This bug was fixed in the package nodejs - 4.8.4~dfsg-1ubuntu1
--------------- nodejs (4.8.4~dfsg-1ubuntu1) artful; urgency=medium
* Merge from Debian Sid (LP: #1705727). Remaining changes: - Revert upstream's fix for openssl 1.0.2h, since we still have 1.0.2g in Ubuntu.
nodejs (4.8.4~dfsg-1) unstable; urgency=medium
* New upstream version 4.8.4~dfsg
[ Upstream ] * Security fix: Constant Hashtable Seeds (CVE pending) Closes: #868162. * http.get with numeric authorization options creates uninitialized buffers
-- Simon Quigley <email address hidden> Fri, 21 Jul 2017 10:33:40 -0500
This bug was fixed in the package nodejs - 4.8.4~dfsg-1ubuntu1
--------------- dfsg-1ubuntu1) artful; urgency=medium
nodejs (4.8.4~
* Merge from Debian Sid (LP: #1705727). Remaining changes:
- Revert upstream's fix for openssl 1.0.2h, since we still have
1.0.2g in Ubuntu.
nodejs (4.8.4~dfsg-1) unstable; urgency=medium
* New upstream version 4.8.4~dfsg
[ Upstream ]
* Security fix: Constant Hashtable Seeds (CVE pending)
Closes: #868162.
* http.get with numeric authorization options creates
uninitialized buffers
-- Simon Quigley <email address hidden> Fri, 21 Jul 2017 10:33:40 -0500