Information on source package node-lodash

Available versions

ReleaseVersion
stretch4.16.6+dfsg-2
buster4.17.11+dfsg-2+deb10u1
bullseye4.17.20+dfsg+~cs8.31.172-1
sid4.17.20+dfsg+~cs8.31.172-1

Open issues

BugstretchbusterbullseyesidDescription
CVE-2021-23337vulnerablevulnerablevulnerablevulnerableAll versions of package lodash; all versions of package org.fujion.web ...
CVE-2020-28500vulnerablevulnerablevulnerablevulnerableAll versions of package lodash; all versions of package org.fujion.web ...
CVE-2020-8203vulnerablevulnerable (no DSA)fixedfixedPrototype pollution attack when using _.zipObjectDeep in lodash before ...
CVE-2019-10744vulnerablefixedfixedfixedVersions of lodash lower than 4.17.12 are vulnerable to Prototype Poll ...

Open unimportant issues

BugstretchbusterbullseyesidDescription
CVE-2019-1010266vulnerablefixedfixedfixedlodash prior to 4.17.11 is affected by: CWE-400: Uncontrolled Resource ...
CVE-2018-16487vulnerablefixedfixedfixedA prototype pollution vulnerability was found in lodash <4.17.11 wh ...
CVE-2018-3721vulnerablefixedfixedfixedlodash node module before 4.17.5 suffers from a Modification of Assume ...

Search for package or bug name: Reporting problems