-3 (source all) (Valentin OVD) (signed by: Roland Mas)
[2014-06-19] Accepted node-lodash 2.4.1+dfsg-2 (source all) (Valentin OVD) (signed by: Roland Mas)
[2014-06-12] Accepted node-lodash 2.4.1+dfsg-1 (source all) (Valentin OVD) (signed by: Roland Mas)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 4.17.11+dfsg-4

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing