Mahara

Updating npm event-stream in Mahara package.json

Bug #1805492 reported by Robert Lyon on 2018-11-27

262

This bug affects 2 people

	Status	Importance	Assigned to	Milestone
Mahara	Fix Released	High	Unassigned	Mahara 18.10.1
17.10	Fix Released	High	Unassigned	Mahara 17.10.8
18.04	Fix Released	High	Unassigned	Mahara 18.04.4
18.10	Fix Released	High	Unassigned	Mahara 18.10.1
19.04	Fix Released	High	Unassigned	Mahara 19.04.0

Bug Description

As the version in package.json is specified as "^3.3.4", there's the potential for version 3.3.6 to have been retrieved. We've seen this on at least one local Mahara instance.

The problematic version of the library has been pulled and version 3.3.4 is the last good version.

So will lock to version 3.3.4 for now.

Revision history for this message

Mahara Bot (dev-mahara) wrote on 2018-11-27: A patch has been submitted for review

Patch for "master" branch: https://reviews.mahara.org/9338

Revision history for this message

Robert Lyon (robertl-9) wrote on 2018-11-27:

One will need to run:

npm install event-stream@3.3.4

to get the correct version if they don't already have it

Revision history for this message

Steven (stevens-q) wrote on 2018-11-27:

Environment tested: Master
Browser tested: Chrome

Preconditions:
---------------------
1. User has npm event-stream@3.3.3 installed

Test Steps:
---------------------
1. Using the terminal enter the following -- npm install event-stream@3.3.3
2. Pull the patch and ensure make CSS has run
3. Using the terminal enter the following — npm list event-stream
4. Confirm the following is returned — event-stream@3.3.4

Catalyst Qa Approved ✔

Revision history for this message

Mahara Bot (dev-mahara) wrote on 2018-12-03: A change has been merged

Reviewed: https://reviews.mahara.org/9338
Committed: https://git.mahara.org/mahara/mahara/commit/3042084ac20eb85cc4e9578016ac775cca7beabe
Submitter: Robert Lyon (<email address hidden>)
Branch: master

commit 3042084ac20eb85cc4e9578016ac775cca7beabe
Author: Robert Lyon <email address hidden>
Date: Wed Nov 28 07:39:26 2018 +1300

Bug 1805492: fixing event-stream to a safe version

behatnotneeded

Change-Id: I8334d8f95f1c218f1a264f01a4e62b3e8f3c7ea5
Signed-off-by: Robert Lyon <email address hidden>

Revision history for this message

Mahara Bot (dev-mahara) wrote on 2018-12-03: A patch has been submitted for review

Patch for "18.10_STABLE" branch: https://reviews.mahara.org/9349

Revision history for this message

Mahara Bot (dev-mahara) wrote on 2018-12-03: A change has been merged

Reviewed: https://reviews.mahara.org/9349
Committed: https://git.mahara.org/mahara/mahara/commit/2a5964e7c966571ebb36592edf2a96a22ca4ccfb
Submitter: Robert Lyon (<email address hidden>)
Branch: 18.10_STABLE

commit 2a5964e7c966571ebb36592edf2a96a22ca4ccfb
Author: Robert Lyon <email address hidden>
Date: Wed Nov 28 07:39:26 2018 +1300

Bug 1805492: fixing event-stream to a safe version

behatnotneeded

Change-Id: I8334d8f95f1c218f1a264f01a4e62b3e8f3c7ea5
Signed-off-by: Robert Lyon <email address hidden>
(cherry picked from commit 3042084ac20eb85cc4e9578016ac775cca7beabe)

Revision history for this message

Mahara Bot (dev-mahara) wrote on 2019-01-25: A patch has been submitted for review

Patch for "17.10_STABLE" branch: https://reviews.mahara.org/9478

Revision history for this message

Mahara Bot (dev-mahara) wrote on 2019-01-25:

Patch for "18.04_STABLE" branch: https://reviews.mahara.org/9479

Revision history for this message

Mahara Bot (dev-mahara) wrote on 2019-01-25: A change has been merged

Reviewed: https://reviews.mahara.org/9479
Committed: https://git.mahara.org/mahara/mahara/commit/7e4c8d8dac83affe0b8417006a688fcbeea8e349
Submitter: Robert Lyon (<email address hidden>)
Branch: 18.04_STABLE

commit 7e4c8d8dac83affe0b8417006a688fcbeea8e349
Author: Robert Lyon <email address hidden>
Date: Fri Jan 25 15:48:43 2019 +1300

Bug 1805492: fixing event-stream to a safe version

behatnotneeded

Change-Id: I8334d8f95f1c218f1a264f01a4e62b3e8f3c7ea5
Signed-off-by: Robert Lyon <email address hidden>
(cherry picked from commit 3042084ac20eb85cc4e9578016ac775cca7beabe)

Revision history for this message

Mahara Bot (dev-mahara) wrote on 2019-01-25:

#10

Reviewed: https://reviews.mahara.org/9478
Committed: https://git.mahara.org/mahara/mahara/commit/f794dde5ca551ad06782f273d082c454fc419ce4
Submitter: Robert Lyon (<email address hidden>)
Branch: 17.10_STABLE

commit f794dde5ca551ad06782f273d082c454fc419ce4
Author: Robert Lyon <email address hidden>
Date: Fri Jan 25 15:48:43 2019 +1300

Bug 1805492: fixing event-stream to a safe version

behatnotneeded

Change-Id: I8334d8f95f1c218f1a264f01a4e62b3e8f3c7ea5
Signed-off-by: Robert Lyon <email address hidden>
(cherry picked from commit 3042084ac20eb85cc4e9578016ac775cca7beabe)

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.